89 matches found
CVE-2026-2070
A vulnerability has been found in UTT 进取 520W 1.7.7-180627. The affected element is the function strcpy of the file /goform/formPolicyRouteConf. Such manipulation of the argument GroupName leads to buffer overflow. The attack can be executed remotely. The exploit has been disclosed to the public...
CVE-2026-2070
creationtimestamp| type| source ---|---|--- 2026-02-06 23:21:58+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mea2b4jy522v...
CVE-2026-2070
A vulnerability has been found in UTT 进取 520W 1.7.7-180627. The affected element is the function strcpy of the file /goform/formPolicyRouteConf. Such manipulation of the argument GroupName leads to buffer overflow. The attack can be executed remotely. The exploit has been disclosed to the public...
EUVD-2026-2070
InDesign Desktop versions 21.0, 19.5.5 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
Linux Distros Unpatched Vulnerability : CVE-2021-2070
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.22 and prior. Easily...
📄 Grandstream GSD3710 1.0.11.13 Stack Buffer Overflow
Grandstream GSD3710 version 1.0.11.13 suffers from a stack buffer overflow vulnerability. !/usr/bin/env python3 Exploit Title: Grandstream GSD3710 1.0.11.13 - Stack Buffer Overflow Google Dork: if applicable Date: 2025-05-23 Exploit Author: Pepelux user in ExploitDB Vendor Homepage:...
Grandstream GSD3710 1.0.11.13 - Stack Buffer Overflow
!/usr/bin/env python3 Exploit Title: Grandstream GSD3710 1.0.11.13 - Stack Buffer Overflow Google Dork: if applicable Date: 2025-05-23 Exploit Author: Pepelux user in ExploitDB Vendor Homepage: https://www.grandstream.com/ Software Link: download link if available Version: Grandstream GSD3710 -...
CVE-2025-2070
creationtimestamp| type| source ---|---|--- 2025-04-25 17:07:57+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13474 2025-04-25 17:19:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnnq76u5pz2y 2025-04-25 19:11:03+00:00| seen| https://t.me/cvedetector/23759...
CVE-2025-2070
An improper XML parsing vulnerability was reported in the FileZ client that could allow arbitrary file reads on the system if a crafted url is visited by a local user...
CVE-2025-2070
CVE-2025-2070 concerns the FileZ client, with an improper XML parsing flaw that could allow arbitrary file reads when a crafted URL is visited by a local user. Affected component: FileZ client (XML parsing path). Impact (as per sources): confidentiality impact High; attack vector Local; privilege...
CVE-2024-2070
creationtimestamp| type| source ---|---|--- 2024-03-01 17:26:31+00:00| seen| https://t.me/ctinow/197819...
CVE-2024-2070 SourceCodester FAQ Management System add-faq.php cross site scripting
A vulnerability classified as problematic was found in SourceCodester FAQ Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /endpoint/add-faq.php. The manipulation of the argument question/answer leads to cross site scripting. The attack can be launched...
CVE-2024-2070
The CVE-2024-2070 entry affects SourceCodester FAQ Management System 1.0, with an XSS vulnerability in /endpoint/add-faq.php where manipulating the question/answer parameter enables cross-site scripting. The issue can be exploited remotely and the exploit has been disclosed publicly. No specific ...
Amazon Linux 2 : curl (ALAS-2023-2070)
The version of curl installed on the remote host is prior to 8.0.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2070 advisory. The curl advisory describes this issue as follows: curl supports communicating using the TELNET protocol and as a part of thi...
K04054286: Linux kernel TCP vulnerability CVE-2016-2070
Security Advisory Description The tcpcwndreduction function in net/ipv4/tcpinput.c in the Linux kernel before 4.3.5 allows remote attackers to cause a denial of service divide-by-zero error and system crash via crafted TCP traffic. CVE-2016-2070 Impact Successful exploitation of this vulnerabilit...
SUSE CVE-2009-2070
Opera displays a cached certificate for a 1 4xx or 2 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a browser obtain a valid certificate from this site during one request, and then sending the browser a...
CVE-2022-2070
creationtimestamp| type| source ---|---|--- 2022-09-23 20:43:47+00:00| seen| https://t.me/cibsecurity/50359 2025-05-26 21:02:14+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lq433m3t222u...
CVE-2022-2070
CVE-2022-2070 affects Grandstream GSD3710 firmware 1.0.11.13; root cause is a stack-based overflow from not validating parameter length before sscanf. This can let a remote attacker create a socket, connect to the device, and spawn a shell with full access by targeting the dbmng and logsrv daemon...
openSUSE: Security Advisory for python-Twisted (SUSE-SU-2022:2070-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Mageia: Security Advisory (MGASA-2013-0160)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...