CVE-2026-31196

The traceroute diagnostic handler in /bin/httpdclientside for ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway, inserts unsanitized user input into a system call, allowing authenticated remote attackers to execute arbitrary commands as root via crafted destAddr parameters usi...

EUVD-2022-31196

Malicious code in bioql PyPI...

EUVD-2025-31196

Malicious code in bioql PyPI...

CVE-2024-31196

Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ONF libfluid libfluidmsg module. This vulnerability is associated with program routine fluidmsg::ActionList::unpack10. This issue affects libfluid: 0.1.0...

CVE-2023-31196

Missing authentication for critical function in Wi-Fi AP UNIT allows a remote unauthenticated attacker to obtain sensitive information of the affected products. Affected products and versions are as follows: AC-PD-WAPU v1.05B04 and earlier, AC-PD-WAPUM v1.05B04 and earlier, AC-PD-WAPU-P v1.05B04P...

CVE-2025-31196

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.4, visionOS 2.4, watchOS 11.4. Processing a maliciously crafted file may lead to a...

CVE-2025-31196

CVE-2025-31196 describes an out-of-bounds read mitigated by improved input validation. The issue can be triggered by processing a maliciously crafted file, potentially causing a denial-of-service or memory contents disclosure. Affected products: Apple iPadOS, macOS (Ventura 13.7.6, Sonoma 14.7.6)...

CVE-2024-31196

creationtimestamp| type| source ---|---|--- 2024-09-18 16:44:35+00:00| seen| https://t.me/cvedetector/5961...

CVE-2024-31196 NULL Pointer Dereference in libfluid_msg library

Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ONF libfluid libfluidmsg module. This vulnerability is associated with program routine fluidmsg::ActionList::unpack10. This issue affects libfluid: 0.1.0...

CVE-2024-31196 NULL Pointer Dereference in libfluid_msg library

Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ONF libfluid libfluidmsg module. This vulnerability is associated with program routine fluidmsg::ActionList::unpack10. This issue affects libfluid: 0.1.0...

CVE-2024-31196

CVE-2024-31196 affects libfluid 0.1.0 (libfluid_msg::ActionList::unpack10). The flaw is an unchecked Return Value leading to a NULL pointer dereference, reported as a denial of service vulnerability. Impact: availability loss (HIGH per NVD) with network attack vector, low complexity, no user inte...

CVE-2023-31196

Missing authentication for critical function in Wi-Fi AP UNIT allows a remote unauthenticated attacker to obtain sensitive information of the affected products. Affected products and versions are as follows: AC-PD-WAPU v1.05B04 and earlier, AC-PD-WAPUM v1.05B04 and earlier, AC-PD-WAPU-P v1.05B04P...

CVE-2023-31196

Missing authentication for critical function in Wi-Fi AP UNIT allows a remote unauthenticated attacker to obtain sensitive information of the affected products. Affected products and versions are as follows: AC-PD-WAPU v1.05B04 and earlier, AC-PD-WAPUM v1.05B04 and earlier, AC-PD-WAPU-P v1.05B04P...

CVE-2023-31196

CVE-2023-31196: Missing authentication for a critical function in Inaba Denki Sangyo Wi‑Fi AP UNIT enables remote, unauthenticated access to sensitive information. Affected devices and versions include AC-PD-WAPU/AC-WAPU-P/AC-WAPUM and WAPU-WAPUM series (1.05_B04 or earlier; with P variants 1.05_...

JVN#28412757: Multiple vulnerabilities in Inaba Denki Sangyo Wi-Fi AP UNIT

Wi-Fi AP UNIT provided by Inaba Denki Sangyo Co., Ltd. contains multiple vulnerabilities listed below. Missing authentication for critical function CWE-306 - CVE-2023-31196 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N| Base Score: 7.5 CVSS v2|...

VulnCheck KEV: CVE-2021-31196

Microsoft Exchange Server contains an information disclosure vulnerability that allows for remote code execution...

CVE-2022-31196 Server-Side Request Forgery (SSRF) vulnerability in Databasir

Databasir is a database metadata management platform. Databasir = 1.06 has Server-Side Request Forgery SSRF vulnerability. The SSRF is triggered by a sending a single HTTP POST request to create a databaseType. By supplying a jdbcDriverFileUrl that returns a non 200 response code, the url is...

CVE-2022-31196

Databasir (≤ 1.06) contains a Server-Side Request Forgery (SSRF) vulnerability. An attacker can trigger the issue by sending a single HTTP POST to create a databaseType using a jdbcDriverFileUrl that returns a non-200 response; the executed URL’s response is logged and exposed in the endpoint/dat...

CVE-2021-31196

creationtimestamp| type| source ---|---|--- 2021-07-15 10:13:10+00:00| seen| https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus21/2021 2021-09-22 08:54:20+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/575 2021-09-22 14:47:17+00:00| exploited| https://t.me/hackertrick/207...

CVE-2021-31196

Technical details about CVE-2021-31196 are not publicly available in the provided connected documents. The materials describe a Microsoft Exchange Server vulnerability at a high level, but do not specify affected products, versions, root cause, or fixes. Monitor for updates.