Exploit for Classic Buffer Overflow in Cisco Adaptive_Security_Appliance_Software

CVE-2025-20333 Scanner A Python-based diagnostic scanner for...

UAT-4356's Targeting of Cisco Firepower Devices

Cisco Talos is aware of UAT-4356's continued active targeting of Cisco Firepower devices' Firepower eXtensible Operating System FXOS. UAT-4356 exploited n-day vulnerabilities CVE-2025-20333 and CVE-2025-20362 to gain unauthorized access to vulnerable devices, where the threat actor deployed their...

CISA Warns of Active Attacks on Cisco ASA and Firepower Flaws

CISA issues an urgent directive for all organizations to patch Cisco ASA and Firepower devices against CVE-2025-20362 and CVE-2025-20333, exploited in the ArcaneDoor campaign. Verify the correct version now!...

CVE-2025-20333

creationtimestamp| type| source ---|---|--- 2025-09-25 16:03:48+00:00| seen| https://cyberplace.social/users/GossiTheDog/statuses/115265778831418980 2025-09-25 16:17:00+00:00| seen| https://thehackernews.com/2025/09/urgent-cisco-asa-zero-day-duo-under.html 2025-09-25 16:17:20+00:00| seen|...

Cisco Secure Firewall Adaptive Security (ASA) Appliance and Secure Firewall Threat Defense (FTD) Missing Authorization Vulnerability

Cisco Secure Firewall Adaptive Security ASA Appliance and Secure Firewall Threat Defense FTD Software VPN Web Server contain a missing authorization vulnerability. This vulnerability could be chained with CVE-2025-20333...

CVE-2022-20333

In Bluetooth, there is a possible crash due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-179161657...

CVE-2022-20333

creationtimestamp| type| source ---|---|--- 2022-08-12 18:46:42+00:00| seen| https://t.me/cibsecurity/48076...

CVE-2022-20333

In Bluetooth, there is a possible crash due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-179161657...

CVE-2022-20333

The CVE-2022-20333 entry concerns Android 13 Bluetooth, where a missing null check can cause a crash leading to remote denial of service without privileges or user interaction. Affected component: Bluetooth on Android 13. Underlying cause: null-pointer-like condition causing a crash; no exploit d...

CVE-2021-20333

Sending specially crafted commands to a MongoDB Server may result in artificial log entries being generated or for log entries to be split. This issue affects MongoDB Server v3.6 versions prior to 3.6.20; MongoDB Server v4.0 versions prior to 4.0.21 and MongoDB Server v4.2 versions prior to 4.2.1...

CVE-2021-20333

creationtimestamp| type| source ---|---|--- 2021-07-23 16:37:35+00:00| seen| https://t.me/cibsecurity/26437...

CVE-2021-20333

Sending specially crafted commands to a MongoDB Server may result in artificial log entries being generated or for log entries to be split. This issue affects MongoDB Server v3.6 versions prior to 3.6.20; MongoDB Server v4.0 versions prior to 4.0.21 and MongoDB Server v4.2 versions prior to 4.2.1...

CVE-2021-20333

CVE-2021-20333 affects MongoDB Server: v3.6 pre-3.6.20; v4.0 pre-4.0.21; v4.2 pre-4.2.10. Issue: sending specially crafted commands may cause artificial log entries or log entries to be split (log-spoofing/newline injection). No exploitation details provided in the sources. Mitigation: upgrade to...

CVE-2021-20333 Server log entry spoofing via newline injection

Sending specially crafted commands to a MongoDB Server may result in artificial log entries being generated or for log entries to be split. This issue affects MongoDB Server v3.6 versions prior to 3.6.20; MongoDB Server v4.0 versions prior to 4.0.21 and MongoDB Server v4.2 versions prior to 4.2.1...

CVE-2018-20333

creationtimestamp| type| source ---|---|--- 2020-03-20 06:32:21+00:00| seen| https://t.me/cibsecurity/10643...

CVE-2018-20333

Affected product: ASUSWRT firmware 3.0.0.4.384.20308. Issue: unauthenticated user can access /update_applist.asp to determine whether a USB device is attached and which apps are installed on the router, revealing information about device connectivity and installed software. Underlying cause: info...

Product update: Virtuozzo Infrastructure Platform 2.5 Update 5 (2.5.0-1639)

This update provides a new feature as well as stability and usability fixes. Vulnerability id: VSTOR-20558 The same data path ID was assigned to VLAN interfaces in OVS bridges. Vulnerability id: VSTOR-20913 Unable to update storage license. Vulnerability id: VSTOR-21089 Under certain circumstance...