CVE-2022-25584

Seyeon Tech Co., Ltd FlexWATCH FW3170-PS-E Network Video System 4.23-3000GY allows attackers to access sensitive information...

Information disclosure

Seyeon Tech Co., Ltd FlexWATCH FW3170-PS-E Network Video System 4.23-3000GY allows attackers to access sensitive information...

Seyeon Tech FlexWATCH 安全漏洞

Seyeon Tech FlexWATCH is a series of network video systems from Seyeon Tech, a South Korean company. A security vulnerability exists in Seyeon Tech FlexWATCH FW3170-PS-E Network Video System version 4.23-3000GY, which can be exploited by attackers to access sensitive information...

CVE-2021-28496

On systems running Arista EOS and CloudEOS with the affected release version, when using shared secret profiles the password configured for use by BiDirectional Forwarding Detection BFD will be leaked when displaying output over eAPI or other JSON outputs to other authenticated users on the devic...

CVE-2020-15898

In Arista EOS malformed packets can be incorrectly forwarded across VLAN boundaries in one direction. This vulnerability is only susceptible to exploitation by unidirectional traffic ex. UDP and not bidirectional traffic ex. TCP. This affects: EOS 7170 platforms version 4.21.4.1F and below releas...

CVE-2020-15898

In Arista EOS malformed packets can be incorrectly forwarded across VLAN boundaries in one direction. This vulnerability is only susceptible to exploitation by unidirectional traffic ex. UDP and not bidirectional traffic ex. TCP. This affects: EOS 7170 platforms version 4.21.4.1F and below releas...

CVE-2020-24360

An issue with ARP packets in Arista’s EOS affecting the 7800R3, 7500R3, and 7280R3 series of products may result in issues that cause a kernel crash, followed by a device reload. The affected Arista EOS versions are: 4.24.2.4F and below releases in the 4.24.x train; 4.23.4M and below releases in...

Arista Networks Arista EOS Security Breach

Arista Networks Arista EOS is a scalable operating system for data centers and cloud network centers from Arista Networks, Inc. Arista EOS builds cloud architectures that scale to hundreds of thousands of compute and storage nodes with management and provisioning capabilities for large-scale jobs...

Security Advisory 0054

Security Advisory 0054 PDF Date: October 7th, 2020 Version: 1.0 Revision | Date | Changes ---|---|--- 1.0 | October 7th, 2020 | Initial Release The CVE-ID tracking this issue is: CVE-2020-15897 CVSSv3.1 Base Score: 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Description This advisory documen...

SUSE SLED12 / SLES12 Security Update : mozilla-nspr, mozilla-nss (SUSE-SU-2020:0088-1)

This update for mozilla-nspr, mozilla-nss fixes the following issues : mozilla-nss was updated to NSS 3.47.1 : Security issues fixed : CVE-2019-17006: Added length checks for cryptographic primitives bsc1159819. CVE-2019-11745: EncryptUpdate should use maxout, not block size bsc1158527...

Security update for mozilla-nspr, mozilla-nss (moderate)

openSUSE Security Update: Security update for mozilla-nspr, mozilla-nss Announcement ID: openSUSE-SU-2020:0008-1 Rating: moderate References: 1141322 1158527 1159819 Cross-References: CVE-2018-18508 CVE-2019-11745 CVE-2019-17006 Affected Products: openSUSE Leap 15.1 An update that fixes three...

Fedora 29 : nspr / nss (2019-e4c45e113c)

Updates the nspr and nss packages to upstream NSPR 4.23 and NSS 3.47 respectively. For details about new functionality and a list of bugs fixed in this release please see the upstream release notes - https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS3.47releasenotes Note that Tenab...

Fedora 30 : nspr / nss (2019-8934d55352)

Updates the nspr and nss packages to upstream NSPR 4.23 and NSS 3.47 respectively. For details about new functionality and a list of bugs fixed in this release please see the upstream release notes - https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS3.47releasenotes Note that Tenab...

Fedora 31 : nspr / nss (2019-4175e7cb56)

Updates the nspr and nss packages to upstream NSPR 4.23 and NSS 3.47 respectively. For details about new functionality and a list of bugs fixed in this release please see the upstream release notes - https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS3.47releasenotes Note that Tenab...

Hex Workshop 4.23 / 5.1 / 6.0 Universal Local Buffer Overflow

!/usr/bin/perl by hack4love [email protected] Hex Workshop v3//4//5//6 .hex Universal Local Buffer ExploitS SEH Found By: DATASNIPER http://www.bpsoft.com/downloads/ info:: i write 3 exploits for the 3 v USEfileimporthack4love.hex boom calc Hex Workshop v 3.11 my $hed1=":0000FC..."; my...

Hex Workshop 4.235.16.0 - .hex Universal Local Buffer Overflow (SEH)

Hex Workshop 4.235.16.0 - .hex Universal Local Buffer Overflow SEH !/usr/bin/perl by hack4love [email protected] Hex Workshop v3//4//5//6 .hex Universal Local Buffer ExploitS SEH Found By: DATASNIPER http://www.bpsoft.com/downloads/ info:: i write 3 exploits for the 3 v...

CVE-2009-2118

Integer overflow in IrfanView 4.23, when the resampling or screen fitting option is enabled, allows remote attackers to execute arbitrary code via a crafted TIFF 1 BPP image, which triggers a heap-based buffer overflow...

Integer overflow

Integer overflow in IrfanView 4.23, when the resampling or screen fitting option is enabled, allows remote attackers to execute arbitrary code via a crafted TIFF 1 BPP image, which triggers a heap-based buffer overflow...

CVE-2008-5846

Six Apart Movable Type MT before 4.23 allows remote authenticated users with create permission for posts to bypass intended access restrictions and publish posts via a "system-wide entry listing screen."...

Movable Type Enterprise cross-site scripting vulnerability

Overview Movable Type Enterprise contains a cross-site scripting vulnerability. Movable Type Enterprise, a web log system from Six Apart KK for business users, contains a cross-site scripting vulnerability. This vulnerability is different from JVN30385652 and JVN81490697. Yosuke HASEGAWA of...