CVE-2024-45642 – IBM Security ReaQta information disclosure
https://notcve.org/view.php?id=CVE-2024-45642
This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. • https://www.ibm.com/support/pages/node/7172212 • CWE-942: Permissive Cross-domain Policy with Untrusted Domains •
CVE-2024-41206
https://notcve.org/view.php?id=CVE-2024-41206
A stack-based buffer over-read in tsMuxer version nightly-2024-03-14-01-51-12 allows attackers to cause Information Disclosure via a crafted TS video file. • https://github.com/justdan96/tsMuxer/issues/859 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2024-49777
https://notcve.org/view.php?id=CVE-2024-49777
A heap-based buffer overflow in tsMuxer version nightly-2024-03-14-01-51-12 allows attackers to cause Denial of Service (DoS), Information Disclosure and Code Execution via a crafted MKV video file. • https://github.com/justdan96/tsMuxer/issues/842 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2024-31074
https://notcve.org/view.php?id=CVE-2024-31074
Observable timing discrepancy in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via network access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01177.html • CWE-208: Observable Timing Discrepancy •
CVE-2024-28885
https://notcve.org/view.php?id=CVE-2024-28885
Observable discrepancy in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via network access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01177.html • CWE-203: Observable Discrepancy •