Security Vulnerabilities - Known exploited
CVE-2024-1212
Unauthenticated remote attackers can access the system through the LoadMaster management interface, enabling arbitrary system command execution.
Known exploited
CVSS Score
10.0
EPSS Score
0.944
Published
2024-02-21
CVE-2024-1709
ConnectWise ScreenConnect 23.9.7 and prior are affected by an Authentication Bypass Using an Alternate Path or Channel
vulnerability, which may allow an attacker direct access to confidential information or
critical systems.
Known exploited
CVSS Score
10.0
EPSS Score
0.944
Published
2024-02-21
CVE-2024-20953
Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: Export). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM. Successful attacks of this vulnerability can result in takeover of Oracle Agile PLM. CVSS 3.1 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).
Known exploited
CVSS Score
8.8
EPSS Score
0.77
Published
2024-02-17
CVE-2024-23113
A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, FortiPAM versions 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiSwitchManager versions 7.2.0 through 7.2.3, 7.0.0 through 7.0.3 allows attacker to execute unauthorized code or commands via specially crafted packets.
Known exploited
CVSS Score
9.8
EPSS Score
0.45
Published
2024-02-15
CVE-2024-21413
Microsoft Outlook Remote Code Execution Vulnerability
Known exploited
CVSS Score
9.8
EPSS Score
0.938
Published
2024-02-13
CVE-2024-21410
Microsoft Exchange Server Elevation of Privilege Vulnerability
Known exploited
CVSS Score
9.8
EPSS Score
0.015
Published
2024-02-13
CVE-2024-21412
Internet Shortcut Files Security Feature Bypass Vulnerability
Known exploited
CVSS Score
8.1
EPSS Score
0.938
Published
2024-02-13
CVE-2024-21351
Windows SmartScreen Security Feature Bypass Vulnerability
Known exploited
CVSS Score
7.6
EPSS Score
0.062
Published
2024-02-13
CVE-2024-21338
Windows Kernel Elevation of Privilege Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.795
Published
2024-02-13
CVE-2024-21762
A out-of-bounds write in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, 6.0.0 through 6.0.17, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7 allows attacker to execute unauthorized code or commands via specifically crafted requests
Known exploited
CVSS Score
9.8
EPSS Score
0.928
Published
2024-02-09