SecuriTricks - 2024-10-15

CVE-2024-9972

CVE-2024-9982

9.8

AIM LINE Marketing Platform

Published: October 15, 2024

CVE-2024-9925

9.8

Taismartfactory

Qplant Sf

Published: October 15, 2024

CVE-2024-9984

9.8

Ragic

Enterprise Cloud Database

Published: October 15, 2024

CVE-2024-9985

9.8

Ragic

Enterprise Cloud Database

Published: October 15, 2024

CVE-2024-47945

9.8

Rittal

Iot Interface Firmware
Iot Interface
Cmc Iii Processing Units Firmware
Cmc Iii Processing Units

Published: October 15, 2024

CVE-2024-9973

9.8

Oretnom23

Online Eyewear Shop

Published: October 15, 2024

CVE-2024-9974

9.8

Oretnom23

Online Eyewear Shop

Published: October 15, 2024

CVE-2024-45274

9.8

Mbconnectline

Mbnet.Mini Firmware
Mbnet.Mini

Helmholz

Published: October 15, 2024

CVE-2024-45275

9.8

Mbconnectline

Mbnet.Mini Firmware
Mbnet.Mini

Helmholz

Published: October 15, 2024

CVE-2024-9976

9.8

Code-Projects

Pharmacy Management System

Published: October 15, 2024

CVE-2024-48283

9.8

Phpgurukul User Registration & Login and User Management System

Version(s): 3.2

Published: October 15, 2024

CVE-2024-9986

9.8

Fabianros

Blood Bank Management System

Published: October 15, 2024

CVE-2024-21216

9.8

Oracle

Weblogic Server

Published: October 15, 2024

CVE-2024-49195

9.8

Mbed TLS

Version(s): 3.5.x, 3.6.x before 3.6.2

Published: October 15, 2024

CVE-2024-48411

9.8

itsourcecode Online Tours and Travels Management System

Version(s): 1.0

Published: October 15, 2024

CVE-2024-48779

9.8

Yitu Project Management Software

Version(s): 3.2.2

Published: October 15, 2024

CVE-2024-48781

9.8

Wanxing Technology Yitu Project Management Kirin Edition

Version(s): 2.3.6

Published: October 15, 2024

CVE-2024-48782

9.8

DYCMS Open-Source

Version(s): v2.0.9.41

Published: October 15, 2024

CVE-2024-9486

9.8

Kubernetes

Image Builder

Published: October 15, 2024

CVE-2024-49388

9.1

Acronis

Cyber Protect

Linux

Microsoft

Published: October 15, 2024

CVE-2024-48914

9.1

Vendure

Version(s): before 3.0.5, before 2.3.3

Published: October 15, 2024

CVE-2024-10004

9.1

Firefox for iOS

Version(s): < 13.1.2

Published: October 15, 2024

CVE-2024-21172

9.0

Oracle

Hospitality Opera 5

Published: October 15, 2024

CVE-2024-9687

8.8

Dueclic

Wp 2fa With Telegram

Published: October 15, 2024

CVE-2024-9968

8.8

Newtype

Webeip

Published: October 15, 2024

CVE-2024-9970

8.8

Newtype

Flowmaster Bpm Plus

Published: October 15, 2024

CVE-2024-9971

8.8

Newtype

Flowmaster Bpm Plus

Published: October 15, 2024

CVE-2024-9980

8.8

Formosasoft

Ee-Class

Published: October 15, 2024

CVE-2024-9981

8.8

Formosasoft

Ee-Class

Published: October 15, 2024

CVE-2024-9975

8.8

Rems

Drag And Drop Image Upload

Published: October 15, 2024

CVE-2024-35584

8.8

OpenSis Community Edition

Version(s): 9.1, 8.0, possibly earlier versions

Published: October 15, 2024

CVE-2024-21254

8.8

Oracle

Bi Publisher

Published: October 15, 2024

CVE-2024-21255

8.8

Oracle

Peoplesoft Enterprise Peopletools

Published: October 15, 2024

CVE-2024-9954

8.8

Google

Chrome

Published: October 15, 2024

CVE-2024-9955

8.8

Google Chrome

Version(s): before 130.0.6723.58

Published: October 15, 2024

CVE-2024-9957

8.8

Google Chrome

Version(s): before 130.0.6723.58

Published: October 15, 2024

CVE-2024-9959

8.8

Google Chrome

Version(s): before 130.0.6723.58

