Tag: 2024-12-10

6 Attack Reports | 271 Vulnerabilities

Attack reports

Analysis of Recent Attack Activities Targeting China Using Research Project Plans as Bait

The Patchwork APT group, also known as Hangover and Dropping Elephant, has been conducting cyber espionage activities since 2009, primarily targeting Asian countries including China and Pakistan. Recently, they launched a phishing campaign against Chinese research personnel using a document titled …
asyncrat
2024-12-10
badnews
Published: December 10, 2024
Downloadable IOCs: 0

Unidentified Threat Actor Utilizes Android Malware to Target High-Value Assets in South Asia

An unknown threat actor has deployed a malicious Android sample targeting high-value assets in Southern Asia. The malware, generated using the Spynote Remote Administration Tool, was delivered via WhatsApp in multiple attempts. The payload, concealed and operating in the background, exhibits variou…
rat
android
whatsapp
2024-12-10
Published: December 10, 2024
Downloadable IOCs: 5

Extensive Analysis of APT-C-53 (Gamaredon) Group's Attack Activities

APT-C-53 (Gamaredon), also known as Primitive Bear, Winterflounder, and BlueAlpha, is an active APT group since 2013 targeting government, defense, diplomacy, and media sectors. The analysis reveals their use of complex techniques including malicious LNK files, XHTML files, and sophisticated phishi…
2024-12-10
gamaredon
Published: December 10, 2024
Downloadable IOCs: 6

Unveiling RevC2 and Venom Loader

Between August and October 2024, two new malware families, RevC2 and Venom Loader, were deployed using Venom Spider's Malware-as-a-Service tools. RevC2 uses WebSockets for C2 communication and can steal cookies and passwords, proxy network traffic, and enable remote code execution. Venom Loader is …
2024-12-10
venom loader
terrastealer
revc2
venomlnk
Published: December 10, 2024
Downloadable IOCs: 11

Pirated Business Software Activator Spreads RedLine Stealer

A malicious campaign targeting users of unlicensed corporate business automation software has been discovered. The attackers are distributing malicious activators on accounting forums that contain the RedLine stealer hidden in an unusual way. The activator library is obfuscated using .NET Reactor, …
redline stealer
2024-12-10
Published: December 10, 2024
Downloadable IOCs: 12

Cleo Software Actively Being Exploited in the Wild

A critical vulnerability in Cleo's LexiCom, VLTransfer, and Harmony software, used for file transfer management, is being actively exploited. The flaw allows unauthenticated remote code execution, affecting all versions up to and including 5.8.0.21. Attackers are exploiting this vulnerability to dr…
vulnerability
CVE-2024-50623
2024-12-10
cleo
file transfer software
lexicom
vltransfer
harmony
Published: December 10, 2024
Downloadable IOCs: 4
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-37143

10.0
    Dell PowerFlex appliance
  • Version(s): before IC 46.381.00, before IC 46.376.00
    Dell PowerFlex rack
  • Version(s): before RCM 3.8.1.0 (for RCM 3.8.x train), before RCM 3.7.6.0 (for RCM 3.7.x train)
    Dell PowerFlex custom node using PowerFlex Manager
  • Version(s): before 4.6.1.0
    Dell InsightIQ
  • Version(s): before 5.1.1
    Dell Data Lakehouse
  • Version(s): before 1.2.0.0
Published: December 10, 2024

