CVE-2017-20216

creationtimestamp| type| source ---|---|--- 2026-01-07 23:26:03+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115856399563013611 2026-01-08 01:55:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbuuubwihd2m 2026-01-08 21:03:02+00:00| seen|...

CVE-2023-20216

A vulnerability in the privilege management functionality of all Cisco BroadWorks server types could allow an authenticated, local attacker to elevate privileges to root on an affected system. This vulnerability is due to incorrect implementation of user role permissions. An attacker could exploi...

CVE-2019-20216

D-Link DIR-859 1.05 and 1.06B01 Beta01 devices allow remote attackers to execute arbitrary OS commands via the urn: to the M-SEARCH method in ssdpcgi in /htdocs/cgibin, because REMOTEPORT is mishandled. The value of the urn: service/device is checked with the strstr function, which allows an...

CVE-2025-20216

creationtimestamp| type| source ---|---|--- 2025-05-07 18:23:08+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15381 2025-05-07 21:31:44+00:00| seen| https://t.me/cvedetector/24745...

CVE-2025-20216

A vulnerability in the web interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an unauthenticated, remote attacker to inject HTML into the browser of an authenticated user. This vulnerability is due to improper sanitization of input to the web interface. An...

CVE-2025-20216

Cisco CVE-2025-20216 affects Cisco Catalyst SD-WAN Manager (formerly vManage). The issue is HTML injection via the web interface due to improper input sanitization. An unauthenticated, remote attacker could entice an authenticated user to click a malicious link, injecting HTML into the user’s bro...

Cisco Catalyst SD-WAN Manager Reflected HTML Injection (cisco-sa-vmanage-html-inj-GxVtK6zj)

According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. - A vulnerability in the web interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an unauthenticated, remote attacker to inject HTML into the browser of an...

DLink DIR-859 1.05 & 1.06B01 Multiple Vulnerabilities (RCE)

The version of DLink installed on the remote host is prior to 1.07b03. It is, therefore, affected by multiple remote code execution vulnerabilities as referenced in the vendor advisory. - The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an...

CVE-2023-20216

Cisco BroadWorks has a local-privilege-escalation vulnerability (CVE-2023-20216) due to incorrect implementation of user role permissions. An authenticated attacker with BWORKS or BWSUPERADMIN privileges can issue crafted commands to gain root-level access on any BroadWorks server type. The flaw ...

CVE-2022-20216

creationtimestamp| type| source ---|---|--- 2022-07-13 22:40:16+00:00| seen| https://t.me/cibsecurity/46192...

CVE-2022-20216

CVE-2022-20216 concerns an Android risk where the exported attribute is used to grant third‑party app access permissions; the default intent-filter is true and com.sprd.firewall has set exported to true. The vulnerability is tied to Android devices with a vulnerable Telephony/OSC component (Andro...

CVE-2022-20216

android exported is used to set third-party app access permissions, and the default value of intent-filter is true. com.sprd.firewall has set exported as true.Product: AndroidVersions: Android SoCAndroid ID: A-231911916...

Mageia: Security Advisory (MGASA-2021-0089)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MikroTik RouterOS < 6.47 Multiple Vulnerabilities

MikroTik RouterOS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:mikrotik:routeros"; if...

CVE-2020-20216

Mikrotik RouterOs 6.44.6 long-term tree suffers from a memory corruption vulnerability in the /nova/bin/graphing process. An authenticated remote attacker can cause a Denial of Service NULL pointer dereference...

CVE-2020-20216

CVE-2020-20216 affects MikroTik RouterOS 6.44.6 (long-term tree). The vulnerability is a memory corruption in the "/nova/bin/graphing" process that enables an authenticated remote attacker to cause a Denial of Service via a NULL pointer dereference. Exploitation requires authentication; the entry...

CVE-2020-20216

Mikrotik RouterOs 6.44.6 long-term tree suffers from a memory corruption vulnerability in the /nova/bin/graphing process. An authenticated remote attacker can cause a Denial of Service NULL pointer dereference...

CVE-2021-20216

CVE-2021-20216 affects Privoxy prior to 3.0.31. A memory leak occurs when decompression fails unexpectedly, which may lead to a denial of service and impact availability. The issue is documented across multiple sources showing Privoxy versions before 3.0.31 are affected. Remediation per advisorie...

USN-4886-1: Privoxy vulnerabilities

It was discovered that Privoxy incorrectly handled CGI requests. An attacker could possibly use this issue to cause a denial of service or obtain sensitive information. CVE-2020-35502, CVE-2021-20209, CVE-2021-20210, CVE-2021-20213, CVE-2021-20215, CVE-2021-20216, CVE-2021-20217, CVE-2021-20272,...

MGASA-2021-0089 Updated privoxy package fixes security vulnerabilities

Fixed a memory leak when decompression fails "unexpectedly". CVE-2021-20216 Prevent an assertion from getting triggered by a crafted CGI request. CVE-2021-20217...