CVSS: 9.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-31012
https://notcve.org/view.php?id=CVE-2024-31012
An issue was discovered in SEMCMS v.4.8, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the upload.php file. • https://github.com/ss122-0ss/semcmsv4.8/blob/main/readme.md • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: -EPSS: 0%CPEs: -EXPL: 0CVE-2024-29477
https://notcve.org/view.php?id=CVE-2024-29477
Lack of sanitization during Installation Process in Dolibarr ERP CRM up to version 19.0.0 allows an attacker with adjacent access to the network to execute arbitrary code via a specifically crafted input. • http://dolibarr.com https://github.com/alexbsec/CVEs/blob/master/2024/CVE-2024-29477.md •
CVSS: 7.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-20849
https://notcve.org/view.php?id=CVE-2024-20849
Out-of-bound Write vulnerability in chunk parsing implementation of libsdffextractor prior to SMR Apr-2023 Release 1 allows local attackers to execute arbitrary code. • https://security.samsungmobile.com/securityUpdate.smsb?year=2024&month=04 •
CVSS: 5.9EPSS: 0%CPEs: -EXPL: 0CVE-2024-20846
https://notcve.org/view.php?id=CVE-2024-20846
Out-of-bounds write vulnerability while decoding hcr of libsavsac.so prior to SMR Apr-2024 Release 1 allows local attacker to execute arbitrary code. • https://security.samsungmobile.com/securityUpdate.smsb?year=2024&month=04 •
CVSS: 8.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-20845
https://notcve.org/view.php?id=CVE-2024-20845
Out-of-bounds write vulnerability while releasing memory in libsavsac.so prior to SMR Apr-2024 Release 1 allows local attacker to execute arbitrary code. • https://security.samsungmobile.com/securityUpdate.smsb?year=2024&month=04 •