CVE-2024-11639

10.0
    Ivanti CSA
  • Version(s): before 5.0.3
Published: December 10, 2024

CVE-2024-55636

9.8
    Drupal Core
  • Version(s): 8.0.0 - 10.2.11, 10.3.0 - 10.3.9, 11.0.0 - 11.0.8
Published: December 10, 2024

CVE-2024-55637

9.8
    Drupal Core
  • Version(s): 8.0.0 - 10.2.11, 10.3.0 - 10.3.9, 11.0.0 - 11.0.8
Published: December 10, 2024

CVE-2024-55638

9.8
    Drupal Core
  • Version(s): 7.0 - 7.102, 8.0.0 - 10.2.11, 10.3.0 - 10.3.9
Published: December 10, 2024

CVE-2024-53552

9.8
    CrushFTP
  • Version(s): 10 before 10.8.3, 11 before 11.2.3
Published: December 10, 2024

CVE-2024-55586

9.8
    Nette Database
  • Version(s): up to 3.2.4
Published: December 10, 2024

CVE-2024-5660

9.8
    UNKNOWN
Published: December 10, 2024

CVE-2024-54751

9.8
    COMFAST CF-WR630AX
  • Version(s): v2.7.0.2
Published: December 10, 2024

CVE-2024-45493

9.8
    MSA Safety FieldServer Gateways and Embedded Modules
  • Version(s): before 7.0.0
Published: December 10, 2024

CVE-2024-45494

9.8
    MSA Safety FieldServer Gateways and Embedded Modules
  • Version(s): before 7.0.0
Published: December 10, 2024

CVE-2024-12286

9.8
    MOBATIME Network Master Clock - DTS 4801
Published: December 10, 2024

CVE-2024-46442

9.8
    BYD Dilink Headunit System
  • Version(s): 3.0, 4.0
Published: December 10, 2024

CVE-2024-53480

9.8
    Phpgurukul's Beauty Parlour Management System
  • Version(s): v1.1
Published: December 10, 2024

CVE-2024-54032

9.3
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-47578

9.1
    Adobe Document Service
Published: December 10, 2024

CVE-2024-11633

9.1
    Ivanti Connect Secure
  • Version(s): before 22.7R2.4
Published: December 10, 2024

CVE-2024-11634

9.1
    Ivanti Connect Secure
  • Version(s): before 22.7R2.3
    Ivanti Policy Secure
  • Version(s): before 22.7R1.2
Published: December 10, 2024

CVE-2024-11772

9.1
    Ivanti CSA
  • Version(s): before 5.0.3
Published: December 10, 2024

CVE-2024-11773

9.1
    Ivanti CSA
  • Version(s): before 5.0.3
Published: December 10, 2024

CVE-2020-28398

8.8
    RUGGEDCOM ROX MX5000
  • Version(s): < V2.16.0
    RUGGEDCOM ROX MX5000RE
  • Version(s): < V2.16.0
    RUGGEDCOM ROX RX1400
  • Version(s): < V2.16.0
    RUGGEDCOM ROX RX1500
  • Version(s): < V2.16.0
    RUGGEDCOM ROX RX1501
  • Version(s): < V2.16.0
    RUGGEDCOM ROX RX1510
  • Version(s): < V2.16.0
    RUGGEDCOM ROX RX1511
  • Version(s): < V2.16.0
    RUGGEDCOM ROX RX1512
  • Version(s): < V2.16.0
    RUGGEDCOM ROX RX1524
  • Version(s): < V2.16.0
    RUGGEDCOM ROX RX1536
  • Version(s): < V2.16.0
    RUGGEDCOM ROX RX5000
  • Version(s): < V2.16.0
Published: December 10, 2024

CVE-2024-53247

8.8
    Splunk Enterprise
  • Version(s): below 9.3.2, 9.2.4, 9.1.7
    Splunk Secure Gateway app on Splunk Cloud Platform
  • Version(s): below 3.2.461, 3.7.13
Published: December 10, 2024

CVE-2024-50920

8.8
    Silicon Labs Z-Wave Series 700
  • Version(s): 7.21.1
    Silicon Labs Z-Wave Series 800
  • Version(s): 7.21.1
Published: December 10, 2024

