168 matches found
CVE-2022-40765
A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through 19.3 22.22.6100.0 could allow an authenticated attacker with internal network access to conduct a command-injection attack, due to insufficient restriction of URL parameters. Recent assessments: Assessed Attacker Value...
CVE-2022-40765
A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through 19.3 22.22.6100.0 could allow an authenticated attacker with internal network access to conduct a command-injection attack, due to insufficient restriction of URL parameters...
PT-2022-25525 · Mitel · Mitel Mivoice Connect
Name of the Vulnerable Software and Affected Versions: Mitel MiVoice Connect versions through 19.3 22.22.6100.0 Description: A vulnerability in the Edge Gateway component could allow an authenticated attacker with internal network access to conduct a command-injection attack, due to insufficient...
Vulnerabilities fixed in Mitel MiVoice Connect
Vulnerabilities have been fixed in the Director and Mitel Edge Gateway components Mitel MiVoice Connect. The vulnerability with reference CVE-2022-40765 allows an authenticated malicious person with access to the internal network able to inject rogue commands with administrator privileges within...
CVE-2022-34383
Dell Edge Gateway 5200 EGW versions before 1.03.10 contain an operating system command injection vulnerability. A local malicious user may potentially exploit this vulnerability by using an SMI to bypass PMC mitigation and gain arbitrary code execution during SMM...
CVE-2022-34383
Dell Edge Gateway 5200 EGW versions before 1.03.10 contain an operating system command injection vulnerability. A local malicious user may potentially exploit this vulnerability by using an SMI to bypass PMC mitigation and gain arbitrary code execution during SMM...
Command injection
Dell Edge Gateway 5200 EGW versions before 1.03.10 contain an operating system command injection vulnerability. A local malicious user may potentially exploit this vulnerability by using an SMI to bypass PMC mitigation and gain arbitrary code execution during SMM...
CVE-2022-34383
Dell Edge Gateway 5200 EGW versions before 1.03.10 contain an operating system command injection vulnerability. A local malicious user may potentially exploit this vulnerability by using an SMI to bypass PMC mitigation and gain arbitrary code execution during SMM...
CVE-2022-34383
CVE-2022-34383 affects Dell Edge Gateway 5200 (EGW) before 1.03.10. A local attacker can trigger an operating system command injection by using a System Management Interrupt (SMI) to bypass PMC and gain arbitrary code execution during System Management Mode (SMM). Public records corroborate the a...
Dell Edge Gateway 操作系统命令注入漏洞
Dell Edge Gateway is a series of intelligent gateway devices from Dell, Inc. It is designed to aggregate, protect, analyze and relay data from various sensors and devices at the edge of the network. A security vulnerability exists in Dell Edge Gateway 5200 EGW versions prior to 1.03.10, which can...
PT-2022-22156 · Dell · Dell Edge Gateway 5200
Name of the Vulnerable Software and Affected Versions: Dell Edge Gateway 5200 EGW versions prior to 1.03.10 Description: The issue allows a local malicious user to potentially exploit an operating system command injection vulnerability. This can be done by using a System Management Interrupt SMI ...
CVE-2022-34383
Dell Edge Gateway 5200 EGW versions before 1.03.10 contain an operating system command injection vulnerability. A local malicious user may potentially exploit this vulnerability by using an SMI to bypass PMC mitigation and gain arbitrary code execution during SMM...
Red Lion DA50N 安全漏洞
The Red Lion DA50N is a series of secure edge network gateways from Red Lion, U.S.A. A security vulnerability exists in the Red Lion DA50N that could be exploited by an attacker to elevate to root access using the su command...
F5 BIG-IP Edge Client Windows 7.2.1 < 7.2.1.3 / 7.1.6 < 7.1.9.9 Update 1 DLL Hijacking (K33757590)
The version of the Big-IP Edge Client Windows Component Installer installed on the remote Windows host is 7.2.1 before 7.2.1.3, or between 7.1.6 and 7.1.9.9 Update 1. It is, therefore, affected by a DLL hijacking vulnerability. A local attacker can exploit this using a malicious DLL to gain...
Command Execution Vulnerability in Intelligent Edge Gateway of China Mobile Communications Corporation Ltd.
China Mobile Communications Corporation CMCC, the largest mobile communications operator in China, specializes in mobile voice, data, IP telephony and multimedia services. A command execution vulnerability exists in the Smart Edge Gateway of China Mobile Communications Corporation, which can be...
F5 BIG-IP Edge Gateway Elevation of Privilege Vulnerability
F5 BIG-IP Edge Gateway is a remote access solution from F5 USA. An elevation of privilege vulnerability exists in F5 BIG-IP Edge Gateway, which stems from a faulty program call to an advanced native procedure, where a non-privileged user uses a malicious DLL to elevate power on a client Windows...
F5 BIG-IP Edge Gateway代码问题漏洞
F5 BIG-IP Edge Gateway is a remote access solution from F5 USA. An elevation of privilege vulnerability exists in F5 BIG-IP Edge Gateway, which stems from a faulty program call to an advanced native procedure, where a non-privileged user uses a malicious DLL to elevate power on a client Windows...
CVE-2020-5892
In versions 7.1.5-7.1.8, the BIG-IP Edge Client components in BIG-IP APM, Edge Gateway, and FirePass legacy allow attackers to obtain the full session ID from process memory...
F5 Networks BIG-IP : ImageMagick vulnerability (K03512441)
ImageMagick before 7.0.8-50 has an integer overflow vulnerability in the function TIFFSeekCustomStream in coders/tiff.c. CVE-2019-13136 Impact BIG-IP AAM,Edge Gateway, WebAccelerator This issue affects BIG-IP systems only when WAM or AAM is provisioned.If exploited, this vulnerability may result ...
F5 Networks BIG-IP : ImageMagick vulnerability (K20336394)
ImageMagick before 7.0.8-50 has a 'use of uninitialized value' vulnerability in the function ReadCUTImage in coders/cut.c. CVE-2019-13135 Impact BIG-IP AAM,Edge Gateway, and WebAccelerator This issue affects BIG-IP systems only when WAM or AAM is provisioned. If exploited, this vulnerabilitymay...