126 matches found
EUVD-2014-5729
Malware in sbrugna...
EUVD-2021-19332
Malware in sbrugna...
EUVD-2021-19331
Malware in sbrugna...
EUVD-2021-19330
Malware in sbrugna...
EUVD-2021-19333
Malware in sbrugna...
EUVD-2024-45065
Malicious code in bioql PyPI...
EUVD-2022-25343
Malicious code in bioql PyPI...
EUVD-2024-45066
Malicious code in bioql PyPI...
EUVD-2024-45067
Malicious code in bioql PyPI...
EUVD-2024-45072
Malicious code in bioql PyPI...
Tenda AC500 Stack Buffer Overflow Vulnerability
Tenda AC500 is a wireless controller device from Tenda, designed for small and medium-sized businesses, supporting cross-VLAN management of wireless networks. Tenda AC500 has a stack buffer overflow vulnerability, which originates from the parameter radio2g1 in the file /goform/setWtpData fails t...
CVE-2022-21744
In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neighbour Cell Data PNCD improper neighbouring cell size with no additional execution privileges needed. User interaction is not needed for...
CVE-2022-20083
In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACILITY with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00803883; Issue ID:...
CVE-2021-32487
In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00500736; Issue ID: ALPS04938456...
CVE-2021-32484
In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00500621; Issue ID: ALPS04964917...
CVE-2024-50367
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...
CVE-2024-50372
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote...
CVE-2024-50377
A CWE-798 "Use of Hard-coded Credentials" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability is associated to the backup configuration functionality that by default encrypts the...
CVE-2024-50368
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...
CVE-2024-50368
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...