19 matches found
CVE-2023-21252
In validatePassword of WifiConfigurationUtil.java, there is a possible way to get the device into a boot loop due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2020-21252
Cross Site Request Forgery vulnerability in Neeke HongCMS 3.0.0 allows a remote attacker to execute arbitrary code and escalate privileges via the updateusers parameter...
CVE-2018-21252
An issue was discovered in Mattermost Server before 5.2, 5.1.1, 5.0.3, and 4.10.3. Attackers could use multiple e-mail addresses to bypass a domain-based policy for signups...
CVE-2025-21252
Windows Telephony Service Remote Code Execution Vulnerability...
CVE-2025-21252 Windows Telephony Service Remote Code Execution Vulnerability
...
CVE-2025-21252
Technical details about CVE-2025-21252 are not publicly available in the provided documents. Monitor for updates from Microsoft and NVD for affected products, impact, and remediation.
CVE-2024-21252
...
CVE-2024-21252
...
CVE-2023-21252
creationtimestamp| type| source ---|---|--- 2023-10-06 22:13:49+00:00| seen| https://t.me/cibsecurity/71761...
CVE-2023-21252
In validatePassword of WifiConfigurationUtil.java, there is a possible way to get the device into a boot loop due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-21252
CVE-2023-21252 affects Android’s WifiConfigurationUtil.java, specifically its validatePassword function. The root cause is improper input validation, which can cause the device to boot loop and result in local denial of service without requiring user interaction. The issue is categorized as DoS w...
CVE-2020-21252
Cross Site Request Forgery vulnerability in Neeke HongCMS 3.0.0 allows a remote attacker to execute arbitrary code and escalate privileges via the updateusers parameter...
CVE-2020-21252
Cross Site Request Forgery vulnerability in Neeke HongCMS 3.0.0 allows a remote attacker to execute arbitrary code and escalate privileges via the updateusers parameter...
CVE-2020-21252
CVE-2020-21252 affects Neeke HongCMS 3.0.0. The vulnerability is a CSRF issue that can let an attacker remotely execute arbitrary code and elevate privileges via the updateusers parameter. Documented under CVE-2020-21252 with CVSS v3.1: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H (base score 8.8). Exploi...
CVE-2020-21252
Cross Site Request Forgery vulnerability in Neeke HongCMS 3.0.0 allows a remote attacker to execute arbitrary code and escalate privileges via the updateusers parameter...
Security Bulletin: IBM Engineering Workflow Management (EWM) vulnerability CVE-2021-21252
Summary There is a vulnerability CVE-2021-21252 which affects IBM Engineering Workflow Management EWM. Vulnerability Details CVEID:CVE-2021-21252 DESCRIPTION: jQuery Validation Plugin is vulnerable to a denial of service, caused by a regular expression denial of service ReDoS flaw when validating...
CVE-2022-21252
CVE-2022-21252 is an Oracle WebLogic Server vulnerability, affecting the Samples component in Fusion Middleware. Affected versions are 12.2.1.4.0 and 14.1.1.0.0. The issue allows an unauthenticated attacker, over HTTP, to compromise WebLogic Server, enabling unauthorized update/insert/delete oper...
CVE-2021-21252
CVE-2021-21252 affects the jquery-validation (jquery-validation) package. It is a ReDoS (Regular Expression Denial of Service) in Regular Expressions used by the plugin prior to version 1.19.3. The issue is fixed in 1.19.3. Public sources in the connected docs (NVD, GitHub advisory GHSA-jxwx-85vp...
CVE-2018-21252
CVE-2018-21252 affects Mattermost Server prior to 5.2, 5.1.1, 5.0.3, and 4.10.3. Attackers could bypass domain-based signup policies by using multiple email addresses. The provided connected documents confirm affected versions and the bypass behavior; no remediation or exploitation details are in...