Vulnerability Summary for the Week of July 1, 2024

High Vulnerabilities

Primary Vendor — Product	Description	Published	CVSS Score	Source & Patch Info
2code — wpqa_builder	The WPQA Builder WordPress plugin before 6.1.1 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks	2024-07-03	8.8	CVE-2024-2376 contact@wpscan.com
ABB–ASPECT Enterprise (ASP-ENT-x)	Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07 allows attacker to login to product instances wrongly configured.	2024-07-01	8.8	CVE-2024-4007 cybersecurity@ch.abb.com
Adobe–Acrobat for Edge	Acrobat for Edge versions 126.0.2592.68 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could res […] Content was cut in order to protect the source.Please visit the source for the rest of the article. This article has been indexed from Bulletins Read the original article: Vulnerability Summary for the Week of July 1, 2024 Related Tags: Bulletins EN Post navigation ← New Ransomware-as-a-Service ‘Eldorado’ Targets Windows and Linux Systems BianLian Ransomware Strikes: US Companies Grapple with Data Breach Fallout → Search for: Social Social Media Daily summary Weekly summary Privacy Policy Legal & Contact Contact Apps Advertising Daily Summary Enter your email address: GDPR compliance Categories Categories Log in Copyright © 2025 IT Security News. All Rights Reserved. The Magazine Basic Theme by bavotasan.com.

Primary
Vendor — Product

Description

Published

CVSS Score

Source & Patch Info

2code — wpqa_builder

The WPQA Builder WordPress plugin before 6.1.1 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks

2024-07-03

8.8

CVE-2024-2376
contact@wpscan.com

ABB–ASPECT Enterprise (ASP-ENT-x)

Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07 allows attacker to login to product instances wrongly configured.

2024-07-01

8.8

CVE-2024-4007
cybersecurity@ch.abb.com

Adobe–Acrobat for Edge

Acrobat for Edge versions 126.0.2592.68 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could res

[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.

This article has been indexed from Bulletins

Read the original article:

Vulnerability Summary for the Week of July 1, 2024

← New Ransomware-as-a-Service ‘Eldorado’ Targets Windows and Linux Systems

BianLian Ransomware Strikes: US Companies Grapple with Data Breach Fallout →

High Vulnerabilities

Read the original article:

Related

Post navigation