CVSS: 8.7EPSS: 0%CPEs: 4EXPL: 0CVE-2024-8626 – Logix Controllers Vulnerable to Denial-of-Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-8626
08 Oct 2024 — Due to a memory leak, a denial-of-service vulnerability exists in the Rockwell Automation affected products. • https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1706.html • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47007
https://notcve.org/view.php?id=CVE-2024-47007
08 Oct 2024 — A NULL pointer dereference in WLAvalancheService.exe of Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker to cause a denial of service. • https://forums.ivanti.com/s/article/Ivanti-Avalanche-6-4-5-Security-Advisory • CWE-476: NULL Pointer Dereference •
CVSS: 8.2EPSS: 0%CPEs: 3EXPL: 0CVE-2024-9124 – Rockwell Automation PowerFlex 6000T CIP Security denial-of-service Vulnerability
https://notcve.org/view.php?id=CVE-2024-9124
08 Oct 2024 — A denial-of-service vulnerability exists in the Rockwell Automation PowerFlex® 600T. • https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1705.html • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-8422 – Schneider Electric Zelio Soft 2 ZM2 File Parsing Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-8422
08 Oct 2024 — CWE-416: Use After Free vulnerability exists that could cause arbitrary code execution, denial of service and loss of confidentiality & integrity when application user opens a malicious Zelio Soft 2 project file. ... CWE-416: Use After Free vulnerability exists that could cause arbitrary code execution, denial of service and loss of confidentiality & integrity when application user opens a malicious Zelio Soft 2 project file. • https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-282-06&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-282-06.pdf • CWE-416: Use After Free •
CVSS: 4.8EPSS: 0%CPEs: 3EXPL: 0CVE-2024-45476
https://notcve.org/view.php?id=CVE-2024-45476
08 Oct 2024 — An attacker could leverage this vulnerability to crash the application causing denial of service condition. ... An attacker could leverage this vulnerability to crash the application causing denial of service condition. • https://cert-portal.siemens.com/productcert/html/ssa-583523.html • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2024-45382 – Liteos_a has an Out-of-bounds Write vulnerability
https://notcve.org/view.php?id=CVE-2024-45382
08 Oct 2024 — in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through out-of-bounds write. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-10.md • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2024-43697 – Liteos_a has an Improper Input Validation vulnerability
https://notcve.org/view.php?id=CVE-2024-43697
08 Oct 2024 — in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through improper input. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-10.md • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2024-43696 – Liteos_a has an Memory Leak vulnerability
https://notcve.org/view.php?id=CVE-2024-43696
08 Oct 2024 — in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS by memory leak. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-10.md • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46539
https://notcve.org/view.php?id=CVE-2024-46539
08 Oct 2024 — Insecure permissions in the Bluetooth Low Energy (BLE) component of Fire-Boltt Artillery Smart Watch NJ-R6E-10.3 allow attackers to cause a Denial of Service (DoS). • https://github.com/harishmanam/-Fireboltt-Artillery-Smartwatch/blob/main/FB_Artillerysmart_watch_Security_Assessment_report.pdf • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-25885
https://notcve.org/view.php?id=CVE-2024-25885
08 Oct 2024 — An issue in the getcolor function in utils.py of xhtml2pdf v0.2.13 allows attackers to cause a Regular expression Denial of Service (ReDOS) via supplying a crafted string. • http://dirk.com • CWE-1333: Inefficient Regular Expression Complexity •