Security Vulnerabilities - CVEs Published In 2024
A vulnerability, which was classified as critical, was found in 1000 Projects Portfolio Management System MCA 1.0. This affects an unknown part of the file /update_ach.php. The manipulation of the argument ach_certy leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
6.3
EPSS Score
0.0
Published
2024-12-26
A vulnerability, which was classified as critical, has been found in 1000 Projects Portfolio Management System MCA 1.0. Affected by this issue is some unknown functionality of the file /update_pd_process.php. The manipulation of the argument profile leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
6.3
EPSS Score
0.0
Published
2024-12-26
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions.
CVSS Score
3.3
EPSS Score
0.0
Published
2024-12-26
Some Honor products are affected by information leak vulnerability, successful exploitation could cause the information leak.
CVSS Score
3.3
EPSS Score
0.0
Published
2024-12-26
A vulnerability classified as critical has been found in 1000 Projects Portfolio Management System MCA 1.0. Affected is an unknown function of the file /add_personal_details.php. The manipulation of the argument profile leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
6.3
EPSS Score
0.0
Published
2024-12-26
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions.
CVSS Score
4.0
EPSS Score
0.0
Published
2024-12-26
Some Honor products are affected by information leak vulnerability, successful exploitation could cause the information leak.
CVSS Score
6.2
EPSS Score
0.0
Published
2024-12-26
Some Honor products are affected by information leak vulnerability, successful exploitation could cause the information leak.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-12-26
Some Honor products are affected by information leak vulnerability, successful exploitation could cause the information leak.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-12-26
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions.
CVSS Score
2.9
EPSS Score
0.0
Published
2024-12-26