CVE ID : CVE-2024-55411 Published : Jan. 7, 2025, 6:15 p.m. | 1 hour, 30 minutes ago Description : An issue in the snxpcamd.sys component of SUNIX Multi I/O Card v10.1.0.0 allows attackers to perform arbitrary read and write actions via supplying crafted IOCTL requests. Severity: 0.0 | NA Visit the link for more details, such as…

CVE ID : CVE-2024-55412 Published : Jan. 7, 2025, 6:15 p.m. | 1 hour, 30 minutes ago Description : A vulnerability exits in driver snxpsamd.sys in SUNIX Serial Driver x64 – 10.1.0.0, which allows low-privileged users to read and write arbitary i/o port via specially crafted IOCTL requests . This can be exploited for privilege escalation, code…

CVE ID : CVE-2024-54007 Published : Jan. 7, 2025, 6:15 p.m. | 1 hour, 30 minutes ago Description : Multiple command injection vulnerabilities exist in the web interface of the 501 Wireless Client Bridge which could lead to authenticated remote command execution. Successful exploitation of these vulnerabilities result in the ability of an attacker to execute arbitrary…

CVE ID : CVE-2024-50660 Published : Jan. 7, 2025, 6:15 p.m. | 1 hour, 30 minutes ago Description : File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline,…

CVE ID : CVE-2024-54006 Published : Jan. 7, 2025, 6:15 p.m. | 1 hour, 30 minutes ago Description : Multiple command injection vulnerabilities exist in the web interface of the 501 Wireless Client Bridge which could lead to authenticated remote command execution. Successful exploitation of these vulnerabilities result in the ability of an attacker to execute arbitrary…

CVE ID : CVE-2024-50658 Published : Jan. 7, 2025, 6:15 p.m. | 1 hour, 30 minutes ago Description : Server-Side Template Injection (SSTI) was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file Severity: 0.0 | NA Visit the link for more details, such as…

CVE ID : CVE-2024-50659 Published : Jan. 7, 2025, 6:15 p.m. | 1 hour, 30 minutes ago Description : Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products,…

CVE ID : CVE-2025-22621 Published : Jan. 7, 2025, 5:15 p.m. | 2 hours, 30 minutes ago Description : In versions 1.0.67 and lower of the Splunk App for SOAR, the Splunk documentation for that app recommended adding the `admin_all_objects` capability to the `splunk_app_soar` role. This addition could lead to improper access control for a low-privileged user…

CVE ID : CVE-2025-22500 Published : Jan. 7, 2025, 5:15 p.m. | 2 hours, 30 minutes ago Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Ali Ali Alpha Price Table For Elementor allows DOM-Based XSS.This issue affects Alpha Price Table For Elementor: from n/a through 1.0.8. Severity: 6.5 | MEDIUM Visit…