CVE-2026-31169

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the week parameter to /cgi-bin/cstecgi.cgi...

CVE-2026-31169

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the week parameter to /cgi-bin/cstecgi.cgi...

CVE-2026-31169

CVE-2026-31169 affects ToToLink A3300R firmware v17.0.0cu.557_B20221024. The issue allows attackers to execute arbitrary commands via the week parameter to /cgi-bin/cstecgi.cgi, with network access and no privileges required (CVSS 3.1: 6.5, Low confidentiality/integrity impact, no availability im...

MAL-2025-31169 Malicious code in quasar-kinetic-bootstrap-auriga (npm)

The package quasar-kinetic-bootstrap-auriga was found to contain malicious code...

CVE-2024-31169

Out-of-bounds Read vulnerability in Open Networking Foundation ONF libfluid libfluidmsg module. This vulnerability is associated with program routine fluidmsg::of10::QueueGetConfigReply::unpack. This issue affects libfluid: 0.1.0...

CVE-2022-31169

creationtimestamp| type| source ---|---|--- 2025-04-23 18:05:37+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13097...

CVE-2024-31169 Out-of-bounds Read in libfluid_msg library

Out-of-bounds Read vulnerability in Open Networking Foundation ONF libfluid libfluidmsg module. This vulnerability is associated with program routine fluidmsg::of10::QueueGetConfigReply::unpack. This issue affects libfluid: 0.1.0...

CVE-2024-31169

CVE-2024-31169 affects Open Networking Foundation libfluid 0.1.0. Root cause is an out-of-bounds read in fluid_msg::of10::QueueGetConfigReply::unpack. Reported as affecting libfluid with potential impact to availability (and limited confidentiality) per CVSS/agency entries; exploitation details a...

CVE-2023-31169

creationtimestamp| type| source ---|---|--- 2023-08-31 20:13:22+00:00| seen| https://t.me/cibsecurity/69568 2024-01-04 03:58:28+00:00| seen| https://t.me/arpsyndicate/2424...

CVE-2023-31169

An Improper Handling of Unicode Encoding vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated...

CVE-2023-31169

An Improper Handling of Unicode Encoding vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated...

CVE-2023-31169 Improper Handling of Unicode Encoding

An Improper Handling of Unicode Encoding vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated...

CVE-2023-31169

Summary (CVE-2023-31169) : The issue is an improper handling of Unicode encoding in Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software, affecting versions up to 7.1.3.0. The vulnerability could allow an attacker to embed instructions that could be executed by an authorized...

auto-wasi (=0.1.0), ceres-executor (>=0.1.0 <=0.2.0) +80 more potentially affected by CVE-2022-23636 +1 more via wasmtime (>=0.10.0 <=0.37.0)

wasmtime CARGO version =0.10.0, =0.1.0, =0.1.1, =0.5.3-0, =0.4.0, =0.4.0, =0.0.0, =0.40.1, =0.45.0, =0.1.0, =0.1.0, =0.1.0, =0.1.7 - lunatic-common-api =0.9.0 and more Source cves: CVE-2022-23636, CVE-2022-31169 Source advisory: OSV:GHSA-7F6X-JWH5-M9R4...

abstraps (=0.1.8), aivm (>=0.2.0 <=0.3.0) +287 more potentially affected by CVE-2022-23636 +1 more via cranelift-codegen (>=0.14.0 <=0.84.0)

cranelift-codegen CARGO version =0.14.0, =0.2.0, =0.1.0, =0.1.0, =0.5.0, =0.1.0, =0.1.0, =0.2.9, =0.1.0, =0.2.0, =0.1.0, =0.1.0, =0.26.1, =0.30.1 and more Source cves: CVE-2022-23636, CVE-2022-31169 Source advisory: OSV:GHSA-7F6X-JWH5-M9R4...

CVE-2022-31169 Cranelift vulnerable to miscompilation of constant values in division on AArch64

Wasmtime is a standalone runtime for WebAssembly. There is a bug in Wasmtime's code generator, Cranelift, for AArch64 targets where constant divisors can result in incorrect division results at runtime. This affects Wasmtime prior to version 0.38.2 and Cranelift prior to 0.85.2. This issue only...

CVE-2022-31169

Wasmtime is a standalone runtime for WebAssembly. There is a bug in Wasmtime's code generator, Cranelift, for AArch64 targets where constant divisors can result in incorrect division results at runtime. This affects Wasmtime prior to version 0.38.2 and Cranelift prior to 0.85.2. This issue only...

wasmtime-cli (=0.34.0) potentially affected by CVE-2022-23636 +1 more via wasmtime (=0.34.0)

wasmtime CARGO version =0.34.0 is affected by a known vulnerability. The following packages have a transitive dependency on wasmtime and may be impacted: - wasmtime-cli =0.34.0 Source cves: CVE-2022-23636, CVE-2022-31169 Source advisory: OSV:RUSTSEC-2022-0096...

auto-wasi (=0.1.0), ceres-executor (>=0.1.0 <=0.2.0) +44 more potentially affected by CVE-2022-23636 +1 more via wasmtime (>=0.10.0 <=0.33.0)

wasmtime CARGO version =0.10.0, =0.1.0, =0.40.1, =0.45.0, =0.1.0, =0.1.0, =0.3.3, =0.1.0, =0.8.0, =0.8.0, =0.9.0 - smoldot =0.2.0 and more Source cves: CVE-2022-23636, CVE-2022-31169 Source advisory: OSV:RUSTSEC-2022-0096...

auto-wasi (=0.1.0), ceres-executor (>=0.1.0 <=0.2.0) +44 more potentially affected by CVE-2022-23636 +1 more via wasmtime (>=0.10.0 <=0.33.0)

wasmtime CARGO version =0.10.0, =0.1.0, =0.40.1, =0.45.0, =0.1.0, =0.1.0, =0.3.3, =0.1.0, =0.8.0, =0.8.0, =0.9.0 - smoldot =0.2.0 and more Source cves: CVE-2022-23636, CVE-2022-31169 Source advisory: OSV:GHSA-88XQ-W8CQ-XFG7...