14 matches found
CVE-2026-42442
Summary: CVE-2026-42442 affects NanaZip, an open source file archive, in versions 5.0.1252.0 through before 6.0.1698.0. A null‑pointer dereference occurs in the UFS/UFS2 filesystem image parser when opening a crafted UFS image whose root inode (inode 2) is set to IFLNK (symlink) instead of IFDIR ...
EUVD-2025-42442
Malicious code in putri-ketoprak98-breki npm...
CVE-2023-42442
JumpServer is an open source bastion host and a professional operation and maintenance security audit system. Starting in version 3.0.0 and prior to versions 3.5.5 and 3.6.4, session replays can download without authentication. Session replays stored in S3, OSS, or other cloud storage are not...
CVE-2024-42442
creationtimestamp| type| source ---|---|--- 2024-11-12 15:26:06+00:00| seen| https://infosec.exchange/users/cve/statuses/113470679671943514 2024-11-12 17:12:48+00:00| seen| https://t.me/cvedetector/10626...
CVE-2024-42442
CVE-2024-42442 concerns AMI AptioV BIOS vulnerability: a network-triggered flaw allows code execution outside the intended System Management Mode by compromising BIOS memory boundaries. The description notes a memory-buffer restriction breach enabling execution beyond SMRAM, with exploitation des...
CVE-2024-42442 Runtime Service Access outside SMRAM
APTIOV contains a vulnerability in the BIOS where a user or attacker may cause an improper restriction of operations within the bounds of a memory buffer over the network. A successful exploitation of this vulnerability may lead to code execution outside of the intended System Management Mode...
Exploit for Improper Authentication in Fit2Cloud Jumpserver
CVE-2023-42442 CVE-2023-42442 – JumpServer Session recording...
Exploit for Improper Authentication in Fit2Cloud Jumpserver
BlackJump Chinese |...
Exploit for Improper Authentication in Fit2Cloud Jumpserver
BlackJump Chinese |...
CVE-2023-42442
creationtimestamp| type| source ---|---|--- 2023-10-10 20:32:25+00:00| published-proof-of-concept| https://t.me/dilagrafie/3213 2023-10-14 09:36:21+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/5413 2023-10-20 08:37:52+00:00| published-proof-of-concept|...
Exploit for Improper Authentication in Fit2Cloud Jumpserver
Process of exploiting the JumpServer unauthorized acce...
CVE-2023-42442
Summary: CVE-2023-42442 affects JumpServer (3.0.0 up to versions before 3.5.5 and 3.6.4). The vulnerability is an authentication flaw in the API /api/v1/terminal/sessions/ that allows anonymous access, enabling information disclosure. Additionally, session replays can be downloaded without authen...
CVE-2023-42442 JumpServer session replays download without authentication
JumpServer is an open source bastion host and a professional operation and maintenance security audit system. Starting in version 3.0.0 and prior to versions 3.5.5 and 3.6.4, session replays can download without authentication. Session replays stored in S3, OSS, or other cloud storage are not...
CVE-2022-42442 IBM Robotic Process Automation for Cloud Pak information disclosure
IBM Robotic Process Automation for Cloud Pak 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is vulnerable to exposure of the first tenant owner e-mail address to users with access to the container platform. IBM X-Force ID: 238214...