CVSS: 4.3EPSS: 0%CPEs: 91EXPL: 0CVE-2024-20434
https://notcve.org/view.php?id=CVE-2024-20434
25 Sep 2024 — A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on the control plane of an affected device. This vulnerability is due to improper handling of frames with VLAN tag information. An attacker could exploit this vulnerability by sending crafted frames to an affected device. A successful exploit could allow the attacker to render the control plane of the affected device unresponsive. The device would not be accessible through ... • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vlan-dos-27Pur5RT • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46461 – Ubuntu Security Notice USN-7243-1
https://notcve.org/view.php?id=CVE-2024-46461
25 Sep 2024 — VLC media player 3.0.20 and earlier is vulnerable to denial of service through an integer overflow which could be triggered with a maliciously crafted mms stream (heap based overflow). • https://www.videolan.org/security/sb-vlc3021.html • CWE-122: Heap-based Buffer Overflow •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-9123 – Debian Security Advisory 5775-1
https://notcve.org/view.php?id=CVE-2024-9123
24 Sep 2024 — Integer overflow in Skia in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. • https://chromereleases.googleblog.com/2024/09/stable-channel-update-for-desktop_24.html • CWE-190: Integer Overflow or Wraparound CWE-472: External Control of Assumed-Immutable Web Parameter •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-40848 – Apple Security Advisory 09-16-2024-9
https://notcve.org/view.php?id=CVE-2024-40848
16 Sep 2024 — An attacker may be able to read sensitive information. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121234 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-44149 – Apple Security Advisory 09-16-2024-2
https://notcve.org/view.php?id=CVE-2024-44149
16 Sep 2024 — An app may be able to access protected user data. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121238 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2024-44165 – Apple Security Advisory 09-16-2024-9
https://notcve.org/view.php?id=CVE-2024-44165
16 Sep 2024 — Network traffic may leak outside a VPN tunnel. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121234 •
CVSS: 6.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-40825 – Apple Security Advisory 09-16-2024-2
https://notcve.org/view.php?id=CVE-2024-40825
16 Sep 2024 — A malicious app with root privileges may be able to modify the contents of system files. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121238 • CWE-284: Improper Access Control •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-44132 – Apple Security Advisory 09-16-2024-2
https://notcve.org/view.php?id=CVE-2024-44132
16 Sep 2024 — An app may be able to break out of its sandbox. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121238 • CWE-61: UNIX Symbolic Link (Symlink) Following •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2024-44124 – Apple Security Advisory 09-16-2024-1
https://notcve.org/view.php?id=CVE-2024-44124
16 Sep 2024 — A malicious Bluetooth input device may bypass pairing. iOS 18 and iPadOS 18 addresses bypass, cross site scripting, integer overflow, out of bounds access, and out of bounds read vulnerabilities. • https://support.apple.com/en-us/121250 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2024-40844 – Apple Security Advisory 09-16-2024-9
https://notcve.org/view.php?id=CVE-2024-40844
16 Sep 2024 — An app may be able to observe data displayed to the user by Shortcuts. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121234 •