CVE-2024-50930

8.8
    Silicon Labs Z-Wave Series 500
  • Version(s): 6.84.0
Published: December 10, 2024

CVE-2024-55500

8.8
    Avenwu Whistle
  • Version(s): 2.9.90 and before
Published: December 10, 2024

CVE-2024-8540

8.8
    Ivanti Sentry
  • Version(s): before 9.20.2, before 10.0.2, before 10.1.0
Published: December 10, 2024

CVE-2024-46340

8.8
    TP-Link TL-WR845N(UN)_V4_200909
    TP-Link TL-WR845N(UN)_V4_190219
Published: December 10, 2024

CVE-2024-21542

8.6
    luigi
  • Version(s): before 3.6.0
Published: December 10, 2024

CVE-2024-54198

8.5
    SAP NetWeaver Application Server ABAP
Published: December 10, 2024

CVE-2024-11205

8.5
    WPForms plugin for WordPress
  • Version(s): 1.8.4 - 1.9.2.1
Published: December 10, 2024

CVE-2024-37144

8.2
    Dell PowerFlex appliance
  • Version(s): prior to IC 46.381.00, prior to IC 46.376.00
    Dell PowerFlex rack
  • Version(s): prior to RCM 3.8.1.0 (for RCM 3.8.x train), prior to RCM 3.7.6.0 (for RCM 3.7.x train)
    Dell PowerFlex custom node using PowerFlex Manager
  • Version(s): prior to 4.6.1.0
    Dell InsightIQ
  • Version(s): prior to 5.1.1
    Dell Data Lakehouse
  • Version(s): prior to 1.2.0.0
Published: December 10, 2024

CVE-2024-47484

8.2
    Dell Avamar
  • Version(s): 19.9
Published: December 10, 2024

CVE-2024-54036

8.2
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-55634

8.1
    Drupal Core
  • Version(s): 8.0.0 - 10.2.11, 10.3.0 - 10.3.9, 11.0.0 - 11.0.8
Published: December 10, 2024

CVE-2024-50699

8.0
    TP-Link TL-WR845N(UN)_V4_201214
    TP-Link TL-WR845N(UN)_V4_200909
    TP-Link TL-WR845N(UN)_V4_190219
Published: December 10, 2024

CVE-2024-46341

8.0
    TP-Link TL-WR845N
  • Version(s): UN_V4_190219
Published: December 10, 2024

CVE-2024-54034

8.0
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-49849

7.8
    SIMATIC S7-PLCSIM
  • Version(s): V16 (All versions), V17 (All versions)
    SIMATIC STEP 7 Safety
  • Version(s): V16 (All versions), V17 (All versions), V18 (All versions), V19 (All versions)
    SIMATIC STEP 7
  • Version(s): V16 (All versions), V17 (All versions), V18 (All versions), V19 (All versions)
    SIMATIC WinCC Unified
  • Version(s): V16 (All versions), V17 (All versions), V18 (All versions), V19 (All versions)
    SIMATIC WinCC
  • Version(s): V16 (All versions), V17 (All versions), V18 (All versions), V19 (All versions)
    SIMOCODE ES
  • Version(s): V16 (All versions), V17 (All versions), V18 (All versions), V19 (All versions)
    SIMOTION SCOUT TIA
  • Version(s): V5.4 SP1 (All versions), V5.4 SP3 (All versions), V5.5 SP1 (All versions), V5.6 SP1 (All versions)
    SINAMICS Startdrive
  • Version(s): V16 (All versions), V17 (All versions), V18 (All versions), V19 (All versions)
    SIRIUS Safety ES (TIA Portal)
  • Version(s): V17 (All versions), V18 (All versions), V19 (All versions)
    SIRIUS Soft Starter ES (TIA Portal)
  • Version(s): V17 (All versions), V18 (All versions), V19 (All versions)
    TIA Portal Cloud
  • Version(s): V16 (All versions), V17 (All versions), V18 (All versions), V19 (All versions)
Published: December 10, 2024

CVE-2024-53041

7.8
    Tecnomatix Plant Simulation
  • Version(s): V2302.0016, V2404.0005
    Teamcenter Visualization
  • Version(s): V14.2.0.14, V14.3.0.12, V2312.0008
Published: December 10, 2024

CVE-2024-53242

7.8
    Tecnomatix Plant Simulation
  • Version(s): V2302.0016, V2404.0005
    Teamcenter Visualization
  • Version(s): V14.2.0.14, V14.3.0.12, V2312.0008
Published: December 10, 2024

