Category: CVE

CVE-2024-13683 | Sperse Automate Hub Free up to 1.7.0 on WordPress Status Update cross-site request forgery

A vulnerability classified as problematic was found in Sperse Automate Hub Free up to 1.7.0 on WordPress. This vulnerability affects unknown code of the component Status Update Handler. The manipulation leads to cross-site request forgery. This vulnerability was named CVE-2024-13683. The attack can be initiated remotely. There is no exploit...

Read More

CVE-2024-55930 | Xerox Workplace Suite prior 5.6.701.9 Folder default permission

A vulnerability was found in Xerox Workplace Suite. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Folder. The manipulation leads to incorrect default permissions. This vulnerability is known as CVE-2024-55930. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected...

Read More

CVE-2024-55927 | Xerox Workplace Suite prior 5.6.701.9 Token Generation hard-coded credentials

A vulnerability was found in Xerox Workplace Suite. It has been classified as critical. Affected is an unknown function of the component Token Generation Handler. The manipulation leads to hard-coded credentials. This vulnerability is traded as CVE-2024-55927. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected...

Read More

CVE-2024-55926 | Xerox Workplace Suite prior 5.6.701.9 Header unrestricted upload

A vulnerability was found in Xerox Workplace Suite and classified as critical. This issue affects some unknown processing of the component Header Handler. The manipulation leads to unrestricted upload. The identification of this vulnerability is CVE-2024-55926. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected...

Read More

CVE-2024-55925 | Xerox Workplace Suite prior 5.6.701.9 API improper authentication

A vulnerability, which was classified as critical, was found in Xerox Workplace Suite. This affects an unknown part of the component API. The manipulation leads to improper authentication. This vulnerability is uniquely identified as CVE-2024-55925. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected...

Read More

CVE-2024-55928 | Xerox Workplace Suite prior 5.6.701.9 cleartext storage

A vulnerability, which was classified as problematic, has been found in Xerox Workplace Suite. Affected by this issue is some unknown functionality. The manipulation leads to cleartext storage of sensitive information. This vulnerability is handled as CVE-2024-55928. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected...

Read More

CVE-2025-24033 | fastify-multipart up to 8.3.0/9.0.2 Temporary Files saveRequestFiles allocation of resources (ID 546)

A vulnerability classified as critical was found in fastify-multipart up to 8.3.0/9.0.2. Affected by this vulnerability is the function saveRequestFiles of the component Temporary Files Handler. The manipulation leads to allocation of resources. This vulnerability is known as CVE-2025-24033. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected...

Read More

CVE-2024-45672 | IBM Security Verify Bridge up to 1.0.15 modification of assumed-immutable data

A vulnerability was found in IBM Security Verify Bridge up to 1.0.15. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to modification of assumed-immutable data. The identification of this vulnerability is CVE-2024-45672. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected...

Read More
Loading