Gridx 1.3 - Remote Code Execution

Gridx 1.3 is susceptible to remote code execution via tests/support/stores/testgridfilter.php, which allows remote attackers to execute arbitrary code via crafted values submitted to the $query parameter. id: CVE-2020-19625 info: name: Gridx 1.3 - Remote Code Execution author: geeknik severity:...

EUVD-2019-9238

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-19625

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuffcomposite.c by preventing a heap-based buff...

CVE-2019-19625

SROS 2 0.8.1 which provides the tools that generate and distribute keys for Robot Operating System 2 and uses the underlying security plugins of DDS from ROS 2 leaks node information due to a leaky default configuration as indicated in the policy/defaults/dds/governance.xml document...

CVE-2019-19625

creationtimestamp| type| source ---|---|--- 2024-03-07 20:41:43+00:00| seen| https://t.me/ctinow/202761...

CVE-2020-19625

creationtimestamp| type| source ---|---|--- 2023-09-03 06:24:27+00:00| published-proof-of-concept| https://t.me/CNArsenal/996 2024-01-15 12:57:23+00:00| seen| https://t.me/arpsyndicate/2783 2024-11-04 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2024-11-04 2024-11-05...

SUSE: Security Advisory (SUSE-SU-2018:4295-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:4298-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oria Gridx Remote Code Execution (CVE-2020-19625)

A remote code execution vulnerability exists in Oria Gridx. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

CVE-2020-19625

Remote Code Execution Vulnerability in tests/support/stores/testgridfilter.php in oria gridx 1.3, allows remote attackers to execute arbitrary code, via crafted value to the $query parameter...

CVE-2020-19625

Gridx 1.3 is affected by a remote code execution vulnerability in tests/support/stores/test_grid_filter.php, exploitable via crafted values in the $query parameter. The Nuclei template CVE-2020-19625 confirms this remote code execution path and assigns a CRITICAL severity. Impact, as described in...

Design/Logic Flaw

SROS 2 0.8.1 after CVE-2019-19625 is mitigated leaks ROS 2 node-related information regardless of the rtpsprotectionkind configuration. SROS2 provides the tools to generate and distribute keys for Robot Operating System 2 and uses the underlying security plugins of DDS from ROS 2...

CVE-2019-19625

CVE-2019-19625 affects SROS 2 0.8.1 (used with ROS 2) where a leaky default configuration in policy/defaults/dds/governance.xml leads to disclosure of node information. The vulnerability stems from how keys are generated/distributed by SROS 2 and its reliance on DDS security plugins; the leak is ...

openSUSE Security Update : wireshark (openSUSE-2019-1045)

This update for wireshark fixes the following issues : Update to Wireshark 2.4.11 bsc1117740. Security issues fixed : - CVE-2018-19625: The Wireshark dissection engine could crash wnpa-sec-2018-51 - CVE-2018-19626: The DCOM dissector could crash wnpa-sec-2018-52 - CVE-2018-19623: The LBMPDM...

Fedora 29 : 1:wireshark (2018-cb410a3812)

New version 2.6.5, contains fixes for CVE-2018-19622, CVE-2018-19623, CVE-2018-19624, CVE-2018-19625, CVE-2018-19626, CVE-2018-19627, CVE-2018-19628 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempt...

Fedora 28 : 1:wireshark (2018-1b6cb1df72)

New version 2.6.5, contains fixes for CVE-2018-19622, CVE-2018-19623, CVE-2018-19624, CVE-2018-19625, CVE-2018-19626, CVE-2018-19627, CVE-2018-19628 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempt...

SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2018:4295-1)

This update for wireshark fixes the following issues : Update to Wireshark 2.4.11 bsc1117740. Security issues fixed : CVE-2018-19625: The Wireshark dissection engine could crash wnpa-sec-2018-51 CVE-2018-19626: The DCOM dissector could crash wnpa-sec-2018-52 CVE-2018-19623: The LBMPDM dissector...

openSUSE: Security Advisory for wireshark (openSUSE-SU-2018:4307-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2018:4298-1)

This update for wireshark fixes the following issues : Update to Wireshark 2.4.11 bsc1117740. Security issues fixed : CVE-2018-19625: The Wireshark dissection engine could crash wnpa-sec-2018-51 CVE-2018-19626: The DCOM dissector could crash wnpa-sec-2018-52 CVE-2018-19623: The LBMPDM dissector...

openSUSE Security Update : wireshark (openSUSE-2018-1620)

This update for wireshark fixes the following issues : Update to Wireshark 2.4.11 bsc1117740. Security issues fixed : - CVE-2018-19625: The Wireshark dissection engine could crash wnpa-sec-2018-51 - CVE-2018-19626: The DCOM dissector could crash wnpa-sec-2018-52 - CVE-2018-19623: The LBMPDM...