CVE-2019-18831

Barco ClickShare Button R9861500D01 devices before 1.9.0 allow Information Exposure. The encrypted ClickShare Button firmware contains the private key of a test device-certificate...

Barco ClickShare Devices Use of Hard-coded Credentials (CVE-2019-18831)

Barco ClickShare Button R9861500D01 devices before 1.9.0 allow Information Exposure. The encrypted ClickShare Button firmware contains the private key of a test device-certificate. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more informatio...

CVE-2023-41205

The CVE-2023-41205 issue affects D-Link DAP-1325 via the SetAPLanSettings SubnetMask handling in the HNAP1 SOAP endpoint. The root cause is a stack-based buffer overflow from insufficient validation of the length of user-supplied XML data, allowing network-adjacent attackers to execute code with ...

CVE-2023-41205 D-Link DAP-1325 SetAPLanSettings SubnetMask Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1325 SetAPLanSettings SubnetMask Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

CVE-2019-18831

creationtimestamp| type| source ---|---|--- 2024-03-12 14:11:26+00:00| seen| https://t.me/ctinow/205674...

Medium: exiv2

Issue Overview: Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 allows remote attackers to cause a denial of service and other unspecified impacts via use of crafted file. CVE-2020-18831 Affected Packages: exiv2 Note: This advisory is applicable to Amazon...

Amazon Linux 2 : exiv2 (ALAS-2023-2284)

The version of exiv2 installed on the remote host is prior to 0.27.0-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2284 advisory. Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 allows remote attackers to cause a denial of...

CVE-2020-18831

Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 allows remote attackers to cause a denial of service and other unspecified impacts via use of crafted file...

CVE-2020-18831

CVE-2020-18831 affects Exiv2, specifically the buffer overflow in the tEXtToDataBuf function within pngimage.cpp of version 0.27.1. The vulnerability can be triggered by processing crafted image files, leading to a denial of service and other unspecified impacts. The available connected documents...

CVE-2020-18831

Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 allows remote attackers to cause a denial of service and other unspecified impacts via use of crafted file...

CVE-2017-18831

creationtimestamp| type| source ---|---|--- 2020-04-21 00:29:18+00:00| seen| https://t.me/cibsecurity/11427...

CVE-2017-18831

NETGEAR M4300/M4200 series switches are affected by a stored XSS vulnerability in the web management interface, exploitable via lack of input validation in the WEB application. Affected firmware versions are before 12.0.2.15 (e.g., M4300-28G/M4300-52G/M4300-28G-POE+/M4300-52G-POE+/M4300-8X8F/M430...

CVE-2017-18831

Certain NETGEAR devices are affected by stored XSS. This affects M4300-28G before 12.0.2.15, M4300-52G before 12.0.2.15, M4300-28G-POE+ before 12.0.2.15, M4300-52G-POE+ before 12.0.2.15, M4300-8X8F before 12.0.2.15, M4300-12X12F before 12.0.2.15, M4300-24X24F before 12.0.2.15, M4300-24X before...

CVE-2018-18831

An issue was discovered in com\mingsoft\cms\action\GeneraterAction.java in MCMS 4.6.5. An attacker can write a .jsp file in the position parameter to an arbitrary directory via a ../ Directory Traversal in the url parameter...

CVE-2018-18831

An issue was discovered in com\mingsoft\cms\action\GeneraterAction.java in MCMS 4.6.5. An attacker can write a .jsp file in the position parameter to an arbitrary directory via a ../ Directory Traversal in the url parameter...

CVE-2018-18831

The CVE-2018-18831 issue affects MCMS 4.6.5, specifically in com\mingsoft\cms\action\GeneraterAction.java. An attacker can exploit a directory traversal via the position parameter in the url to write a .jsp file to an arbitrary directory, enabling arbitrary file write. The connected advisories de...