CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45315 – SonicWALL Connect Tunnel Link Following Denial-of-Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-45315
The Improper link resolution before file access ('Link Following') vulnerability in SonicWall Connect Tunnel (version 12.4.3.271 and earlier of Windows client) allows users with standard privileges to create arbitrary folders and files, potentially leading to local Denial of Service (DoS) attack. This vulnerability allows local attackers to create a denial-of-service condition on affected installations of SonicWALL Connect Tunnel. ... An attacker can leverage this vulnerability to create a persistent denial-of-service condition on the host system. • https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0017 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 6.2EPSS: 0%CPEs: -EXPL: 0CVE-2024-45184
https://notcve.org/view.php?id=CVE-2024-45184
A USAT out-of-bounds write due to a heap buffer overflow can lead to a Denial of Service. • https://semiconductor.samsung.com/support/quality-support/product-security-updates https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-45184 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: -EPSS: 0%CPEs: -EXPL: 0CVE-2024-48938
https://notcve.org/view.php?id=CVE-2024-48938
Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows DoS/ReDos via email. Parsing the content of emails where HTML code is copied from Microsoft Word could lead to high CPU usage and block the parsing process. • https://www.znuny.com https://www.znuny.org/en/advisories https://www.znuny.org/en/advisories/zsa-2024-04 •
CVSS: 6.9EPSS: 0%CPEs: 1EXPL: 1CVE-2024-9787 – Contemporary Control System BASrouter BACnet BASRT-B UDP Packet denial of service
https://notcve.org/view.php?id=CVE-2024-9787
This affects an unknown part of the component UDP Packet Handler. The manipulation leads to denial of service. ... Dank der Manipulation mit unbekannten Daten kann eine denial of service-Schwachstelle ausgenutzt werden. • https://vuldb.com/?id.279939 https://vuldb.com/?ctiid.279939 https://vuldb.com/?submit.414499 https://github.com/isZzzz/BASRT-B_BriefDoS_Document/blob/main/report.md • CWE-404: Improper Resource Shutdown or Release •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-9781 – Improper Handling of Missing Values in Wireshark
https://notcve.org/view.php?id=CVE-2024-9781
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file • https://www.wireshark.org/security/wnpa-sec-2024-13.html https://gitlab.com/wireshark/wireshark/-/issues/20114 • CWE-230: Improper Handling of Missing Values •