Poster - CVE CyberSecurity Database News (Page 706)

Jul 1, 2024 Exploit Cisco PHP

CVE-2024-20399 - How Locals Can Become Root on Cisco NX-OS Devices

In June 2024, a critical security flaw—CVE-2024-20399—was reported in the CLI (Command Line Interface) of Cisco NX-OS Software. This bug isn’t just

Jul 1, 2024 RCE Java

CVE-2024-36401 - Critical RCE in GeoServer via OGC Request Parameters – What You Need to Know

GeoServer is a popular open-source server used for sharing and editing geospatial data. Many organizations rely on it for serving maps and spatial data to

Jul 1, 2024 Windows

CVE-2024-6376 - Code Injection Vulnerability in MongoDB Compass via ejson Shell Parser

CVE-2024-6376 is a critical code injection vulnerability that affects MongoDB Compass—the popular GUI for MongoDB databases. The flaw is tied to insufficient sandbox protection

Jul 1, 2024

CVE-2024-6375 - Missing Authorization on Shard Key Refinement Exposes MongoDB to Security & Performance Risks

MongoDB is a widely used NoSQL database, powering thousands of applications worldwide. In mid-2024, a security weakness—CVE-2024-6375—was discovered that could allow unauthorized actions

Jul 1, 2024 Red Hat Red Hat Enterprise Linux 8

CVE-2024-6387 - Signal Handler Race Condition in OpenSSH's sshd — Explained with Code, Links, and Exploit Guide

OpenSSH is the backbone of secure shell access across millions of servers. But even the most trusted foundations can get cracks. In July 2024, CVE-2024-6387