CVE-2022-21179

Cross-site request forgery CSRF vulnerability in EC-CUBE plugin 'Mail Magazine Management Plugin' ver4.0.0 to 4.1.1 for EC-CUBE 4 series and ver1.0.0 to 1.0.4 for EC-CUBE 3 series allows a remote unauthenticated attacker to hijack the authentication of an administrator via a specially crafted pag...

CVE-2018-21179

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.57, D7800 before 1.0.1.30, R7500 before 1.0.0.122, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.92, WNDR4300 before...

CVE-2025-21179

DHCP Client Service Denial of Service Vulnerability...

CVE-2025-21179

creationtimestamp| type| source ---|---|--- 2025-02-11 18:04:11+00:00| seen| https://infosec.exchange/users/cve/statuses/113986571527214400 2025-02-11 18:08:38+00:00| seen| https://www.thezdi.com/blog/2025/2/11/the-february-2025-security-update-review 2025-02-11 18:16:24+00:00| seen|...

CVE-2025-21179 DHCP Client Service Denial of Service Vulnerability

...

CVE-2025-21179

CVE-2025-21179 is a Windows DHCP Client Service Denial of Service vulnerability. Public details in the provided documents identify the vulnerability as affecting the Windows DHCP Client component and causing DoS, but the exact root cause, affected product versions, and exploit details are not spe...

K000140742: MySQL vulnerability CVE-2024-21179

Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.37 and prior and 8.4.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to...

CVE-2024-21179

creationtimestamp| type| source ---|---|--- 2024-07-19 04:23:44+00:00| seen| https://t.me/cvedetector/1044 2025-03-14 19:45:01+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7631...

Oracle MySQL Server 8.x <= 8.0.37, 8.1.x <= 8.4.0 Security Update (cpujul2024) - Linux

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

CVE-2024-21179 vulnerabilities

Vulnerabilities for packages: mysql...

CVE-2024-21179

CVE-2024-21179 affects Oracle MySQL Server, InnoDB component. Affected: MySQL 8.0.37 and earlier, 8.4.0 and earlier. Vulnerability allows high-privilege, network-access attacker to cause a complete DoS (hang/crash) of MySQL Server. Impact is Availability; no confidentiality/integrity reported. So...

CVE-2024-21179

...

CVE-2023-42070 PDF-XChange Editor Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability

PDF-XChange Editor Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must...

CVE-2023-42070

PDF-XChange Editor is affected by a Doc Object Out-Of-Bounds Read vulnerability. The issue stems from insufficient validation while handling Doc objects, enabling an attacker to read beyond allocated buffers and disclose sensitive information. User interaction is required (visiting a malicious pa...

CVE-2023-42070 PDF-XChange Editor Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability

PDF-XChange Editor Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must...

CVE-2023-21179

In parseSecurityParamsFromXml of XmlUtil.java, there is a possible bypass of user specified wifi encryption protocol due to improperly used crypto. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2023-21179

In parseSecurityParamsFromXml of XmlUtil.java, there is a possible bypass of user specified wifi encryption protocol due to improperly used crypto. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2023-21179

In parseSecurityParamsFromXml of XmlUtil.java, there is a possible bypass of user specified wifi encryption protocol due to improperly used crypto. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2023-21179

CVE-2023-21179 affects Android 13 and involves XmlUtil.java’s parseSecurityParamsFromXml. The root issue is a weakness in how crypto is used, allowing bypass of a user-specified wifi encryption protocol, enabling local privilege escalation with no additional execution privileges or user interacti...

Tenda Ax3 Buffer Overflow Vulnerability (CNVD-2022-21179)

Tenda Ax3 is an Ax1800 Gigabit Port Dual Band Wifi 6 Wireless Router from Tenda, China. A security vulnerability exists in Tenda Ax3 v16.03.12.10CN, which originates from a stack overflow in the function fromSetSysTime. An attacker can exploit this vulnerability to cause a Denial of Service DoS v...