126 matches found
usbnet: ipheth: fix possible overflow in DPE length check
...
CVE-2020-1822
There are multiple out of bounds OOB read vulnerabilities in the implementation of the Common Open Policy Service COPS protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities...
CVE-2020-1821
There are multiple out of bounds OOB read vulnerabilities in the implementation of the Common Open Policy Service COPS protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities...
CVE-2020-1820
There are multiple out of bounds OOB read vulnerabilities in the implementation of the Common Open Policy Service COPS protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities...
CVE-2024-56541
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix use-after-free in ath12kdpcccleanup During ath12k module removal, in ath12kcoredeinit, ath12kmacdestroy un-registers ah-hw from mac80211 and frees the ah-hw as well as all the ar's in it. After this...
CVE-2024-51428
An issue in Espressif Esp idf v5.3.0 allows attackers to cause a Denial of Service DoS via a crafted data channel packet...
Exploit for Incorrect Privilege Assignment in Litespeedtech Litespeed_Cache
LiteSpeed Cache Privilege Escalation Exp CVE-2024-28000Sc...
CVE-2024-39946
A vulnerability has been found in Dahua products.After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing device initialization...
CVE-2024-39945
A vulnerability has been found in Dahua products. After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing the device to crash...
CVE-2024-39946
A vulnerability has been found in Dahua products.After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing device initialization...
CVE-2024-39945
A vulnerability has been found in Dahua products. After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing the device to crash...
CVE-2024-39947
The CVE-2024-39947 entry concerns Dahua products (notably NVRs) where, after obtaining an ordinary user’s credentials, an attacker can send a specially crafted packet to a vulnerable interface, causing the device to crash. Reported metrics indicate a network-accessible vector with low attack comp...
CVE-2024-39947
A vulnerability has been found in Dahua products.After obtaining the ordinary user's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing the device to crash...
CVE-2024-39946
CVE-2024-39946 affects Dahua Network Video Recorders (notably NVR4XXX family) where, after valid administrator credentials are obtained, an attacker can send a crafted data packet to a vulnerable interface to trigger device initialization. Public documents describe the vulnerability as resulting ...
PT-2024-28749 · Dahua · Dahua
Name of the Vulnerable Software and Affected Versions: Dahua products affected versions not specified Description: A vulnerability has been found in Dahua products. After obtaining an ordinary user's username and password, the attacker can send a carefully crafted data packet to the interface wit...
PT-2024-28748 · Dahua · Dahua
Name of the Vulnerable Software and Affected Versions: Dahua products affected versions not specified Description: A vulnerability has been found in Dahua products. After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface wi...
CVE-2024-39150
vditor, version 3.9.8 and earlier, is vulnerable to an Arbitrary file read via a crafted data packet. The issue is confirmed across multiple sources (NVD/Red Hat/CVE ecosystem). Affected component: vditor (frontend/Markdown editor). Root cause details are not explicitly provided in the extracted ...
CVE-2024-39150
vditor v.3.9.8 and before is vulnerable to Arbitrary file read via a crafted data packet...
PT-2024-19462 · Unknown · Opendroneid Osm
Name of the Vulnerable Software and Affected Versions: OpenDroneID OSM version 3.5.1 Description: An issue in OpenDroneID OSM allows attackers to impersonate other drones via transmission of crafted data packets. Recommendations: For OpenDroneID OSM version 3.5.1, consider restricting the...
CVE-2021-42147
Buffer over-read vulnerability in the dtlssha256update function in Contiki-NG tinyDTLS through master branch 53a0d97 allows remote attackers to cause a denial of service via crafted data packet...