CVSS: 4.8EPSS: %CPEs: -EXPL: 0CVE-2024-33433
https://notcve.org/view.php?id=CVE-2024-33433
Cross Site Scripting vulnerability in TOTOLINK X2000R before v1.0.0-B20231213.1013 allows a remote attacker to execute arbitrary code via the Guest Access Control parameter in the Wireless Page. • https://github.com/4hsien/CVE-vulns/blob/main/TOTOLINK/X2000R/XSS_2_Guest_Access_Control/README.md • CWE-233: Improper Handling of Parameters •
CVSS: 7.2EPSS: %CPEs: -EXPL: 0CVE-2024-33250
https://notcve.org/view.php?id=CVE-2024-33250
An issue in Open-Source Technology Committee SRS real-time video server RS/4.0.268(Leo) and SRS/4.0.195(Leo) allows a remote attacker to execute arbitrary code via a crafted request. • https://github.com/hacker2004/cccccckkkkkk/blob/main/CVE-2024-33250.md • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 6.2EPSS: %CPEs: -EXPL: 0CVE-2024-31803
https://notcve.org/view.php?id=CVE-2024-31803
Buffer Overflow vulnerability in emp-ot v.0.2.4 allows a remote attacker to execute arbitrary code via the FerretCOT<T>::read_pre_data128_from_file function. • https://github.com/FudanMPL/Vulnerabilities-in-MPC-Framework/tree/main/emp-ot/stack-buffer-overflow-ferret_cot https://github.com/emp-toolkit/emp-ot/issues/89 • CWE-121: Stack-based Buffer Overflow •
CVSS: 5.5EPSS: %CPEs: -EXPL: 0CVE-2024-30801
https://notcve.org/view.php?id=CVE-2024-30801
SQL Injection vulnerability in Cloud based customer service management platform v.1.0.0 allows a local attacker to execute arbitrary code via a crafted payload to Login.asp component. • http://cloud.com http://www.minipacs.com/ylqxrj https://github.com/WarmBrew/web_vul/blob/main/Cloud%20based%20customer%20service/SQLi.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.8EPSS: %CPEs: -EXPL: 0CVE-2024-29513
https://notcve.org/view.php?id=CVE-2024-29513
An issue in briscKernelDriver.sys in BlueRiSC WindowsSCOPE Cyber Forensics before 3.3 allows a local attacker to execute arbitrary code within the driver and create a local denial-of-service condition due to an improper DACL being applied to the device the driver creates. • https://github.com/dru1d-foofus/briscKernelDriver • CWE-94: Improper Control of Generation of Code ('Code Injection') •