CVE ID : CVE-2022-31764 Published : Feb. 6, 2025, 3:15 p.m. | 4 hours, 50 minutes ago Description : The Lite UI of Apache ShardingSphere ElasticJob-UI allows an attacker to perform RCE by constructing a special JDBC URL of H2 database. This issue affects Apache ShardingSphere ElasticJob-UI version 3.0.1 and prior versions. This vulnerability has been fixed…

CVE ID : CVE-2025-20094 Published : Feb. 6, 2025, 8:15 a.m. | 11 hours, 50 minutes ago Description : Unprotected Windows messaging channel (‘Shatter’) issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker sends a specially crafted message to the specific process of the Windows system where the product is running, arbitrary code…

CVE ID : CVE-2025-23236 Published : Feb. 6, 2025, 8:15 a.m. | 11 hours, 50 minutes ago Description : Buffer overflow vulnerability exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker performs a specific operation, SYSTEM privilege of the Windows system where the product is running may be obtained. Severity: 8.8 | HIGH Visit…

CVE ID : CVE-2024-51450 Published : Feb. 6, 2025, 1:15 a.m. | 18 hours, 50 minutes ago Description : IBM Security Verify Directory 10.0.0 through 10.0.3 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. Severity: 9.1 | CRITICAL Visit the link for more details, such as…

CVE ID : CVE-2024-51547 Published : Feb. 6, 2025, 5:15 a.m. | 14 hours, 50 minutes ago Description : Use of Hard-coded Credentials vulnerability in ABB ASPECT-Enterprise, ABB NEXUS Series, ABB MATRIX Series.This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03. Severity: 9.8 | CRITICAL Visit the link for more details, such…

CVE ID : CVE-2024-57520 Published : Feb. 5, 2025, 10:15 p.m. | 21 hours, 50 minutes ago Description : Insecure Permissions vulnerability in asterisk v22 allows a remote attacker to execute arbitrary code via the action_createconfig function Severity: 9.8 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, and more… Go…

CVE ID : CVE-2025-1066 Published : Feb. 6, 2025, 12:15 a.m. | 19 hours, 50 minutes ago Description : OpenPLC_V3 contains an arbitrary file upload vulnerability, which could be leveraged for malvertising or phishing campaigns. Severity: 9.8 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, and more… Go to Source

CVE ID : CVE-2024-57077 Published : Feb. 5, 2025, 10:15 p.m. | 21 hours, 50 minutes ago Description : The latest version of utils-extend (1.0.8) is vulnerable to Prototype Pollution through the entry function(s) lib.extend. An attacker can supply a payload with Object.prototype setter to introduce or modify properties within the global prototype chain, causing denial of…

CVE ID : CVE-2020-36084 Published : Feb. 5, 2025, 10:15 p.m. | 21 hours, 50 minutes ago Description : SQL Injection vulnerability in SourceCodester Responsive E-Learning System 1.0 allows remote attackers to inject sql query in /elearning/delete_teacher_students.php?id= parameter via id field. Severity: 9.8 | CRITICAL Visit the link for more details, such as CVSS details, affected products,…

Critical RCE bug in Microsoft Outlook now exploited in attacks CISA warned U.S. federal agencies on Thursday to secure their systems against ongoing attacks targeting a critical Microsoft Outlook remote code execution (RCE) vulnerability. Discovered by Check Poin … Read more Published Date: Feb 06, 2025 (2 hours, 5 minutes ago) Vulnerabilities has been mentioned in this…