CVE-2024-54091

7.8
    Parasolid
  • Version(s): V36.1 < V36.1.225, V37.0 < V37.0.173, V37.1 < V37.1.109
Published: December 10, 2024

CVE-2024-54093

7.8
    Solid Edge
  • Version(s): < V224.0 Update 5
Published: December 10, 2024

CVE-2024-54094

7.8
    Solid Edge
  • Version(s): < V224.0 Update 5
Published: December 10, 2024

CVE-2024-54095

7.8
    Solid Edge
  • Version(s): < V224.0 Update 10
Published: December 10, 2024

CVE-2024-10494

7.8
    LabVIEW
  • Version(s): 2024 Q3 and prior
Published: December 10, 2024

CVE-2024-10495

7.8
    NI LabVIEW
  • Version(s): 2024 Q3, prior versions
Published: December 10, 2024

CVE-2024-10496

7.8
    LabVIEW
  • Version(s): 2024 Q3 and prior versions
Published: December 10, 2024

CVE-2024-49551

7.8
    Adobe
  • Media Encoder
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-49552

7.8
    Adobe
  • Media Encoder
Published: December 10, 2024

CVE-2024-49553

7.8
    Adobe
  • Media Encoder
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-45155

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-45156

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-49513

7.8
    Adobe
  • Pdf Library Sdk
    Apple
    Linux
    Microsoft
Published: December 10, 2024

CVE-2024-49537

7.8
    Adobe
  • After Effects
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-49538

7.8
    Adobe
  • Illustrator
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-49543

7.8
    Adobe
  • Indesign
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-49544

7.8
    Adobe
  • Indesign
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-49545

7.8
    Adobe
  • Indesign
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52982

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52983

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52984

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52985

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52986

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52987

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52988

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52989

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52990

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52994

7.8
    Adobe
  • Substance 3d Sampler
Published: December 10, 2024

CVE-2024-52995

7.8
    Adobe
  • Substance 3d Sampler
Published: December 10, 2024

CVE-2024-52996

7.8
    Adobe
  • Substance 3d Sampler
Published: December 10, 2024

CVE-2024-52997

7.8
    Adobe
  • Photoshop
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-53953

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-53954

7.8
    Adobe
  • Animate
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52999

7.8
    Adobe
  • Substance 3d Modeler
Published: December 10, 2024

CVE-2024-53000

7.8
    Adobe
  • Substance 3d Modeler
Published: December 10, 2024

CVE-2024-53001

7.8
    Adobe
  • Substance 3d Modeler
Published: December 10, 2024

CVE-2024-53002

7.8
    Adobe
  • Substance 3d Modeler
Published: December 10, 2024

CVE-2024-53003

7.8
    Adobe
  • Substance 3d Modeler
Published: December 10, 2024

CVE-2024-53955

7.8
    Adobe
  • Bridge
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-53956

7.8
    Adobe
  • Premiere Pro
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-53957

7.8
    Adobe
  • Substance 3d Painter
Published: December 10, 2024

CVE-2024-53958

7.8
    Adobe
  • Substance 3d Painter
Published: December 10, 2024

CVE-2024-53959

7.8
    Adobe
  • Framemaker
    Microsoft
Published: December 10, 2024

CVE-2023-6947

7.7
    FooGallery plugin for WordPress
  • Version(s): up to 2.4.26
Published: December 10, 2024

CVE-2024-53919

7.6
    Barco ClickShare CX-30/20, C-5/10, ClickShare Bar Pro, ClickShare Core
  • Version(s): before 2.21.1
Published: December 10, 2024

