CVSS: 7.7EPSS: 0%CPEs: 3EXPL: 0CVE-2024-25646 – Information Disclosure vulnerability in SAP BusinessObjects Web Intelligence
https://notcve.org/view.php?id=CVE-2024-25646
Due to improper validation, SAP BusinessObject Business Intelligence Launch Pad allows an authenticated attacker to access operating system information using crafted document. On successful exploitation there could be a considerable impact on confidentiality of the application. Debido a una validación incorrecta, SAP BusinessObject Business Intelligence Launch Pad permite que un atacante autenticado acceda a información del sistema operativo mediante un documento manipulado. Una explotación exitosa podría tener un impacto considerable en la confidencialidad de la solicitud. • https://me.sap.com/notes/3421384 https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html?anchorId=section_370125364 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0083
https://notcve.org/view.php?id=CVE-2024-0083
A successful exploit of this vulnerability might lead to code execution, denial of service, and information disclosure. • https://nvidia.custhelp.com/app/answers/detail/a_id/5532 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0082
https://notcve.org/view.php?id=CVE-2024-0082
A successful exploit of this vulnerability might lead to local escalation of privileges, information disclosure, and data tampering NVIDIA ChatRTX para Windows contiene una vulnerabilidad en la interfaz de usuario, donde un atacante puede provocar una gestión inadecuada de privilegios al enviar solicitudes de apertura de archivos a la aplicación. • https://nvidia.custhelp.com/app/answers/detail/a_id/5532 • CWE-269: Improper Privilege Management •
CVSS: 5.3EPSS: 0%CPEs: -EXPL: 0CVE-2023-52533
https://notcve.org/view.php?id=CVE-2023-52533
This could lead to remote information disclosure no additional execution privileges needed En modem-ps-nas-ngmm, existe un posible comportamiento indefinido debido a un manejo incorrecto de errores. • https://www.unisoc.com/en_us/secy/announcementDetail/1777148475750809602 • CWE-391: Unchecked Error Condition •
CVSS: -EPSS: 0%CPEs: -EXPL: 0CVE-2023-52346
https://notcve.org/view.php?id=CVE-2023-52346
This could lead to local information disclosure with System execution privileges needed En el controlador del módem, existe una posible falla del sistema debido a una validación de entrada incorrecta. • https://www.unisoc.com/en_us/secy/announcementDetail/1777143682512781313 •