Published: October 15, 2024

CVE-2024-9960

8.8

Google Chrome

Version(s): prior to 130.0.6723.58

Published: October 15, 2024

CVE-2024-9961

8.8

Google Chrome

Version(s): before 130.0.6723.58

Published: October 15, 2024

CVE-2024-9965

8.8

Google

Chrome

Microsoft

Published: October 15, 2024

CVE-2024-38139

8.8

Microsoft

Dataverse

Published: October 15, 2024

CVE-2024-38190

8.6

Microsoft

Power Platform

Published: October 15, 2024

CVE-2024-21214

8.1

Oracle

Peoplesoft Enterprise Peopletools

Published: October 15, 2024

CVE-2024-21250

8.1

Oracle

Process Manufacturing Product Development

Published: October 15, 2024

CVE-2024-21252

8.1

Oracle

Product Hub

Published: October 15, 2024

CVE-2024-21265

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21266

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21267

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21268

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21269

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21270

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21271

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21275

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21276

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21277

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21278

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21279

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21280

8.1

Oracle

Service Contracts

Published: October 15, 2024

CVE-2024-21282

8.1

Oracle

E-Business Suite

Published: October 15, 2024

CVE-2024-21283

8.1

Oracle

Peoplesoft Enterprise

Published: October 15, 2024

CVE-2024-41311

8.1

Libheif

Version(s): 1.17.6

Published: October 15, 2024

CVE-2024-9594

8.1

Kubernetes

Image Builder

Published: October 15, 2024

CVE-2024-0129

7.8

Nvidia

Nemo

Apple

Linux

Microsoft

Published: October 15, 2024

CVE-2024-45271

7.8

Mbconnectline

Mbnet.Mini Firmware
Mbnet.Mini

Helmholz

Published: October 15, 2024

CVE-2024-45273

7.8

Mbconnectline

Mbnet.Mini Firmware
Mbnet.Mini
Mbconnect24
Mymbconnect24
Mbspider Mdh 905 Firmware
Mbspider Mdh 905
Mbspider Mdh 915 Firmware
Mbspider Mdh 915
Mbspider Mdh 906 Firmware
Mbspider Mdh 906
Mbspider Mdh 916 Firmware
Mbspider Mdh 916
Mbnet Hw1 Firmware
Mbnet Hw1
Mbnet Firmware
Mbnet
Mbnet.Rokey Firmware
Mbnet.Rokey

Helmholz

Published: October 15, 2024

CVE-2024-9956

7.8

Google Chrome on Android

Version(s): before 130.0.6723.58

Published: October 15, 2024

CVE-2024-48279

7.6

PHPGurukul User Registration & Login and User Management System

Version(s): 3.2

Published: October 15, 2024

CVE-2024-48280

7.6

PHPGurukul User Registration & Login and User Management System

Version(s): 3.2

Published: October 15, 2024

CVE-2024-48282

7.6

PHPGurukul User Registration & Login and User Management System

Version(s): 3.2

Published: October 15, 2024

CVE-2024-21191

7.6

Oracle

Fusion Middleware

Published: October 15, 2024

CVE-2024-21195

7.6

Oracle

Bi Publisher

Published: October 15, 2024

CVE-2024-9820

7.5

Dueclic

Wp 2fa With Telegram

Published: October 15, 2024

CVE-2024-46898

7.5

Ss-Proj

Shirasagi

Published: October 15, 2024

CVE-2024-9983

7.5

Ragic

Enterprise Cloud Database

Published: October 15, 2024

CVE-2024-45272

7.5

Helmholz

Myrex24 V2 Virtual Server
Rex 300 Firmware
Rex 300
Rex 200 Firmware
Rex 200
Rex 250 Firmware
Rex 250

