CVE-2024-28183

ESP-IDF is the development framework for Espressif SoCs supported on Windows, Linux and macOS. A Time-of-Check to Time-of-Use TOCTOU vulnerability was discovered in the implementation of the ESP-IDF bootloader which could allow an attacker with physical access to flash of the device to bypass...

Update now! Nvidia released fixes for 10 flaws in Windows GPU drivers

Multiple NVIDIA graphic card models have been found to have flaws in their GPU drivers, with six medium-and four high-severity ratings. Last Monday, the company released a software security update for NVIDIA GPU Display Driver to address the vulnerabilities. If exploited, they could lead to denia...

CVE-2022-28183

creationtimestamp| type| source ---|---|--- 2022-05-18 00:27:59+00:00| seen| https://t.me/cibsecurity/42873 2022-05-18 15:45:05+00:00| seen| https://t.me/truesecator/2954 2022-05-18 15:47:23+00:00| seen| https://t.me/RussianOSINT/1510...

CVE-2022-28183

CVE-2022-28183 affects NVIDIA GPU Display Driver for Windows and Linux, in the kernel mode layer. An unprivileged user can trigger an out-of-bounds read, causing denial of service and information disclosure. Reports across multiple sources confirm the issue and note patches/upgrades are required ...

CVE-2021-28183

The specific function in ASUS BMC’s firmware Web management page Web License configuration setting does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the...

CVE-2021-28183 ASUS BMC's firmware: buffer overflow - Web License configuration setting

The specific function in ASUS BMC’s firmware Web management page Web License configuration setting does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the...

SourceCodester Water Billing System SQL Injection (CVE-2020-28183)

An SQL injection vulnerability exists in SourceCodester Water Billing System. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

CVE-2020-28183

creationtimestamp| type| source ---|---|--- 2020-11-18 02:39:34+00:00| seen| https://t.me/cibsecurity/16493...

CVE-2020-28183

SQL injection vulnerability in SourceCodester Water Billing System 1.0 via the username and password parameters to process.php...

CVE-2020-28183

SourceCodester Water Billing System 1.0 is affected by CVE-2020-28183 due to an SQL injection in process.php exploitable via the username and password parameters. Root cause appears to be improper input validation leading to arbitrary SQL execution, with the vulnerability rated as CRITICAL (CVSS ...