CVE-2024-52538

7.6
    Dell Avamar
  • Version(s): 19.9
Published: December 10, 2024

CVE-2024-55602

7.6
    PwnDoc
  • Version(s): before commit 1d4219c596f4f518798492e48386a20c6e9a2fe6
Published: December 10, 2024

CVE-2024-51165

7.5
    JEPAAS
  • Version(s): 7.2.8
Published: December 10, 2024

CVE-2024-28138

7.3
    UNKNOWN
Published: December 10, 2024

CVE-2024-10959

7.3
    WooCommerce Active Products Tables
  • Version(s): up to 1.0.6.5
Published: December 10, 2024

CVE-2024-52051

7.3
    SIRIUS Safety ES (TIA Portal)
  • Version(s): V17 (All versions), V18 (All versions), V19 (All versions)
    SIRIUS Soft Starter ES (TIA Portal)
  • Version(s): V17 (All versions), V18 (All versions), V19 (All versions)
    SIMATIC S7-PLCSIM
  • Version(s): V17 (All versions), V18 (All versions)
    SIMATIC STEP 7 Safety
  • Version(s): V17 (All versions), V18 (All versions), V19 (All versions)
    SIMATIC STEP 7
  • Version(s): V17 (All versions), V18 (All versions), V19 (All versions)
    SIMATIC WinCC Unified PC Runtime
  • Version(s): V18 (All versions), V19 (All versions)
    SIMATIC WinCC Unified
  • Version(s): V17 (All versions), V18 (All versions), V19 (All versions)
    SIMATIC WinCC
  • Version(s): V17 (All versions), V18 (All versions), V19 (All versions)
    SIMOCODE ES
  • Version(s): V17 (All versions), V18 (All versions), V19 (All versions)
    SIMOTION SCOUT TIA
  • Version(s): V5.4 SP3 (All versions), V5.5 SP1 (All versions), V5.6 SP1 (All versions)
    SINAMICS Startdrive
  • Version(s): V17 (All versions), V18 (All versions), V19 (All versions)
    TIA Portal Cloud
  • Version(s): V17 (All versions), V18 (All versions), V19 (All versions)
Published: December 10, 2024

CVE-2024-54037

7.3
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54197

7.2
    SAP NetWeaver Administrator
Published: December 10, 2024

CVE-2024-47946

7.2
    UNKNOWN
Published: December 10, 2024

CVE-2024-54008

7.2
    AirWave
Published: December 10, 2024

CVE-2024-47977

7.1
    Dell Avamar
  • Version(s): 19.9
Published: December 10, 2024

CVE-2024-10256

7.1
    Ivanti Patch SDK
  • Version(s): before 9.7.703
Published: December 10, 2024

CVE-2024-7572

7.1
    Ivanti DSM
  • Version(s): before 2024.3.5740
Published: December 10, 2024

CVE-2024-9844

7.1
    Ivanti Connect Secure
  • Version(s): before 22.7R2.4
Published: December 10, 2024

CVE-2024-49530

7.0
    Acrobat Reader
  • Version(s): 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier
Published: December 10, 2024

CVE-2024-47579

6.8
    SAP NetWeaver Application Server
Published: December 10, 2024

CVE-2024-47580

6.8
    SAP
Published: December 10, 2024

CVE-2024-50921

6.5
    Silicon Labs Z-Wave Series 700
  • Version(s): 7.21.1
    Silicon Labs Z-Wave Series 800
  • Version(s): 7.21.1
Published: December 10, 2024

CVE-2024-50924

6.5
    Silicon Labs Z-Wave
  • Version(s): 700 v7.21.1, 800 v7.21.1
Published: December 10, 2024

CVE-2024-50928

6.5
    Silicon Labs Z-Wave Series 700
  • Version(s): 7.21.1
    Silicon Labs Z-Wave Series 800
  • Version(s): 7.21.1
Published: December 10, 2024

CVE-2024-43729

6.5
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-55653

6.5
    PwnDoc
  • Version(s): up to 0.5.3
Published: December 10, 2024

CVE-2024-11940

6.4
    Property Hive Mortgage Calculator plugin for WordPress
  • Version(s): up to 1.0.6
Published: December 10, 2024

CVE-2024-11945

6.4
    Email Reminders plugin for WordPress
  • Version(s): up to 2.0.4
Published: December 10, 2024

CVE-2024-11928

6.4
    iChart – Easy Charts and Graphs plugin for WordPress
  • Version(s): up to 2.1.0
Published: December 10, 2024

CVE-2024-49535

6.3
    Adobe
  • Acrobat
  • Acrobat Dc
  • Acrobat Reader
  • Acrobat Reader Dc
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-50929

6.2
    Silicon Labs Z-Wave Series 700
  • Version(s): 7.21.1
    Silicon Labs Z-Wave Series 800
  • Version(s): 7.21.1
Published: December 10, 2024