Mbconnectline

Published: October 15, 2024

CVE-2024-45276

7.5

Mbconnectline

Mbnet.Mini Firmware
Mbnet.Mini

Helmholz

Published: October 15, 2024

CVE-2024-49387

7.5

Acronis

Cyber Protect

Linux

Microsoft

Published: October 15, 2024

CVE-2024-5749

7.5

HP DesignJet

Published: October 15, 2024

CVE-2024-41344

7.5

CodeIgniter

Version(s): 3.1.13

Published: October 15, 2024

CVE-2024-21190

7.5

Oracle

Fusion Middleware

Published: October 15, 2024

CVE-2024-21215

7.5

Oracle

Fusion Middleware

Published: October 15, 2024

CVE-2024-21234

7.5

Oracle

Weblogic Server

Published: October 15, 2024

CVE-2024-21246

7.5

Oracle

Service Bus

Published: October 15, 2024

CVE-2024-21259

7.5

Oracle

Vm Virtualbox

Published: October 15, 2024

CVE-2024-21260

7.5

Oracle

Weblogic Server

Published: October 15, 2024

CVE-2024-21272

7.5

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21274

7.5

Oracle

Weblogic Server

Published: October 15, 2024

CVE-2024-44775

7.5

kmqtt

Version(s): 0.2.7

Published: October 15, 2024

CVE-2024-48783

7.5

Ruijie

Nbr3000d-E Firmware
Nbr3000d-E

Published: October 15, 2024

CVE-2024-45085

7.5

Ibm

Websphere Application Server

Published: October 15, 2024

CVE-2024-9837

7.3

AADMY – Add Auto Date Month Year Into Posts plugin for WordPress

Version(s): up to 2.0.1

Published: October 15, 2024

CVE-2024-21284

7.1

Oracle

Banking Liquidity Management

Published: October 15, 2024

CVE-2024-21285

7.1

Oracle

Banking Liquidity Management

Published: October 15, 2024

CVE-2024-47944

6.8

UNKNOWN

Published: October 15, 2024

CVE-2023-31493

6.6

ZoneMinder

Version(s): through 1.36.33

Published: October 15, 2024

CVE-2024-48622

6.6

DomainMOD

Version(s): before 4.12.0

Published: October 15, 2024

CVE-2024-9676

6.5

Podman

Buildah

CRI-O

Published: October 15, 2024

CVE-2024-21196

6.5

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21205

6.5

Oracle

Fusion Middleware

Published: October 15, 2024

CVE-2024-21230

6.5

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21262

6.5

Oracle

Mysql

Published: October 15, 2024

CVE-2024-48710

6.5

TP-Link TL-WDR7660

Version(s): 1.0

Published: October 15, 2024

CVE-2024-48712

6.5

TP-Link TL-WDR7660

Version(s): 1.0

Published: October 15, 2024

CVE-2024-48713

6.5

TP-Link TL-WDR7660

Version(s): 1.0

Published: October 15, 2024

CVE-2024-48714

6.5

TP-Link TL-WDR7660

Version(s): 1.0

Published: October 15, 2024

CVE-2024-38204

6.5

Microsoft

Azure Functions

Published: October 15, 2024

CVE-2024-9548

6.1

Wp-Slimstat

Slimstat Analytics

Published: October 15, 2024

CVE-2024-21535

6.1

Quantizor

Markdown-To-Jsx

Published: October 15, 2024

CVE-2024-9944

6.1

Woocommerce

Woocommerce

Published: October 15, 2024

CVE-2024-21202

6.1

Oracle

Peoplesoft Enterprise People Tools

Published: October 15, 2024

CVE-2024-21263

6.1

Oracle

Vm Virtualbox

Published: October 15, 2024

CVE-2024-21273

6.0

Oracle

Vm Virtualbox

Published: October 15, 2024

CVE-2024-48913

5.9

Hono web framework

Version(s): before 4.6.5

Published: October 15, 2024

CVE-2024-47674

5.5

Linux

Linux Kernel

Published: October 15, 2024

CVE-2024-48278

5.5

Phpgurukul User Registration & Login and User Management System

Version(s): 3.2

Published: October 15, 2024

CVE-2024-9969

5.4

Newtype

Webeip

Published: October 15, 2024

CVE-2024-9895

5.4

Zaytech

Smart Online Order For Clover

Published: October 15, 2024

CVE-2024-21264

5.4

Oracle

Peoplesoft Enterprise Cost Center Common Application Objects

Published: October 15, 2024

CVE-2024-21286

5.4

Oracle

Peoplesoft Enterprise

Published: October 15, 2024

CVE-2024-9546

