Filtered by NVD-CWE-noinfo
Total 35577 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-25979 2 Fedoraproject, Moodle 2 Fedora, Moodle 2025-01-23 5.3 Medium
The URL parameters accepted by forum search were not limited to the allowed parameters.
CVE-2024-25980 2 Fedoraproject, Moodle 3 Fedora, H5p, Moodle 2025-01-23 4.3 Medium
Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided additional access to non-editing teachers.
CVE-2024-25981 2 Fedoraproject, Moodle 2 Fedora, Moodle 2025-01-23 4.3 Medium
Separate Groups mode restrictions were not honored when performing a forum export, which would export forum data for all groups. By default this only provided additional access to non-editing teachers.
CVE-2023-30281 1 Storecommander 1 Scquickaccounting 2025-01-23 7.5 High
Insecure permissions vulnerability was discovered, due to a lack of permissions’s control in scquickaccounting before v3.7.3 from Store Commander for PrestaShop, a guest can access exports from the module which can lead to leak of personnal informations from ps_customer table sush as name / surname / email
CVE-2024-21590 1 Juniper 1 Junos Os Evolved 2025-01-23 5.3 Medium
An Improper Input Validation vulnerability in Juniper Tunnel Driver (jtd) and ICMP module of Juniper Networks Junos OS Evolved allows an unauthenticated attacker within the MPLS administrative domain to send specifically crafted packets to the Routing Engine (RE) to cause a Denial of Service (DoS).  When specifically crafted transit MPLS IPv4 packets are received by the Packet Forwarding Engine (PFE), these packets are internally forwarded to the RE. Continued receipt of these packets may create a sustained Denial of Service (DoS) condition. This issue affects Juniper Networks Junos OS: * All versions before 21.2R3-S8-EVO; * from 21.4-EVO before 21.4R3-S6-EVO; * from 22.2-EVO before 22.2R3-S4-EVO; * from 22.3-EVO before 22.3R3-S3-EVO; * from 22.4-EVO before 22.4R3-EVO; * from 23.2-EVO before 23.2R2-EVO. * from 23.4-EVO before 23.4R1-S1-EVO.
CVE-2023-31572 1 Bludit 1 Bludit 2025-01-23 8.8 High
An issue in Bludit 4.0.0-rc-2 allows authenticated attackers to change the Administrator password and escalate privileges via a crafted request.
CVE-2023-24934 1 Microsoft 1 Malware Protection Platform 2025-01-23 6.2 Medium
Microsoft Defender Security Feature Bypass Vulnerability
CVE-2023-28249 1 Microsoft 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more 2025-01-23 6.2 Medium
Windows Boot Manager Security Feature Bypass Vulnerability
CVE-2023-28269 1 Microsoft 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more 2025-01-23 6.2 Medium
Windows Boot Manager Security Feature Bypass Vulnerability
CVE-2023-28312 1 Microsoft 1 Azure Machine Learning 2025-01-23 6.5 Medium
Azure Machine Learning Information Disclosure Vulnerability
CVE-2023-28299 1 Microsoft 3 Visual Studio 2017, Visual Studio 2019, Visual Studio 2022 2025-01-23 5.5 Medium
Visual Studio Spoofing Vulnerability
CVE-2023-28296 1 Microsoft 3 Visual Studio 2017, Visual Studio 2019, Visual Studio 2022 2025-01-23 7.8 High
Visual Studio Remote Code Execution Vulnerability
CVE-2023-28293 1 Microsoft 12 Windows 10 1607, Windows 10 1809, Windows 10 20h2 and 9 more 2025-01-23 7.8 High
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-28263 1 Microsoft 2 Visual Studio 2019, Visual Studio 2022 2025-01-23 5.5 Medium
Visual Studio Information Disclosure Vulnerability
CVE-2023-28262 1 Microsoft 2 Visual Studio 2019, Visual Studio 2022 2025-01-23 7.8 High
Visual Studio Elevation of Privilege Vulnerability
CVE-2023-28256 1 Microsoft 5 Windows Server 2008, Windows Server 2012, Windows Server 2016 and 2 more 2025-01-23 6.6 Medium
Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28255 1 Microsoft 5 Windows Server 2008, Windows Server 2012, Windows Server 2016 and 2 more 2025-01-23 6.6 Medium
Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28277 1 Microsoft 1 Windows Server 2022 2025-01-23 4.9 Medium
Windows DNS Server Information Disclosure Vulnerability
CVE-2023-28254 1 Microsoft 5 Windows Server 2008, Windows Server 2012, Windows Server 2016 and 2 more 2025-01-23 7.2 High
Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28276 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2025-01-23 4.4 Medium
Windows Group Policy Security Feature Bypass Vulnerability