202 matches found
CVE-2023-46223
An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...
CVE-2023-46260
An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...
CVE-2023-46217
An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...
CVE-2023-46261
An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...
PT-2023-29912 · Unknown · Mobile Device Server
Name of the Vulnerable Software and Affected Versions: Mobile Device Server affected versions not specified Description: An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption, which could result in a Denial of Service DoS or code execution...
PT-2023-8282 · Ivanti · Ivanti Avalanche
Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche versions affected versions not specified Description: The issue is related to a buffer overflow in the WLAvalancheService of the Ivanti Avalanche system, which can be exploited by an attacker sending specially crafted data...
Qualcomm Chipsets Security Vulnerability
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from audio memory corruption when processing VOC packet data from an ADSP...
Exploit for Improper Authentication in Dahuasecurity Ipc-Hum7Xxx_Firmware
CVE-2021-33044 Dahua IPC/VTH/VTO devices auth bypass exploit...
CVE-2023-28810
Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Attackers can modify device network configuration by sending specific data packets to the vulnerable interface within the same local network...
CVE-2023-28810
Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Attackers can modify device network configuration by sending specific data packets to the vulnerable interface within the same local network...
CVE-2023-28810
CVE-2023-28810 — Hikvision access control/intercom products are affected by an improper access control vulnerability that allows unauthorized modification of device network configuration by sending specific data packets to a vulnerable interface within the same local network. The CISA ICS advisor...
PT-2025-18625 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak has been identified in the Linux kernel's Bluetooth L2CAP implementation. The issue arises when the HCI core processes ACL data packets without freeing the skb,...
CVE-2023-26554
An out-of-bounds write flaw was found in the ntp package. A remote attacker may trigger this vulnerability by sending malicious data packets to the ntp server. An adversary may be able to attack a client ntpq process, but cannot attack ntpd...
CVE-2023-26553
An out-of-bounds write flaw was found in the ntp package. A remote attacker may trigger this vulnerability by sending malicious data packets to the ntp server. An adversary may be able to attack a client ntpq process, but cannot attack ntpd...
CVE-2023-26552
An out-of-bounds write flaw was found in the ntp package. A remote attacker may trigger this vulnerability by sending malicious data packets to the ntp server. An adversary may be able to attack a client ntpq process, but cannot attack ntpd...
CVE-2023-26551
An out-of-bounds write flaw was found in the ntp package. A remote attacker can trigger this vulnerability by sending malicious data packets to the ntp server. An adversary may be able to attack a client ntpq process, but cannot attack ntpd...
PT-2022-24636 · Hwairlink · Hwairlink
Name of the Vulnerable Software and Affected Versions: HwAirlink module affected versions not specified Description: The issue is related to a heap overflow vulnerability in the HwAirlink module when processing data packets of a proprietary protocol. This vulnerability may allow attackers to obta...
CVE-2022-2793
Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-353 Missing Support for Integrity Check, and has no authentication or authorization of data packets after establishing a connection for the SRTP protocol...
Design/Logic Flaw
Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-353 Missing Support for Integrity Check, and has no authentication or authorization of data packets after establishing a connection for the SRTP protocol...
CVE-2022-2793
CVE-2022-2793 affects Emerson Proficy Machine Edition 9.00 and earlier. The flaw is Missing Support for Integrity Check (CWE-353): after a connection is established for SRTP, data packets are not authenticated or authorized. The vulnerability can enable data forgery/integrity issues on the SRTP c...