5.3

Xplodedthemes

Wpide

Published: October 15, 2024

CVE-2024-9979

5.3

PyO3

Published: October 15, 2024

CVE-2024-48623

5.3

DomainMOD

Version(s): before v4.12.0

Published: October 15, 2024

CVE-2024-48624

5.3

DomainMOD

Version(s): before 4.12.0

Published: October 15, 2024

CVE-2024-21238

5.3

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21248

5.3

Oracle

Vm Virtualbox

Published: October 15, 2024

CVE-2024-21258

5.3

Oracle

Installed Base

Published: October 15, 2024

CVE-2024-21281

5.3

Oracle

Banking Liquidity Management

Published: October 15, 2024

CVE-2024-9966

5.3

Google

Chrome

Published: October 15, 2024

CVE-2024-21193

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21194

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21197

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21198

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21199

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21200

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21201

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21203

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21204

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21207

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21218

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21219

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21236

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21239

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21241

4.9

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21261

4.9

Oracle

Application Express

Published: October 15, 2024

CVE-2024-31955

4.9

Samsung eMMC

Version(s): KLMAG2GE4A, KLM8G1WEMB

Published: October 15, 2024

CVE-2024-9952

4.8

Oretnom23

Online Eyewear Shop

Published: October 15, 2024

CVE-2024-48948

4.8

Node.js

Version(s): 6.5.7

Published: October 15, 2024

CVE-2024-21235

4.8

Oracle

Graalvm
Graalvm For Jdk
Jdk
Jre

Published: October 15, 2024

CVE-2024-9977

4.7

MitraStar GPT-2541GNAC BR_g5.6_1.11(WVK.0)b26

Published: October 15, 2024

CVE-2024-21192

4.4

Oracle

Fusion Middleware

Published: October 15, 2024

CVE-2024-21212

4.4

Oracle

Mysql

Published: October 15, 2024

CVE-2024-6757

4.3

Elementor

Website Builder

Published: October 15, 2024

CVE-2024-49382

4.3

Acronis

Cyber Protect

Linux

Microsoft

Published: October 15, 2024

CVE-2024-49383

4.3

Acronis

Cyber Protect

Linux

Microsoft

Published: October 15, 2024

CVE-2024-49384

4.3

Acronis

Cyber Protect

Linux

Microsoft

Published: October 15, 2024

CVE-2024-21206

4.3

Oracle E-Business Suite

Version(s): ECC:11-13

Published: October 15, 2024

CVE-2024-21233

4.3

Oracle

Database Server

Published: October 15, 2024

CVE-2024-21249

4.3

Oracle

Peoplesoft Enterprise Fin Expenses

Published: October 15, 2024

CVE-2024-9958

4.3

Google

Chrome

Published: October 15, 2024

CVE-2024-9962

4.3

Google

Chrome

Published: October 15, 2024

CVE-2024-9963

4.3

Google

Chrome

Published: October 15, 2024

CVE-2024-9964

4.3

Google

Chrome

Published: October 15, 2024

CVE-2024-21213

4.2

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21247

3.8

Oracle

Mysql

Published: October 15, 2024

CVE-2024-9506

3.7

Vue.js

Published: October 15, 2024

CVE-2024-21208

3.7

Oracle Java SE

Version(s): 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23

Oracle GraalVM for JDK

Version(s): 17.0.12, 21.0.4, 23

Oracle GraalVM Enterprise Edition

Version(s): 20.3.15, 21.3.11

Published: October 15, 2024

CVE-2024-21210

3.7

Oracle Java SE

Version(s): 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23

Published: October 15, 2024

CVE-2024-21211

