MAL-2025-40718 Malicious code in zain-toge3-kyuki (npm)

The package zain-toge3-kyuki was found to contain malicious code...

CVE-2025-40718

Improper error handling vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to send malformed payloads to generate error messages containing sensitive information...

CVE-2025-40718 Improper error handling vulnerability in Quiter Gateway

Improper error handling vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to send malformed payloads to generate error messages containing sensitive information...

CVE-2025-40718

CVE-2025-40718 : Affected product is Quiter Gateway (Quiter). The vulnerability arises from improper error handling in versions prior to 4.7.0, which can cause the system to generate error messages containing sensitive information when presented with malformed payloads. The CVE is supported by mu...

CVE-2022-40718

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the anweb service, which listens on TCP ports 80 and 443 by default. The issue...

Fortinet Fortigate IPS Engine evasion using custom TCP flags (FG-IR-23-090)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-090 advisory. - A interpretation conflict in Fortinet IPS Engine versions 7.321, 7.166 and 6.158 allows attacker to evade IPS features via...

Adobe Illustrator < 25.4.2 Multiple Vulnerabilities (APSB21-98) (macOS)

The version of Adobe Illustrator installed on the remote macOS host is prior to 25.4.2. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-98 advisory. - Out-of-bounds Read CWE-125 potentially leading to Memory Leak CVE-2021-40718 - Out-of-bounds Read CWE-125...

CVE-2024-40718

creationtimestamp| type| source ---|---|--- 2024-09-07 20:10:56+00:00| seen| https://t.me/cvedetector/5045...

CVE-2023-40718

A interpretation conflict in Fortinet IPS Engine versions 7.321, 7.166 and 6.158 allows attacker to evade IPS features via crafted TCP packets...

CVE-2023-40718

CVE-2023-40718 concerns an interpretation/conflict in Fortinet FortiOS IPS Engine affecting Fortinet IPS Engine versions 6.158, 7.166, and 7.321, enabling evasion of IPS features via crafted TCP packets. The connected sources confirm the affected components and root cause, with Fortinet advisorie...

D-Link DIR-2150 <= 4.0.1 Multiple Vulnerabilities

D-Link DIR-2150 devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2022-40718

CVE-2022-40718 concerns D-Link DIR-2150 (firmware 4.0.1). The flaw is a stack-based buffer overflow in the anweb service (listening on TCP ports 80/443) caused by improper validation of user-supplied data length, allowing network-adjacent attackers to execute code with root privileges. Multiple s...

CVE-2022-40718

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the anweb service, which listens on TCP ports 80 and 443 by default. The issue...