Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In June 2024
CVE-2024-23670
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.0 and 6.2.3 through 6.2.4 and 6.0.2 allows attacker to execute unauthorized code or commands via HTTP requests or CLI.
CVSS Score
7.8
EPSS Score
0.004
Published
2024-06-03
CVE-2024-35633
Server-Side Request Forgery (SSRF) vulnerability in Creative Themes Blocksy Companion blocksy-companion.This issue affects Blocksy Companion: from n/a through <= 2.0.42.
CVSS Score
4.4
EPSS Score
0.003
Published
2024-06-03
CVE-2024-23360
Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU registers.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-06-03
CVE-2024-23363
Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-06-03
CVE-2024-23664
A URL redirection to untrusted site ('open redirect') in Fortinet FortiAuthenticator version 6.6.0, version 6.5.3 and below, version 6.4.9 and below may allow an attacker to to redirect users to an arbitrary website via a crafted URL.
CVSS Score
6.1
EPSS Score
0.003
Published
2024-06-03
CVE-2024-23665
Multiple improper authorization vulnerabilities [CWE-285] in FortiWeb version 7.4.2 and below, version 7.2.7 and below, version 7.0.10 and below, version 6.4.3 and below, version 6.3.23 and below may allow an authenticated attacker to perform unauthorized ADOM operations via crafted requests.
CVSS Score
5.9
EPSS Score
0.005
Published
2024-06-03
CVE-2023-43551
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
CVSS Score
9.1
EPSS Score
0.003
Published
2024-06-03
CVE-2023-43555
Information disclosure in Video while parsing mp2 clip with invalid section length.
CVSS Score
8.2
EPSS Score
0.002
Published
2024-06-03
CVE-2023-43556
Memory corruption in Hypervisor when platform information mentioned is not aligned.
CVSS Score
9.3
EPSS Score
0.001
Published
2024-06-03
CVE-2024-21478
transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA.
CVSS Score
6.2
EPSS Score
0.001
Published
2024-06-03


Products
Pricing
Contact Us

Shodan ® - All rights reserved