RHCOS 4 : OpenShift Container Platform 4.18.33 (RHSA-2026:2071)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:2071 advisory. - golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 Note that Nessus has not tested for this issue but has...

CVE-2026-2071

creationtimestamp| type| source ---|---|--- 2026-02-07 01:16:40+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3meaaoa2evi25...

CVE-2026-2071 UTT 进取 520W formP2PLimitConfig strcpy buffer overflow

A vulnerability was found in UTT 进取 520W 1.7.7-180627. The impacted element is the function strcpy of the file /goform/formP2PLimitConfig. Performing a manipulation of the argument except results in buffer overflow. The attack is possible to be carried out remotely. The exploit has been made publ...

CVE-2026-2071 UTT 进取 520W formP2PLimitConfig strcpy buffer overflow

A vulnerability was found in UTT 进取 520W 1.7.7-180627. The impacted element is the function strcpy of the file /goform/formP2PLimitConfig. Performing a manipulation of the argument except results in buffer overflow. The attack is possible to be carried out remotely. The exploit has been made publ...

EUVD-2026-2071

A stack overflow vulnerability exists in the AOS-10 web-based management interface of a Mobility Gateway. Successful exploitation could allow an authenticated malicious actor to execute arbitrary code as a privileged user on the underlying operating system...

CVE-2019-2071

In libxaac there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117216549...

CVE-2022-2071

The Name Directory WordPress plugin before 1.25.4 does not have CSRF check when importing names, and is also lacking sanitisation as well as escaping in some of the imported data, which could allow attackers to make a logged in admin import arbitrary names with XSS payloads in them...

CVE-2002-2071

Compaq Tru64 4.0 d allows remote attackers to cause a denial of service in 1 telnet, 2 FTP, 3 ypbind, 4 rpc.lockd, 5 snmp, 6 ttdbserverd, and possibly other services via a TCP SYN scan, as demonstrated using nmap...

CVE-2025-2071

creationtimestamp| type| source ---|---|--- 2025-03-31 09:00:09+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114256223207317838 2025-03-31 09:00:09+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114256223207317838 2025-03-31 09:31:10+00:00| seen|...

CVE-2025-2071

CVE-2025-2071 pertains to the FAST LTA Silent Brick WebUI, where an OS command injection vulnerability exists due to improper handling of untrusted input passed to system-level commands. The flaw affects WebUI input handling for parameters such as “hd” and “pi” and could allow remote attackers to...

CVE-2025-2071 OS Command Injection Vulnerability in FAST LTA Silent Brick WebUI

A critical OS Command Injection vulnerability has been identified in the FAST LTA Silent Brick WebUI, allowing remote attackers to execute arbitrary operating system commands via specially crafted input. This vulnerability arises due to improper handling of untrusted input, which is passed direct...

Microsoft Uncovers Critical Flaws in Rockwell Automation PanelView Plus

Microsoft has revealed two security flaws in Rockwell Automation PanelView Plus that could be weaponized by remote, unauthenticated attackers to execute arbitrary code and trigger a denial-of-service DoS condition. "The remote code execution vulnerability in PanelView Plus involves two custom...

RHEL 8 / 9 : OpenShift Container Platform 4.15.11 (RHSA-2024:2071)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:2071 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private clo...

CVE-2024-2071

creationtimestamp| type| source ---|---|--- 2024-03-01 18:31:40+00:00| seen| https://t.me/ctinow/197881...

CVE-2024-2071

The CVE-2024-2071 entry concerns SourceCodester FAQ Management System 1.0. The vulnerability lies in the Update FAQ component where manipulating the Frequently Asked Question parameter triggers cross-site scripting (XSS). The attack surface is remote, with the impact limited to confidentiality an...

CVE-2024-2071 SourceCodester FAQ Management System Update FAQ cross site scripting

A vulnerability, which was classified as problematic, has been found in SourceCodester FAQ Management System 1.0. Affected by this issue is some unknown functionality of the component Update FAQ. The manipulation of the argument Frequently Asked Question leads to cross site scripting. The attack...

Rockwell Automation FactoryTalk View Machine Edition

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : FactoryTalk View Machine Edition Vulnerability : Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an...

CVE-2023-2071

creationtimestamp| type| source ---|---|--- 2023-09-12 18:23:01+00:00| seen| https://t.me/cibsecurity/70289 2024-07-04 16:00:06+00:00| seen| https://t.me/truesecator/5935...

CVE-2023-2071

CVE-2023-2071 affects Rockwell Automation FactoryTalk View Machine Edition on PanelView Plus. It describes improper input validation that lets an unauthenticated attacker achieve remote code execution by sending crafted packets; the device can execute exported functions via a CIP class, and an at...

CVE-2023-2071 FactoryTalk View Machine Edition Vulnerable to Remote Code Execution

Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user’s input, which allows unauthenticated attacker to achieve remote code executed via crafted malicious packets. The device has the functionality, through a CIP class, to execute exported functions...