Lucene search
K

202 matches found

Cvelist
Cvelist
added 2023/12/19 3:43 p.m.19 views

CVE-2023-46223

An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...

9.8CVSS9.8AI score0.06782EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/19 3:43 p.m.20 views

CVE-2023-46260

An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...

7.5CVSS9.8AI score0.09837EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/12/19 3:43 p.m.10 views

CVE-2023-46217

An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...

9.8CVSS7.7AI score0.36395EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/19 3:43 p.m.65 views

CVE-2023-46261

An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...

9.8CVSS9.8AI score0.11337EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/19 12:0 a.m.5 views

PT-2023-29912 · Unknown · Mobile Device Server

Name of the Vulnerable Software and Affected Versions: Mobile Device Server affected versions not specified Description: An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption, which could result in a Denial of Service DoS or code execution...

9.8CVSS9.3AI score0.36395EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/12/12 12:0 a.m.3 views

PT-2023-8282 · Ivanti · Ivanti Avalanche

Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche versions affected versions not specified Description: The issue is related to a buffer overflow in the WLAvalancheService of the Ivanti Avalanche system, which can be exploited by an attacker sending specially crafted data...

9.8CVSS7.8AI score0.09837EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/11/07 12:0 a.m.6 views

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from audio memory corruption when processing VOC packet data from an ADSP...

7.8CVSS6.9AI score0.0011EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2023/10/22 2:2 p.m.699 views

Exploit for Improper Authentication in Dahuasecurity Ipc-Hum7Xxx_Firmware

CVE-2021-33044 Dahua IPC/VTH/VTO devices auth bypass exploit...

10CVSS9.1AI score0.99871EPSS
Exploits12
NVD
NVD
added 2023/06/15 10:15 p.m.31 views

CVE-2023-28810

Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Attackers can modify device network configuration by sending specific data packets to the vulnerable interface within the same local network...

4.3CVSS5AI score0.10396EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/15 12:0 a.m.34 views

CVE-2023-28810

Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Attackers can modify device network configuration by sending specific data packets to the vulnerable interface within the same local network...

4.3CVSS4.9AI score0.10396EPSS
Exploits0References1
CVE
CVE
added 2023/06/15 12:0 a.m.73 views

CVE-2023-28810

CVE-2023-28810 — Hikvision access control/intercom products are affected by an improper access control vulnerability that allows unauthorized modification of device network configuration by sending specific data packets to a vulnerable interface within the same local network. The CISA ICS advisor...

4.3CVSS4.6AI score0.10396EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.6 views

PT-2025-18625 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak has been identified in the Linux kernel's Bluetooth L2CAP implementation. The issue arises when the HCI core processes ACL data packets without freeing the skb,...

8.8CVSS6.5AI score0.03763EPSS
Exploits18References838
RedhatCVE
RedhatCVE
added 2023/04/13 1:31 p.m.57 views

CVE-2023-26554

An out-of-bounds write flaw was found in the ntp package. A remote attacker may trigger this vulnerability by sending malicious data packets to the ntp server. An adversary may be able to attack a client ntpq process, but cannot attack ntpd...

5.6CVSS5.5AI score0.00645EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/04/13 1:31 p.m.42 views

CVE-2023-26553

An out-of-bounds write flaw was found in the ntp package. A remote attacker may trigger this vulnerability by sending malicious data packets to the ntp server. An adversary may be able to attack a client ntpq process, but cannot attack ntpd...

5.6CVSS5.5AI score0.00703EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/04/13 1:31 p.m.43 views

CVE-2023-26552

An out-of-bounds write flaw was found in the ntp package. A remote attacker may trigger this vulnerability by sending malicious data packets to the ntp server. An adversary may be able to attack a client ntpq process, but cannot attack ntpd...

5.6CVSS5.5AI score0.00645EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/04/13 1:0 p.m.56 views

CVE-2023-26551

An out-of-bounds write flaw was found in the ntp package. A remote attacker can trigger this vulnerability by sending malicious data packets to the ntp server. An adversary may be able to attack a client ntpq process, but cannot attack ntpd...

5.6CVSS5.5AI score0.0067EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/10/14 12:0 a.m.5 views

PT-2022-24636 · Hwairlink · Hwairlink

Name of the Vulnerable Software and Affected Versions: HwAirlink module affected versions not specified Description: The issue is related to a heap overflow vulnerability in the HwAirlink module when processing data packets of a proprietary protocol. This vulnerability may allow attackers to obta...

9.8CVSS9.2AI score0.0051EPSS
Exploits0References3
NVD
NVD
added 2022/08/19 11:15 p.m.17 views

CVE-2022-2793

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-353 Missing Support for Integrity Check, and has no authentication or authorization of data packets after establishing a connection for the SRTP protocol...

7.8CVSS0.00138EPSS
Exploits0References1
Prion
Prion
added 2022/08/19 11:15 p.m.17 views

Design/Logic Flaw

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-353 Missing Support for Integrity Check, and has no authentication or authorization of data packets after establishing a connection for the SRTP protocol...

4.4CVSS7.8AI score0.00138EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/08/19 10:33 p.m.61 views

CVE-2022-2793

CVE-2022-2793 affects Emerson Proficy Machine Edition 9.00 and earlier. The flaw is Missing Support for Integrity Check (CWE-353): after a connection is established for SRTP, data packets are not authenticated or authorized. The vulnerability can enable data forgery/integrity issues on the SRTP c...

7.8CVSS7.8AI score0.00138EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder