CVE-2021-20069

Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the regionalSettings.php dialogs...

CVE-2017-20069

A vulnerability classified as critical has been found in Hindu Matrimonial Script. This affects an unknown part of the file /admin/countrymanagement.php. The manipulation leads to improper privilege management. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2024-20069

In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01286330; Iss...

CVE-2024-20069

CVE-2024-20069 affects the modem component in VoWiFi IKE where a missing DH downgrade check can lead to selection of a less-secure algorithm. This information disclosure vulnerability does not require user interaction and can be exploited remotely. The issue is documented with a patch reference M...

CVE-2023-35742 D-Link DAP-2622 DDP Configuration Restore Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-2622 DDP Configuration Restore Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit...

CVE-2023-35742 D-Link DAP-2622 DDP Configuration Restore Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-2622 DDP Configuration Restore Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit...

CVE-2023-35742

CVE-2023-35742 affects D-Link DAP-2622 routers. The issue is a stack-based buffer overflow in the DDP service caused by insufficient validation of a user-supplied length, enabling network-adjacent attackers to execute arbitrary code with root privileges without authentication. The flaw descriptio...

CVE-2023-20069

creationtimestamp| type| source ---|---|--- 2023-03-03 18:34:26+00:00| seen| https://t.me/cibsecurity/59375...

CVE-2023-20069

Cisco CVE-2023-20069 affects the web-based management interfaces of Cisco Prime Infrastructure and Cisco EPN Manager. The vulnerability is due to insufficient validation of user-supplied input, enabling authenticated users to lure others into a crafted link that could trigger stored XSS in the af...

CVE-2023-20069 Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network EPN Manager could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface on an affected device. This...

CVE-2017-20069

creationtimestamp| type| source ---|---|--- 2022-06-21 12:27:45+00:00| seen| https://t.me/cibsecurity/44867...

CVE-2017-20069

A vulnerability classified as critical has been found in Hindu Matrimonial Script. This affects an unknown part of the file /admin/countrymanagement.php. The manipulation leads to improper privilege management. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2017-20069

CVE-2017-20069 affects Hindu Matrimonial Script, with a vulnerability in an unknown part of /admin/countrymanagement.php that allows manipulation of privilege management. The issue is exploitable remotely, and public exploit information exists. Multiple sources consistently describe it as a criti...

CVE-2017-20069 Hindu Matrimonial Script countrymanagement.php privileges management

A vulnerability classified as critical has been found in Hindu Matrimonial Script. This affects an unknown part of the file /admin/countrymanagement.php. The manipulation leads to improper privilege management. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2022-20069

creationtimestamp| type| source ---|---|--- 2022-04-12 00:28:57+00:00| seen| https://t.me/cibsecurity/40549...

CVE-2022-20069

In preloader usb, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...

CVE-2022-20069

CVE-2022-20069 affects the preloader (usb) and involves an out-of-bounds write caused by an integer overflow. The documented impact is local privilege escalation for an attacker with physical access to the device, with user interaction required for exploitation. Affected details specify a patch i...

CVE-2021-20069

creationtimestamp| type| source ---|---|--- 2021-02-16 22:48:00+00:00| seen| https://t.me/cibsecurity/23670...

CVE-2021-20069

The CVE-2021-20069 entry affects Racom’s MIDGE Firmware 4.4.40.105, with a cross-site scripting flaw exploitable via the regionalSettings.php dialogs. The connected records confirm the affected product/version and the vulnerability type (XSS), but do not provide exploitation details, specific roo...

CVE-2019-7023

Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017.011.30113 and earlier version, and 2015.006.30464 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure...