Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In September 2024
CVE-2024-40841
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Sonoma 14.7, macOS Sequoia 15. Processing a maliciously crafted video file may lead to unexpected app termination.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-09-17
CVE-2024-23237
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An app may be able to cause a denial-of-service.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-09-17
CVE-2024-27795
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. A camera extension may be able to access the internet.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-09-17
CVE-2024-27858
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-09-17
CVE-2024-27860
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An application may be able to read restricted memory.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-09-17
CVE-2024-27861
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An application may be able to read restricted memory.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-09-17
CVE-2024-27869
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15. An app may be able to record the screen without an indicator.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-09-17
CVE-2024-27874
This issue was addressed through improved state management. This issue is fixed in iOS 18 and iPadOS 18. A remote attacker may be able to cause a denial-of-service.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-09-17
CVE-2024-4283
An issue has been discovered in GitLab EE affecting all versions starting from 11.1 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2. Under certain conditions an open redirect vulnerability could allow for an account takeover by breaking the OAuth flow.
CVSS Score
6.4
EPSS Score
0.0
Published
2024-09-16
CVE-2024-6685
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2, where group runners information was disclosed to unauthorised group members.
CVSS Score
3.1
EPSS Score
0.0
Published
2024-09-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved