CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0NotCVE-2023-0002 – Buffer overflow in NVD Tools
https://notcve.org/view.php?id=NotCVE-2023-0002
A buffer overflow leading to a denial of service has been found in the NVD Tools, a collection of tools for working with National Vulnerability Database feeds. • https://github.com/facebookincubator/nvdtools https://github.com/facebookincubator/nvdtools/pull/201/commits/81447a60e831223814cc146df3bb172dfd4d52f8 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2024-56335 – Privilege escalation allows organization groups to be updated/deleted if their UUID is known in vaultwarden
https://notcve.org/view.php?id=CVE-2024-56335
Denial of service, the attacker can limit users from accessing the organization's data by removing their membership from the group. 2. • https://github.com/dani-garcia/vaultwarden/security/advisories/GHSA-g65h-982x-4m5m • CWE-269: Improper Privilege Management CWE-284: Improper Access Control CWE-285: Improper Authorization CWE-287: Improper Authentication •
CVSS: 9.4EPSS: 0%CPEs: 3EXPL: 0CVE-2024-56333 – Remote code execution in onyxia-api
https://notcve.org/view.php?id=CVE-2024-56333
This critical vulnerability allows authenticated users to remotely execute code within the Onyxia-API, leading to potential consequences such as unauthorized access to other user environments and denial of service attacks. • https://docs.onyxia.sh/vulnerability-disclosure/known-vulnerabilities/vulnerability-20241219 https://github.com/InseeFrLab/onyxia/security/advisories/GHSA-qmcw-h4f9-j3h3 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-54538
https://notcve.org/view.php?id=CVE-2024-54538
A denial-of-service issue was addressed with improved input validation. ... A remote attacker may be able to cause a denial-of-service. • https://support.apple.com/en-us/121563 https://support.apple.com/en-us/121565 https://support.apple.com/en-us/121566 https://support.apple.com/en-us/121567 https://support.apple.com/en-us/121568 https://support.apple.com/en-us/121569 https://support.apple.com/en-us/121570 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7139 – Denial of Service in Silicon Labs RS9116 Bluetooth SDK
https://notcve.org/view.php?id=CVE-2024-7139
This buffer overflow triggers an assert, which results in a temporary denial of service. If a watchdog timer is not enabled, a hard reset is required to recover the device. • https://community.silabs.com/068Vm00000F9zre • CWE-617: Reachable Assertion CWE-787: Out-of-bounds Write •