224 matches found
MOKOSmart MKGW1 Gateway Improper Session Management
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 MOKOSmart MKGW1 Gateway Improper Session Management Link: https://github.com/sbaresearch/advisories/tree/public/2022/SBA-ADV-20220120-01MOKOSmartMKGW1GatewayImproperSessionManagement Vulnerability Overview MOKOSmart MKGW1 Gateway devices with firmwa...
kernel: wifi: mt76: mt7921: fix error code of return in mt7921_acpi_read
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix error code of return in mt7921acpiread Kernel NULL pointer dereference when ACPI SAR table isn't implemented well. Fix the error code of return to mark the ACPI SAR table as invalid. 5.077128 mt7921e...
The vulnerability of the Ansible Semaphore configuration management interface, related to improper control of code generation, allows a attacker to execute arbitrary code.
The vulnerability of the Ansible Semaphore configuration management interface is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
rhel-system-roles bug fix update
An update is available for rhel-system-roles. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The rhel-system-roles package includes a collection of Ansible role...
The configuration interface vulnerability of the Hitron CODA-5310 cable switch allows a perpetrator to execute arbitrary commands or cause service failures.
The vulnerability of the Hitron CODA-5310 cable gateway configuration interface is related to the absence of authentication for critical functions. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands or cause service failures...
Qualcomm Chipsets 缓冲区错误漏洞
Qualcomm Chipsets are a series of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from a memory corruption issue when calling the system configuration API...
CVE-2023-30604
It is identified a vulnerability of insufficient authentication in the system configuration interface of Hitron Technologies CODA-5310. An unauthorized remote attacker can exploit this vulnerability to access system configuration interface, resulting in performing arbitrary system operation or...
PT-2023-3550 · Hitron Technologies · Coda-5310
Name of the Vulnerable Software and Affected Versions: Hitron Technologies CODA-5310 affected versions not specified Description: The issue is related to insufficient authentication in the system configuration interface, allowing an unauthorized remote attacker to access the interface. This can...
Solr: Code execution via entity expansion
It was found that Apache Lucene would accept an object from an unauthenticated user that could be manipulated through subsequent post requests. An attacker could use this flaw to assemble an object that could permit execution of arbitrary code if the server enabled Apache Solr's Config API...
CVE-2022-3843 WAGO: Exposure of configuration interface in unmanaged switches
In WAGO Unmanaged Switch 852-111/000-001 in firmware version 01 an undocumented configuration interface without authorization allows an remote attacker to read system information and configure a limited set of parameters...
CVE-2022-3843 WAGO: Exposure of configuration interface in unmanaged switches
In WAGO Unmanaged Switch 852-111/000-001 in firmware version 01 an undocumented configuration interface without authorization allows an remote attacker to read system information and configure a limited set of parameters...
CVE-2020-18330
An issue was discovered in the default configuration of ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01hardware platform Gpn2.4P21-CWIFI-V0.05, allows attackers to gain access to the configuration interface...
CVE-2020-18329
An issue was discovered in Rehau devices that use a pCOWeb card BIOS v6.27, BOOT v5.00, web version v2.2, allows attackers to gain full unauthenticated access to the configuration and service interface...
CVE-2020-18330
An issue was discovered in the default configuration of ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01hardware platform Gpn2.4P21-CWIFI-V0.05, allows attackers to gain access to the configuration interface...
Default configuration
An issue was discovered in the default configuration of ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01hardware platform Gpn2.4P21-CWIFI-V0.05, allows attackers to gain access to the configuration interface...
ChinaMobile GPN2.4P21-C-CN 路径遍历漏洞
China Mobile ChinaMobile GPN2.4P21-C-CN is a wireless router from China Mobile. A security vulnerability exists in the ChinaMobile GPN2.4P21-C-CN. An attacker can exploit this vulnerability to access the configuration interface...
CVE-2020-18330
An issue was discovered in the default configuration of ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01hardware platform Gpn2.4P21-CWIFI-V0.05, allows attackers to gain access to the configuration interface...
CVE-2020-18329
An issue was discovered in Rehau devices that use a pCOWeb card BIOS v6.27, BOOT v5.00, web version v2.2, allows attackers to gain full unauthenticated access to the configuration and service interface...
PT-2023-11490 · China Mobile · Chinamobile Plc Wireless Router
Name of the Vulnerable Software and Affected Versions: ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN version W2000EN-01 Description: An issue was discovered in the default configuration of the ChinaMobile PLC Wireless Router, allowing attackers to gain access to the configuration interface...
PT-2023-11489 · Rehau · Rehau
Name of the Vulnerable Software and Affected Versions: Rehau devices that use a pCOWeb card BIOS version 6.27, BOOT version 5.00, web version 2.2 Description: An issue in the devices allows attackers to gain full unauthenticated access to the configuration and service interface. Recommendations:...