71 matches found
EUVD-2021-9074
Malicious code in bioql PyPI...
EUVD-2021-9073
Malicious code in bioql PyPI...
EUVD-2021-9076
Malicious code in bioql PyPI...
EUVD-2021-9072
Malicious code in bioql PyPI...
EUVD-2021-9075
Malicious code in bioql PyPI...
EUVD-2021-9078
Malicious code in bioql PyPI...
EUVD-2021-9077
Malicious code in bioql PyPI...
CVE-2021-21905
Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations. The Garrett iC Module exposes an authenticated CLI over TCP port 6877. This interface is used by a secondary GUI client, called “CMA...
CVE-2021-21902
An authentication bypass vulnerability exists in the CMA runserver6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0. A properly-timed network connection can lead to authentication bypass via session hijacking. An attacker can send a sequence of requests to trigger this...
CVE-2021-21901
A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to memcpy. An attacker can send a malicious packet to trigger this...
CVE-2021-21907
A directory traversal vulnerability exists in the CMA CLI getenv command functionality of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted command line argument can lead to local file inclusion. An attacker can provide malicious input to trigger this vulnerability...
CVE-2021-21903
A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to strcpy. An attacker can send a malicious packet to trigger this...
CVE-2021-21904
A directory traversal vulnerability exists in the CMA CLI setenv command of Garrett Metal Detectors’ iC Module CMA Version 5.0. An attacker can provide malicious input to trigger this vulnerability...
Garrett Metal Detectors Path Traversal Vulnerability (CNVD-2022-01315)
Garrett Metal Detectors is a walk-in metal detector from Garrett U.S.A. Garrett Metal Detectors is vulnerable to a path traversal vulnerability that can be exploited by attackers to cause local file inclusion with specially crafted command line arguments...
Garrett Metal Detectors Path Traversal Vulnerability (CNVD-2022-01318)
Garrett Metal Detectors is a walk-in metal detector from Garrett, U.S.A. Garrett Metal Detectors is vulnerable to a path traversal vulnerability that could be exploited to delete arbitrary files...
Garrett Metal Detectors Path Traversal Vulnerability (CNVD-2022-01317)
Garrett Metal Detectors is a walk-in metal detector from Garrett U.S. Garrett Metal Detectors has a path traversal vulnerability that can be exploited by attackers to delete arbitrary files in the del.CNT|.log file deletion command with specially crafted command line parameters...
Garrett Metal Detectors Buffer Overflow Vulnerability (CNVD-2022-01313)
Garrett Metal Detectors is a walk-in metal detector from Garrett, U.S.A. Garrett Metal Detectors is vulnerable to a buffer overflow vulnerability that can be exploited by attackers to cause a stack buffer overflow...
Garrett Metal Detectors Buffer Overflow Vulnerability (CNVD-2022-01316)
Garrett Metal Detectors is a walk-in metal detector from Garrett, U.S.A. Garrett Metal Detectors is vulnerable to a buffer overflow vulnerability that can be exploited by attackers to cause a stack buffer overflow...
Garrett Metal Detectors Buffer Overflow Vulnerability (CNVD-2022-01312)
Garrett Metal Detectors is a walk-in metal detector from Garrett, U.S.A. Garrett Metal Detectors is vulnerable to a buffer overflow vulnerability that can be exploited by attackers to cause a stack buffer overflow...
Garrett Metal Detectors Authentication Bypass Vulnerability
Garrett Metal Detectors is a walk-in metal detector from Garrett U.S.A. Garrett Metal Detectors is vulnerable to an authentication bypass vulnerability that could be exploited by attackers to bypass authentication with the help of session hijacking...