PT-2024-25226 · Unknown · Novel-Plus

Name of the Vulnerable Software and Affected Versions: novel-plus versions 4.3.0 and earlier Description: The issue allows a remote attacker to obtain sensitive information via a crafted GET request using the filePath parameter. This enables the attacker to read arbitrary files, potentially leadi...

CVE-2024-33383

The CVE-2024-33383 case concerns novel-plus versions 4.3.0 and earlier, with an Arbitrary File Read via a crafted GET request that uses the filePath parameter to expose sensitive data. Affected component is the application’s filePath-handling path; root cause is improper validation/handling of fi...

RHEL 7 / 8 : OpenShift Virtualization 4.12.0 RPMs (RHSA-2023:0407)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0407 advisory. OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform.This advisory contains...

RHEL 8 : Red Hat Application Interconnect 1.0 Release (rpms) (Important) (RHSA-2022:6113)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6113 advisory. This release addresses several security issues in the underlying golang compiler by moving to golang version 1.17.12. Security Fixes:...

RHEL 8 : Release of OpenShift Serverless Client kn 1.24.0 (Important) (RHSA-2022:6042)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6042 advisory. Red Hat OpenShift Serverless Client kn 1.24.0 provides a CLI to interact with Red Hat OpenShift Serverless 1.24.0. The kn CLI is delivered a...

ROS-20240402-17

A vulnerability in the net/http package of the Go programming language is related to information disclosure. vulnerability could allow a remote attacker to disclose protected information. A vulnerability in the cmd-go component of the Go programming language is related to public data transmission...

The vulnerability of the formExpandDlnaFile() function in the Tenda AC15 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formExpandDlnaFile function in the Tenda AC15 router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the filePath parameter. Exploiting this vulnerability can allow an attacker to compromise the...

CVE-2024-2807

A vulnerability classified as critical was found in Tenda AC15 15.03.05.18/15.03.20multi. This vulnerability affects the function formExpandDlnaFile of the file /goform/expandDlnaFile. The manipulation of the argument filePath leads to stack-based buffer overflow. The attack can be initiated...

Tenda AC15 安全漏洞

Tenda AC15 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in October 2015, which supports 802.11ac protocol with a theoretical transmission rate of 1900Mbps 600Mbps in 2.4GHz band and 1300Mbps in 5GHz band. Tenda AC15 suffers from a stack buffer overflow...

CVE-2024-28550

Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the filePath parameter of formExpandDlnaFile function...

CVE-2024-28550

Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the filePath parameter of formExpandDlnaFile function...

CVE-2024-28550

The CVE-2024-28550 entry concerns Tenda AC18 router firmware V15.03.05.05, reporting a stack overflow in the filePath parameter of the formExpandDlnaFile function. Public references confirm the affected device and parameter, with a CVSSv3.1 base score of 4.3 (Network, Low privileges, no user inte...

CVE-2024-28550

Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the filePath parameter of formExpandDlnaFile function...

Tenda AC18 Security Vulnerability

Tenda AC18 is a router from Tenda, China. A security vulnerability exists in Tenda AC18 version V15.03.05.05, which originates from a stack overflow vulnerability in the filePath parameter of the formExpandDlnaFile function...

PT-2024-22456 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: The issue is a stack overflow vulnerability in the filePath parameter of the formExpandDlnaFile function. Recommendations: For Tenda AC18 version 15.03.05.05, as a temporary workaround, consider...

Improper Authorization

github.com/IceWhaleTech/CasaOS-UserService is vulnerable to Improper Authorization. The vulnerability is due to improper path filtering in the URL of user avatar image files. The regular expression used in the code snippet fails to sufficiently restrict access, allowing unauthorized actors to...

BIT-GOLANG-2022-29804 Path traversal via Clean on Windows in path/filepath

Incorrect conversion of certain invalid paths to valid, absolute paths in Clean in path/filepath before Go 1.17.11 and Go 1.18.3 on Windows allows potential directory traversal attack...

BIT-JENKINS-2021-21688

The agent-to-controller security check FilePathreadingFileVisitor in Jenkins LTS 2.303.2 and earlier does not reject any operations, allowing users to have unrestricted read access using certain operations creating archives, FilePathcopyRecursiveTo...

BIT-JENKINS-2021-21689

FilePathunzip and FilePathuntar were not subject to any agent-to-controller access control in Jenkins LTS 2.303.2 and earlier...

BIT-JENKINS-2021-21692

FilePathrenameTo and FilePathmoveAllChildrenTo in Jenkins LTS 2.303.2 and earlier only check 'read' agent-to-controller access permission on the source path, instead of 'delete'...