CVSS: 8.8EPSS: 0%CPEs: 25EXPL: 0CVE-2024-21450 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21450
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21450 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 25EXPL: 0CVE-2024-21444 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21444
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21444 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 25EXPL: 0CVE-2024-21441 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21441
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21441 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-27304 – pgx SQL Injection via Protocol Message Size Overflow
https://notcve.org/view.php?id=CVE-2024-27304
An integer overflow in the calculated message size can cause the one large message to be sent as multiple messages under the attacker's control. • https://github.com/jackc/pgproto3/commit/945c2126f6db8f3bea7eeebe307c01fe92bca007 https://github.com/jackc/pgproto3/security/advisories/GHSA-7jwh-3vrq-q3m8 https://github.com/jackc/pgx/commit/adbb38f298c76e283ffc7c7a3f571036fea47fd4 https://github.com/jackc/pgx/commit/c543134753a0c5d22881c12404025724cb05ffd8 https://github.com/jackc/pgx/commit/f94eb0e2f96782042c96801b5ac448f44f0a81df https://github.com/jackc/pgx/security/advisories/GHSA-mrww-27vc-gghv https://access.redhat.com/security/cve/CVE-2024-27304 https://bugzilla.redhat.com/ • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-45591
https://notcve.org/view.php?id=CVE-2023-45591
A CWE-122 “Heap-based Buffer Overflow” vulnerability in the “logger_generic” function of the “Ax_rtu” binary allows a remote authenticated attacker to trigger a memory corruption in the context of the binary. • https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2023-45591 • CWE-122: Heap-based Buffer Overflow •