CVE-2024-55635

6.1
    Drupal Core
  • Version(s): 7.0 - 7.101
Published: December 10, 2024

CVE-2024-11107

6.1
    System Dashboard WordPress plugin
  • Version(s): before 2.8.15
Published: December 10, 2024

CVE-2024-11973

6.1
    Quran multilanguage Text & Audio plugin for WordPress
  • Version(s): up to 2.3.21
Published: December 10, 2024

CVE-2024-12323

6.1
    WordPress turboSMTP plugin
  • Version(s): up to 4.6
Published: December 10, 2024

CVE-2024-53481

6.1
    Unknown
Published: December 10, 2024

CVE-2024-49550

6.1
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54042

6.1
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54043

6.1
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54044

6.1
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54046

6.1
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54047

6.1
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54048

6.1
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54049

6.1
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54050

6.1
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54051

6.1
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-53244

5.7
    Splunk Enterprise
  • Version(s): below 9.3.2, 9.2.4, 9.1.7
    Splunk Cloud Platform
  • Version(s): below 9.2.2406.107, 9.2.2403.109, 9.1.2312.206
Published: December 10, 2024

CVE-2024-49704

5.5
    COMOS
  • Version(s): All versions < V10.3.3.5.8, V10.4.3.0.47, V10.4.4.2, V10.4.4.1.21
Published: December 10, 2024

CVE-2024-46657

5.5
    mupdf
  • Version(s): 1.24.9
Published: December 10, 2024

CVE-2024-49532

5.5
    Acrobat Reader
  • Version(s): 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier
Published: December 10, 2024

CVE-2024-49533

5.5
    Acrobat Reader
  • Version(s): 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier
Published: December 10, 2024

CVE-2024-49534

5.5
    Acrobat Reader
  • Version(s): 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710, earlier
Published: December 10, 2024

CVE-2024-49554

5.5
    Adobe
  • Media Encoder
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-49541

5.5
    Adobe
  • Illustrator
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-49546

5.5
    Adobe
  • Indesign
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-49547

5.5
    Adobe
  • Indesign
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-49548

5.5
    Adobe
  • Indesign
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-49549

5.5
    Adobe
  • Indesign
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-53951

5.5
    Adobe
  • Indesign
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-53952

5.5
    Adobe
  • Indesign
    Apple
    Microsoft
Published: December 10, 2024

CVE-2024-52833

5.5
    Adobe
  • Substance 3d Modeler
Published: December 10, 2024

CVE-2024-53004

5.5
    Adobe
  • Substance 3d Modeler
Published: December 10, 2024

CVE-2024-53005

5.5
    Adobe
  • Substance 3d Modeler
Published: December 10, 2024

CVE-2024-53006

5.5
    Adobe
  • Substance 3d Modeler
Published: December 10, 2024

CVE-2024-12393

5.4
    Drupal Core
  • Version(s): 8.8.0 - 10.2.11, 10.3.0 - 10.3.9, 11.0.0 - 11.0.8
Published: December 10, 2024

CVE-2024-47117

5.4
    IBM Carbon Design System (Carbon Charts)
  • Version(s): 0.4.0, 1.13.16
Published: December 10, 2024

CVE-2024-54039

5.4
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54040

5.4
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54041

5.4
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-54045

5.4
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-43712

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43713

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43714

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43715

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43718

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43719

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43720

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43721

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43722

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43723

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43724

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43725

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43726

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43727

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43728

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43730

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43733

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43734

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43735

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43736

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43737

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43738

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43739

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43740

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43742

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43743

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43744

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43745

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43746

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43747

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43748

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43749

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43750

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43751

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43752

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43754

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52816

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52817

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52818

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52822

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52823

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52824

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52825

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52826

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52827

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52828

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52829

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52830

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52832

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52834

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52835

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52836

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52837

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52838

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52839

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52840

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52841

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52842

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52843

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52844

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52845

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52846

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52847

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52848

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52849

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52850

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52851

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52852

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52853

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52854

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52855

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52857

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52858

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52859

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52860

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52861

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52862

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52864

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52865

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52991

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52992

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52993

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-53960

5.4
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-32732

5.3
    SAP BusinessObjects Business Intelligence platform
Published: December 10, 2024

CVE-2024-47582

5.3
    SAP
Published: December 10, 2024

CVE-2024-45709

5.3
    SolarWinds Web Help Desk
Published: December 10, 2024

CVE-2024-11106

5.3
    Simple Restrict plugin for WordPress
  • Version(s): up to 1.2.7
Published: December 10, 2024

CVE-2024-11868

5.3
    LearnPress WordPress LMS Plugin
  • Version(s): up to 4.2.7.3
Published: December 10, 2024

CVE-2024-53246

5.3
    Splunk Enterprise
  • Version(s): below 9.3.2, 9.2.4, 9.1.7
    Splunk Cloud Platform
  • Version(s): below 9.3.2408.101, 9.2.2406.106, 9.2.2403.111, 9.1.2312.206
Published: December 10, 2024

