Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In October 2024
CVE-2024-47773
Discourse is an open source platform for community discussion. An attacker can make several XHR requests until the cache is poisoned with a response without any preloaded data. This issue only affects anonymous visitors of the site. This problem has been patched in the latest version of Discourse. Users are advised to upgrade. Users unable to upgrade should disable anonymous cache by setting the `DISCOURSE_DISABLE_ANON_CACHE` environment variable to a non-empty value.
CVSS Score
8.2
EPSS Score
0.079
Published
2024-10-08
CVE-2024-47780
TYPO3 is a free and open source Content Management Framework. Backend users could see items in the backend page tree without having access if the mounts pointed to pages restricted for their user/group, or if no mounts were configured but the pages allowed access to "everybody." However, affected users could not manipulate these pages. Users are advised to update to TYPO3 versions 10.4.46 ELTS, 11.5.40 LTS, 12.4.21 LTS, 13.3.1 that fix the problem described. There are no known workarounds for this vulnerability.
CVSS Score
3.1
EPSS Score
0.002
Published
2024-10-08
CVE-2024-43609
Microsoft Office Spoofing Vulnerability
CVSS Score
6.5
EPSS Score
0.105
Published
2024-10-08
CVE-2024-43611
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVSS Score
8.8
EPSS Score
0.047
Published
2024-10-08
CVE-2024-43612
Power BI Report Server Spoofing Vulnerability
CVSS Score
6.9
EPSS Score
0.003
Published
2024-10-08
CVE-2024-43614
Relative path traversal in Microsoft Defender for Endpoint allows an authorized attacker to perform spoofing locally.
CVSS Score
5.5
EPSS Score
0.004
Published
2024-10-08
CVE-2024-43615
Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
CVSS Score
7.1
EPSS Score
0.066
Published
2024-10-08
CVE-2024-43603
Visual Studio Collector Service Denial of Service Vulnerability
CVSS Score
5.5
EPSS Score
0.001
Published
2024-10-08
CVE-2024-43604
Outlook for Android Elevation of Privilege Vulnerability
CVSS Score
5.7
EPSS Score
0.007
Published
2024-10-08
CVE-2024-43607
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVSS Score
8.8
EPSS Score
0.039
Published
2024-10-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved