CVE-2019-20743

NETGEAR WAC510 devices before 8.0.1.3 are affected by stored XSS...

CVE-2023-20743

In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07519142...

CVE-2023-20743

creationtimestamp| type| source ---|---|--- 2025-01-07 21:38:41+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/575...

Adobe Substance 3D Painter < 9.1.2 Multiple Vulnerabilities (APSB24-04) (macOS)

The version of Adobe Substance 3D Painter installed on the remote macOS host is prior to 9.1.2. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB24-04 advisory. Successful exploitation could lead to arbitrary code execution and memory leak in the context of the...

CVE-2024-20743

Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-20743 Adobe Substance 3D Paint PSD Parsing Out-Of-Bounds Write Vulnerability

Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-20743

CVE-2024-20743 affects Substance3D - Painter

CVE-2023-20743

The CVE-2023-20743 issue affects the vcu module in MediaTek chips. It stems from improper locking that enables an out-of-bounds write, potentially allowing local escalation of privilege to SYSTEM level without user interaction. The vulnerability impact is described as high for confidentiality, in...

CVE-2022-20743

CVE-2022-20743 affects Cisco Firepower Management Center (FMC) Web UI. The issue stems from improper validation when uploading files via the FMC web management interface, allowing an authenticated, remote attacker to upload malicious files, store them on the device, and potentially execute arbitr...

CVE-2022-20743 Cisco Firepower Management Center File Upload Security Bypass Vulnerability

A vulnerability in the web management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to bypass security protections and upload malicious files to the affected system. This vulnerability is due to improper validation of files uploaded to t...

CVE-2021-20743

Cross-site scripting vulnerability in EC-CUBE Email newsletters management plugin for EC-CUBE 3.0 series versions prior to version 1.0.4 allows a remote attacker to inject an arbitrary script by leading a user to a specially crafted page and to perform a specific operation...

CVE-2021-20743

CVE-2021-20743 is a cross-site scripting vulnerability in the EC-CUBE Email newsletters management plugin for EC-CUBE 3.0.x, prior to plugin version 1.0.4 . The issue allows a remote attacker to cause an arbitrary script to run in a user’s browser by guiding them to a specially crafted page and p...

JVN#57524494: Multiple cross-site scripting vulnerabilities in multiple EC-CUBE plugins provided by EC-CUBE

Multiple EC-CUBE plugins provided by EC-CUBE CO.,LTD. contain multiple cross-site scripting vulnerabilities listed below. Cross-site scripting vulnerability CWE-79 - CVE-2021-20742 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L| Base Score: 7.1 CVSS v2|...

CVE-2019-20743

CVE-2019-20743 affects NETGEAR WAC510 devices running firmware before 8.0.1.3, where a stored XSS flaw exists in the WEB management interface. Multiple sources (NVD, Red Hat, CNVD) corroborate a cross-site scripting vulnerability that can lead to client-side code execution under certain condition...

Security update for mumble (moderate)

openSUSE Security Update: Security update for mumble Announcement ID: openSUSE-SU-2020:0137-1 Rating: moderate References: 1123334 Cross-References: CVE-2018-20743 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update fo...

Security update for mumble (moderate)

openSUSE Security Update: Security update for mumble Announcement ID: openSUSE-SU-2019:1876-1 Rating: moderate References: 1123334 Cross-References: CVE-2018-20743 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update fo...

openSUSE Security Update : mumble (openSUSE-2019-1794)

This update for mumble fixes the following issues : CVE-2018-20743: murmur mishandled multiple concurrent requests that were persisted in the database, which allowed remote attackers to cause a denial of service daemon hang or crash via a message flood. boo1123334 C Tenable Network Security, Inc...

openSUSE: Security Advisory for mumble (openSUSE-SU-2019:1794-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for mumble (moderate)

openSUSE Security Update: Security update for mumble Announcement ID: openSUSE-SU-2019:1794-1 Rating: moderate References: 1123334 Cross-References: CVE-2018-20743 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 openSUSE Backports SLE-15 SUSE Package Hub for SUSE Linux Enterprise 12 An...

CVE-2018-20743

murmur in Mumble through 1.2.19 before 2018-08-31 mishandles multiple concurrent requests that are persisted in the database, which allows remote attackers to cause a denial of service daemon hang or crash via a message flood...