5 matches found
SHARP MFPs Out-of-Bounds Vulnerabilities (CVE-2024-45829)
Sharp and Toshiba Tec MFPs provide the web page to download data, where query parameters in HTTP requests are improperly processed and resulting in an Out-of-bounds Read vulnerability. Crafted HTTP requests may cause affected products crashed. This plugin only works with Tenable.ot. Please visit...
PT-2024-37790 · Unknown · Lollms-Webui
Name of the Vulnerable Software and Affected Versions: lollms-webui versions v9.9 through the latest Description: A Cross-Site Request Forgery CSRF issue exists in the "install comfyui" endpoint of the lollms comfyui.py file. This endpoint uses the GET method without requiring a client ID, allowi...
TOTOLINK AC1200 T8 and AC1200 T10 cstecgi.cgi file setParentalRules function buffer overflow vulnerability
TOTOLINK AC1200 T8 and AC1200 T10 are wireless router devices. A buffer overflow vulnerability exists in the TOTOLINK AC1200 T8 and AC1200 T10 cstecgi.cgi file setParentalRules function, which stems from the desc parameter not being validated for proper length. An attacker could exploit this...
CVE-2019-19194
The Bluetooth Low Energy Secure Manager Protocol SMP implementation on Telink Semiconductor BLE SDK versions before November 2019 for TLSR8x5x through 3.4.0, TLSR823x through 1.3.0, and TLSR826x through 3.3 devices installs a zero long term key LTK if an out-of-order link-layer encryption request...
Cisco IOS and IOS-XE Denial of Service Vulnerability (CNVD-2015-02813)
Cisco IOS and IOS-XE are both operating systems developed by Cisco for its network devices. A security vulnerability exists in Cisco IOS version 15.5S and IOS-XE, which stems from the program's failure to properly handle RADIUS packets. A remote attacker could exploit the vulnerability to cause a...