CWE-CWE-75 CVE - OpenCVE

Filtered by CWE-75

Total 22 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2024-37779			2024-09-27	N/A	8.8 HIGH
WoodWing Elvis DAM v6.98.1 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the Apache Ant script functionality.
CVE-2024-39227	1 Gl-inet	56 A1300, A1300 Firmware, Ap1300 and 53 more	2024-08-15	N/A	9.8 CRITICAL
GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, and XE3000/X3000 v4.4 were discovered to contain insecure permissions in the endpoint /cgi-bin/glc. This vulnerability allows unauthenticated attackers to execute arbitrary code or possibly a directory traversal via crafted JSON data.

Vulnerabilities (CVE)