Security Vulnerabilities - CVEs Published In June 2024
When browsing private tabs, some data related to location history or webpage thumbnails could be persisted incorrectly within the sandboxed app bundle after app termination This vulnerability affects Firefox for iOS < 127.
CVSS Score
6.5
EPSS Score
0.004
Published
2024-06-13
In certain scenarios a malicious website could attempt to display a fake location URL bar which could mislead users as to the actual website address This vulnerability affects Firefox for iOS < 127.
CVSS Score
4.3
EPSS Score
0.004
Published
2024-06-13
Microsoft Edge for iOS Spoofing Vulnerability
CVSS Score
5.4
EPSS Score
0.006
Published
2024-06-13
Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVSS Score
5.4
EPSS Score
0.003
Published
2024-06-13
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via the File parameter in function UploadCustomModule.
CVSS Score
8.8
EPSS Score
0.001
Published
2024-06-13
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via the password parameter in function loginAuth .
CVSS Score
9.8
EPSS Score
0.007
Published
2024-06-13
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the function setWiFiGuestCfg
CVSS Score
8.8
EPSS Score
0.003
Published
2024-06-13
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the function setWiFiEasyCfg.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-06-13
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the function setWiFiBasicCfg
CVSS Score
9.8
EPSS Score
0.02
Published
2024-06-13
D-Link DIR-605L v2.13B01 was discovered to contain a hardcoded password vulnerability in /etc/passwd, which allows attackers to log in as root.
CVSS Score
8.8
EPSS Score
0.006
Published
2024-06-13