CVE-2024-54005

5.1
    COMOS
  • Version(s): V10.3 < V10.3.3.5.8, V10.4.0, V10.4.1, V10.4.2, V10.4.3 < V10.4.3.0.47, V10.4.4 < V10.4.4.2, V10.4.4.1 < V10.4.4.1.21
Published: December 10, 2024

CVE-2024-10708

4.9
    System Dashboard WordPress plugin
  • Version(s): before 2.8.15
Published: December 10, 2024

CVE-2024-49531

4.7
    Acrobat Reader
  • Version(s): 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier
Published: December 10, 2024

CVE-2024-53832

4.6
    CPCI85 Central Processing/Communication
  • Version(s): < V05.30
Published: December 10, 2024

CVE-2024-50931

4.6
    Silicon Labs Z-Wave Series 500
  • Version(s): 6.84.0
Published: December 10, 2024

CVE-2024-43732

4.6
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-47581

4.3
    SAP HCM Approve Timesheets
  • Version(s): Version 4
Published: December 10, 2024

CVE-2024-47585

4.3
    SAP NetWeaver Application Server for ABAP
Published: December 10, 2024

CVE-2024-53243

4.3
    Splunk Enterprise
  • Version(s): below 9.3.2, 9.2.4, 9.1.7
    Splunk Secure Gateway app on Splunk Cloud Platform
  • Version(s): below 3.2.462, 3.7.18, 3.8.5
Published: December 10, 2024

CVE-2024-54038

4.3
    Adobe
  • Connect
Published: December 10, 2024

CVE-2024-43716

4.3
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43717

4.3
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43731

4.3
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-43755

3.5
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-52831

3.5
    Adobe
  • Experience Manager
Published: December 10, 2024

CVE-2024-47576

3.3
    SAP Product Lifecycle Costing Client
  • Version(s): below 4.7.1
Published: December 10, 2024

CVE-2024-53245

3.1
    Splunk Enterprise
  • Version(s): below 9.3.0, 9.2.4, 9.1.7
    Splunk Cloud Platform
  • Version(s): below 9.1.2312.206
Published: December 10, 2024

CVE-2024-47577

2.7
    SAP Commerce Cloud
Published: December 10, 2024

CVE-2024-55550

2.7
    Mitel
  • Micollab
Published: December 10, 2024

CVE-2024-9672

None
    PaperCut NG/MF
Published: December 10, 2024

CVE-2024-8256

None
    Teltonika Networks RUTOS
  • Version(s): 7.0 - 7.7, TSWOS devices running on versions 1.0 - 1.2
Published: December 10, 2024

CVE-2024-12236

None
    Vertex Gemini API
Published: December 10, 2024

CVE-2024-54152

None
    Angular Expressions
  • Version(s): before 1.4.3
Published: December 10, 2024

CVE-2024-55544

None
    IAP-420
  • Version(s): 2.01e and below
Published: December 10, 2024

CVE-2024-55545

None
    IAP-420
  • Version(s): 2.01e and below
Published: December 10, 2024

CVE-2024-55546

None
    IAP-420
  • Version(s): 2.01e and below
Published: December 10, 2024

CVE-2024-55547

None
    NET-SNMP
  • Version(s): through 2.01e
Published: December 10, 2024

CVE-2024-55548

None
    IAP-420
  • Version(s): through 2.01e
Published: December 10, 2024

CVE-2024-53866

None
    pnpm
  • Version(s): before 9.15.0
Published: December 10, 2024

CVE-2024-54133

None
    Action Pack
  • Version(s): 5.2.0 - 7.0.8.7, 7.1.5.1, 7.2.2.1, 8.0.0.1
Published: December 10, 2024

CVE-2024-55655

None
    sigstore-python
  • Version(s): 2.0.0 - 3.5.9
Published: December 10, 2024
Click here to see more Vulnerabilities