Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In October 2024
CVE-2024-44197
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious app may be able to cause a denial-of-service.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-10-28
CVE-2024-44203
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access a user's Photos Library.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-10-28
CVE-2024-27849
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15. An app may be able to read sensitive location information.
CVSS Score
3.3
EPSS Score
0.0
Published
2024-10-28
CVE-2024-40792
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. A malicious app may be able to change network settings.
CVSS Score
3.3
EPSS Score
0.0
Published
2024-10-28
CVE-2024-40851
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.1 and iPadOS 18.1. An attacker with physical access may be able to access contact photos from the lock screen.
CVSS Score
2.4
EPSS Score
0.0
Published
2024-10-28
CVE-2024-40853
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18 and iPadOS 18. An attacker may be able to use Siri to enable Auto-Answer Calls.
CVSS Score
3.3
EPSS Score
0.0
Published
2024-10-28
CVE-2024-40855
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1. A sandboxed app may be able to access sensitive user data.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-10-28
CVE-2024-40867
A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in iOS 18.1 and iPadOS 18.1. A remote attacker may be able to break out of Web Content sandbox.
CVSS Score
9.6
EPSS Score
0.002
Published
2024-10-28
CVE-2024-50453
Relative Path Traversal vulnerability in Webangon The Pack Elementor addons allows PHP Local File Inclusion.This issue affects The Pack Elementor addons: from n/a through 2.0.9.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-10-28
CVE-2024-48357
LyLme Spage 1.2.0 through 1.6.0 is vulnerable to SQL Injection via /admin/apply.php.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-10-28


Products
Pricing
Contact Us

Shodan ® - All rights reserved