Vulnerabilities (CVE)

Filtered by NVD-CWE-noinfo
Total 35780 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-37976 1 Microsoft 14 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 11 more 2026-06-17 N/A 6.7 MEDIUM
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
CVE-2024-37975 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2026-06-17 N/A 8.0 HIGH
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37974 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2026-06-17 N/A 8.0 HIGH
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37973 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2026-06-17 N/A 8.8 HIGH
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37972 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2026-06-17 N/A 8.0 HIGH
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37971 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2026-06-17 N/A 8.0 HIGH
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37970 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2026-06-17 N/A 8.0 HIGH
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37969 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2026-06-17 N/A 8.0 HIGH
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37968 1 Microsoft 6 Windows Server 2008, Windows Server 2012, Windows Server 2016 and 3 more 2026-06-17 N/A 7.5 HIGH
Windows DNS Spoofing Vulnerability
CVE-2024-37966 1 Microsoft 3 Sql Server 2017, Sql Server 2019, Sql Server 2022 2026-06-17 N/A 7.1 HIGH
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
CVE-2024-37965 1 Microsoft 4 Sql Server 2016, Sql Server 2017, Sql Server 2019 and 1 more 2026-06-17 N/A 8.8 HIGH
Microsoft SQL Server Elevation of Privilege Vulnerability
CVE-2024-37952 1 Themeenergy 1 Book Your Travel 2026-06-17 N/A 8.8 HIGH
Improper Privilege Management vulnerability in themeenergy BookYourTravel allows Privilege Escalation.This issue affects BookYourTravel: from n/a through 8.18.17.
CVE-2024-37887 1 Nextcloud 1 Nextcloud Server 2026-06-17 N/A 3.5 LOW
Nextcloud Server is a self hosted personal cloud system. Private shared calendar events' recurrence exceptions can be read by sharees. It is recommended that the Nextcloud Server is upgraded to 27.1.10 or 28.0.6 or 29.0.1 and that the Nextcloud Enterprise Server is upgraded to 27.1.10 or 28.0.6 or 29.0.1.
CVE-2024-37884 1 Nextcloud 1 Nextcloud Server 2026-06-17 N/A 3.5 LOW
Nextcloud Server is a self hosted personal cloud system. A malicious user was able to send delete requests for old versions of files they only got shared with read permissions. It is recommended that the Nextcloud Server is upgraded to 26.0.12 or 27.1.7 or 28.0.3 and that the Nextcloud Enterprise Server is upgraded to 26.0.12 or 27.1.7 or 28.0.3.
CVE-2024-37883 1 Nextcloud 1 Deck 2026-06-17 N/A 4.3 MEDIUM
Nextcloud Deck is a kanban style organization tool aimed at personal planning and project organization for teams integrated with Nextcloud. A user with access to a deck board was able to access comments and attachments of already deleted cards. It is recommended that the Nextcloud Deck app is upgraded to 1.6.6 or 1.7.5 or 1.8.7 or 1.9.6 or 1.11.3 or 1.12.1.
CVE-2024-37769 1 B1ackc4t 1 14finger 2026-06-17 N/A 8.8 HIGH
Insecure permissions in 14Finger v1.1 allow attackers to escalate privileges from normal user to Administrator via a crafted POST request.
CVE-2024-37768 1 B1ackc4t 1 14finger 2026-06-17 N/A 9.1 CRITICAL
14Finger v1.1 was discovered to contain an arbitrary user deletion vulnerability via the component /api/admin/user?id.
CVE-2024-37526 1 Ibm 2 Data Virtualization On Cloud Pak For Data, Watson Query With Cloud Pak For Data 2026-06-17 N/A 6.5 MEDIUM
IBM Watson Query on Cloud Pak for Data (IBM Data Virtualization 1.8, 2.0, 2.1, 2.2, and 3.0.0) could allow an authenticated user to obtain sensitive information from objects published using Watson Query due to an improper data protection mechanism.
CVE-2024-37484 1 Zephyr-one 1 Zephyr Project Manager 2026-06-17 N/A 8.8 HIGH
Improper Privilege Management vulnerability in Dylan James Zephyr Project Manager allows Privilege Escalation.This issue affects Zephyr Project Manager: from n/a through 3.3.97.
CVE-2024-37455 1 Brainstormforce 1 Ultimate Addons For Elementor 2026-06-17 N/A 8.8 HIGH
Improper Privilege Management vulnerability in Brainstorm Force Ultimate Addons for Elementor allows Privilege Escalation.This issue affects Ultimate Addons for Elementor: from n/a through 1.36.31.