Security Vulnerabilities - CVEs Published In November 2024
The Booster for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wcj_product_meta shortcode in all versions up to, and including, 7.2.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with ShopManager-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
CVSS Score
5.5
EPSS Score
0.004
Published
2024-11-26
An image with a version lower than the fuse version may potentially be booted lead to improper authentication.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-11-26
Initial xbl_sec revision does not have all the debug policy features and critical checks.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-11-26
On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not programmed correctly into the decoder hardware which can lead to an invalid memory access by the decoder.
CVSS Score
9.8
EPSS Score
0.003
Published
2024-11-26
Buffer overwrite in the WLAN host driver by leveraging a compromised WLAN FW
CVSS Score
8.4
EPSS Score
0.001
Published
2024-11-26
In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to insufficient validation.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-11-26
A race condition exists in a driver potentially leading to a use-after-free condition.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-11-26
Wrong configuration in Touch Pal application can collect user behavior data without awareness by the user.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-11-26
Erik de Jong, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API ftptest.cgi did not have a sufficient input validation allowing for a possible command injection leading to being able to transfer files from/to the Axis device. This flaw can only be exploited after authenticating with an administrator-privileged service account.
Axis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.
CVSS Score
3.8
EPSS Score
0.001
Published
2024-11-26
The Product Input Fields for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.9 via the handle_downloads() function due to insufficient file path validation/sanitization. This makes it possible for authenticated attackers, with Contributor-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.
CVSS Score
6.5
EPSS Score
0.019
Published
2024-11-26