9 matches found
MAL-2025-34921 Malicious code in test-mlw2-babas-erode (npm)
The package test-mlw2-babas-erode was found to contain malicious code...
CVE-2021-34921
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...
CVE-2024-34921
TOTOLINK X5000R v9.1.0cu.2350B20230313 was discovered to contain a command injection via the disconnectVPN function...
CVE-2024-34921
TOTOLINK X5000R v9.1.0cu.2350B20230313 was discovered to contain a command injection via the disconnectVPN function...
CVE-2024-34921
TOTOLINK X5000R v9.1.0cu.2350B20230313 was discovered to contain a command injection via the disconnectVPN function...
CVE-2024-34921
The CVE-2024-34921 entry applies to TOTOLINK X5000R firmware version 9.1.0cu.2350_B20230313, where a command injection is possible via the disconnectVPN function. Connected sources attribute the root cause to inadequate input sanitization (notably in the pid parameter of /cgi-bin/cstecgi.cgi), en...
CVE-2021-34921
CVE-2021-34921 affects Bentley View 10.15.0.75. The flaw is an out-of-bounds write during JT file parsing, enabling remote code execution when a user opens a malicious JT file or visits a crafted page. User interaction is required. Several sources (ZDI-21-1509; Red Hat RH/CVE entry; CNVD; CNNC; N...
CVE-2025-34921
CVE-2025-34921 is rejected/not used as stated in the description.
CVE-2025-34921
...