CVSS: 8.2EPSS: 0%CPEs: -EXPL: 0CVE-2024-37397 – Ivanti Endpoint Manager ImportXml XML External Entity Processing Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-37397
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Ivanti Endpoint Manager. • https://forums.ivanti.com/s/article/Security-Advisory-EPM-September-2024-for-EPM-2024-and-EPM-2022 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 7.3EPSS: 0%CPEs: 3EXPL: 0CVE-2024-43475 – Microsoft Windows Admin Center Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-43475
Microsoft Windows Admin Center Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43475 • CWE-126: Buffer Over-read •
CVSS: 7.7EPSS: 0%CPEs: 3EXPL: 0CVE-2024-43458 – Windows Networking Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-43458
Windows Networking Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43458 • CWE-908: Use of Uninitialized Resource •
CVSS: 6.5EPSS: 0%CPEs: 16EXPL: 0CVE-2024-38258 – Windows Remote Desktop Licensing Service Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38258
Windows Remote Desktop Licensing Service Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38258 • CWE-23: Relative Path Traversal •
CVSS: 7.5EPSS: 0%CPEs: 15EXPL: 0CVE-2024-38257 – Microsoft AllJoyn API Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-38257
Microsoft AllJoyn API Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38257 • CWE-908: Use of Uninitialized Resource •