Poster - CVE CyberSecurity Database News (Page 742)

May 31, 2024 Windows Exploit

CVE-2024-36246 - Critical Missing Authorization in Unifier and Unifier Cast (v5.+), Risk of LocalSystem Code Execution

A new and critical security vulnerability, CVE-2024-36246, has been identified in Unifier and Unifier Cast software version 5. and later. If affected systems have not

May 31, 2024 API Exploit

CVE-2024-37032 - Ollama Digest Validation Bug—How Insecure Digest Formats Can Be Exploited

In June 2024, a significant vulnerability surfaced in Ollama, a popular open-source framework for running large language models locally. Identified as CVE-2024-37032, this bug affects

May 30, 2024 API Exploit Google Chrome

CVE-2024-5499 - Out of Bounds Write in Chrome’s Streams API – How Remote Attackers Could Run Code in Your Browser

In late May 2024, Google patched a high-severity security flaw in its famous Chrome browser: CVE-2024-5499. This vulnerability was a classic “out-of-bounds write” in the

May 30, 2024 SQL PHP

CVE-2024-35359 - Critical SQL Injection in Diño Physics School Assistant 2.3 — Full Exploit Guide

A serious security vulnerability, CVE-2024-35359, has been discovered in the Diño Physics School Assistant web application, specifically in version 2.3. This popular tool, used

May 30, 2024 Windows API Exploit

CVE-2024-35428 - ZKTeco ZKBio CVSecurity 6.1.1 Directory Traversal Vulnerability – Exploit, Code, and Details

CVE-2024-35428 is a fresh and critical vulnerability discovered in ZKTeco ZKBio CVSecurity version 6.1.1, an access control and time-attendance software widely used across