3.7

Oracle GraalVM for JDK

Version(s): 17.0.12, 21.0.4, 23

Oracle GraalVM Enterprise Edition

Version(s): 20.3.15, 21.3.11

Oracle Java SE

Version(s): 23

Published: October 15, 2024

CVE-2024-21217

3.7

Oracle

Graalvm
Graalvm For Jdk
Jdk
Jre

Published: October 15, 2024

CVE-2024-21242

3.5

Oracle

Xml Database

Published: October 15, 2024

CVE-2024-21231

3.1

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21251

3.1

Oracle

Database Server

Published: October 15, 2024

CVE-2024-21257

3.0

Oracle

Hyperion Bi\+

Published: October 15, 2024

CVE-2024-21253

2.3

Oracle

Vm Virtualbox

Published: October 15, 2024

CVE-2024-21232

2.2

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21237

2.2

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21243

2.2

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21244

2.2

Oracle

Mysql

Published: October 15, 2024

CVE-2024-21209

2.0

Oracle

Mysql

Published: October 15, 2024

CVE-2024-47824

0.0

matrix-react-sdk

Version(s): 3.18.0 - 3.101.9

Published: October 15, 2024

CVE-2024-47874

0.0

Starlette

Version(s): before 0.40.0

Published: October 15, 2024

CVE-2024-47876

0.0

Sakai

Version(s): 23.0 - 23.2

Published: October 15, 2024

CVE-2024-48915

0.0

Agent Dart

Version(s): before 1.0.0-dev.29

Published: October 15, 2024

CVE-2024-47943

None

Rittal IoT Interface

CMC III Processing Unit

Published: October 15, 2024

CVE-2024-47080

None

matrix-js-sdk

Version(s): 9.11.0, 34.7.0

Published: October 15, 2024

CVE-2024-47771

None

Element Desktop

Version(s): 1.11.70, 1.11.71, 1.11.72, 1.11.73, 1.11.74, 1.11.75, 1.11.76, 1.11.77, 1.11.78, 1.11.79, 1.11.80

Published: October 15, 2024

CVE-2024-47779

None

Element Web

Version(s): 1.11.70, 1.11.71, 1.11.72, 1.11.73, 1.11.74, 1.11.75, 1.11.76, 1.11.77, 1.11.78, 1.11.79, 1.11.80

Published: October 15, 2024

CVE-2024-44337

None

github.com/gomarkdown/markdown

Version(s): before pseudoversion v0.0.0-20240729232818-a2a9c4f

Published: October 15, 2024

Tag: 2024-10-15

Attack reports

Burning Zero Days: Suspected Nation-State Adversary Targets Ivanti CSA

FASTCash for Linux

HijackLoader evolution: abusing genuine signing certificates

SideWinder APT's post-exploitation framework analysis

CoreWarrior Spreader Malware Surge

Expanding the Investigation: Deep Dive into Latest TrickMo Samples

Hidden in Plain Sight: ErrorFather’s Deadly Deployment of Cerberus

Water Makara Uses Obfuscated JavaScript in Spear Phishing Campaign Targeting Brazil With Astaroth Malware

Silent Threat: Red Team Tool EDRSilencer Disrupting Endpoint Security Solutions

Vulnerabilities

CVE-2024-9972

CVE-2024-9982

CVE-2024-9925

CVE-2024-9984

CVE-2024-9985

CVE-2024-47945

CVE-2024-9973

CVE-2024-9974

CVE-2024-45274

CVE-2024-45275

CVE-2024-9976

CVE-2024-48283

CVE-2024-9986

CVE-2024-21216

CVE-2024-49195

CVE-2024-48411

CVE-2024-48779

CVE-2024-48781

CVE-2024-48782

CVE-2024-9486

CVE-2024-49388

CVE-2024-48914

CVE-2024-10004

CVE-2024-21172

CVE-2024-9687

CVE-2024-9968

CVE-2024-9970

CVE-2024-9971

CVE-2024-9980

CVE-2024-9981

CVE-2024-9975

CVE-2024-35584

CVE-2024-21254

CVE-2024-21255

CVE-2024-9954

CVE-2024-9955

CVE-2024-9957

CVE-2024-9959

CVE-2024-9960

CVE-2024-9961

CVE-2024-9965

CVE-2024-38139

CVE-2024-38190

CVE-2024-21214

CVE-2024-21250

CVE-2024-21252

CVE-2024-21265

CVE-2024-21266

CVE-2024-21267

CVE-2024-21268

CVE-2024-21269

CVE-2024-21270

CVE-2024-21271

CVE-2024-21275

CVE-2024-21276

CVE-2024-21277

CVE-2024-21278

CVE-2024-21279

CVE-2024-21280

CVE-2024-21282

CVE-2024-21283

CVE-2024-41311

CVE-2024-9594

CVE-2024-0129

CVE-2024-45271

CVE-2024-45273

CVE-2024-9956

CVE-2024-48279