CVSS: 7.2EPSS: 0%CPEs: -EXPL: 0CVE-2024-21781
https://notcve.org/view.php?id=CVE-2024-21781
Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to enable information disclosure or denial of service via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01071.html • CWE-20: Improper Input Validation •
CVSS: 3.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-28170
https://notcve.org/view.php?id=CVE-2024-28170
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable information disclosure via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00926.html • CWE-284: Improper Access Control •
CVSS: 5.2EPSS: 0%CPEs: -EXPL: 0CVE-2024-34545
https://notcve.org/view.php?id=CVE-2024-34545
Improper input validation in some Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable information disclosure via adjacent access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00926.html • CWE-20: Improper Input Validation •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-44096
https://notcve.org/view.php?id=CVE-2024-44096
This could lead to local information disclosure with System execution privileges needed. • https://source.android.com/security/bulletin/pixel/2024-09-01 • CWE-453: Insecure Default Variable Initialization •
CVSS: 4.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-6867 – Information Disclosure in lunary-ai/lunary
https://notcve.org/view.php?id=CVE-2024-6867
An information disclosure vulnerability exists in the lunary-ai/lunary, specifically in the `runs/{run_id}/related` endpoint. ... The vulnerability allows unauthorized users to obtain information about non-public runs and their related runs, given the `run_id` of a public or non-public run. • https://github.com/lunary-ai/lunary/commit/35afd4439464571eb016318cd7b6f85a162225ca https://huntr.com/bounties/460df515-164c-4435-954b-0233a181545f • CWE-1220: Insufficient Granularity of Access Control •