EUVD-2025-20123

Malicious code in bioql PyPI...

CVE-2010-20123

Steinberg MyMP3Player version 3.0 build 3.0.0.67 is vulnerable to a stack-based buffer overflow when parsing .m3u playlist files. The application fails to properly validate the length of input data within the playlist, allowing a specially crafted file to overwrite critical memory structures and...

CVE-2025-20123

Multiple vulnerabilities in the web-based management interface of Cisco Crosswork Network Controller could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against users of the interface of an affected system. These vulnerabilities exist because the web-based...

CVE-2022-20123

In phNciNfcRecvMfResp of phNxpExtnsMifareStd.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

CVE-2021-20123

A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download functionality of the DownloadFileServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the underlying operating system with root privileges...

CVE-2025-20123

Multiple vulnerabilities in the web-based management interface of Cisco Crosswork Network Controller could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against users of the interface of an affected system. These vulnerabilities exist because the web-based...

CVE-2025-20123 Cisco Crosswork Network Controller Stored Cross-Site Scripting Vulnerability

Multiple vulnerabilities in the web-based management interface of Cisco Crosswork Network Controller could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against users of the interface of an affected system. These vulnerabilities exist because the web-based...

CVE-2024-20123

creationtimestamp| type| source ---|---|--- 2024-11-04 04:23:40+00:00| seen| https://t.me/cvedetector/9683...

Oracle Linux 7 : qemu (ELSA-2019-4640)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-4640 advisory. - x86: Document CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 as fixed Mark Kanda Orabug: 29744956 CVE-2018-12126 CVE-2018-12127...

CVE-2017-20123

creationtimestamp| type| source ---|---|--- 2022-06-30 12:38:24+00:00| seen| https://t.me/cibsecurity/45395...

CVE-2017-20123

A vulnerability was found in Viscosity 1.6.7. It has been classified as critical. This affects an unknown part of the component DLL Handler. The manipulation leads to untrusted search path. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be use...

CVE-2017-20123 Viscosity DLL untrusted search path

A vulnerability was found in Viscosity 1.6.7. It has been classified as critical. This affects an unknown part of the component DLL Handler. The manipulation leads to untrusted search path. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be use...

CVE-2017-20123

The CVE-2017-20123 entry concerns Sparklabs Viscosity 1.6.7. The vulnerability affects the DLL Handler component and enables an untrusted search path condition. It is described as exploitable remotely, with public disclosure of the exploit. A fix is available in version 1.6.8. Severity varies by ...

CVE-2022-20123

creationtimestamp| type| source ---|---|--- 2022-06-15 16:20:25+00:00| seen| https://t.me/cibsecurity/44497...

CVE-2022-20123

CVE-2022-20123 affects Android 10–12 (including 12L) via a missing bounds check in phNciNfc_RecvMfResp of phNxpExtns_MifareStd.cpp, causing an out-of-bounds read and potential remote information disclosure without user interaction. The issue is categorized in the Android Security Bulletin as a hi...

Draytek VigorConnect Directory Traversal (CVE-2021-20123)

A directory traversal vulnerability exists in Draytek VigorConnect. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...

Draytek VigorConnect LFI (CVE-2021-20123)

Binary data draytekvigorconnectcve-2021-20123.nbin...

CVE-2021-20123

creationtimestamp| type| source ---|---|--- 2021-10-13 20:26:56+00:00| seen| https://t.me/cibsecurity/30527 2024-09-03 18:10:02+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-10-03 12:45:41+00:00| seen| https://t.me/truesecator/6278 2025-02-23 02:10:58+00:00| seen|...

CVE-2021-20123

A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download functionality of the DownloadFileServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the underlying operating system with root privileges...

CVE-2021-20123

A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download functionality of the DownloadFileServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the underlying operating system with root privileges...