16 matches found
CVE-2025-3364
The SSH service of PowerStation from HGiga has a Chroot Escape vulnerability, allowing attackers with root privileges to bypass chroot restrictions and access the entire file system...
CVE-2025-3364
CVE-2025-3364 concerns HGiga PowerStation: the SSH service exposes a Chroot Escape vulnerability that, if exploited by a user with root privileges, bypasses chroot restrictions and grants access to the entire filesystem. Multiple sources (NVD, Red Hat, CVE records) describe the issue, but none pr...
CVE-2025-3364 HGiga PowerStation - Chroot Escape
The SSH service of PowerStation from HGiga has a Chroot Escape vulnerability, allowing attackers with root privileges to bypass chroot restrictions and access the entire file system...
CVE-2025-3364 HGiga PowerStation - Chroot Escape
The SSH service of PowerStation from HGiga has a Chroot Escape vulnerability, allowing attackers with root privileges to bypass chroot restrictions and access the entire file system...
HGiga PowerStation 安全漏洞
HGiga PowerStation is a network load balancing system from China Henderson HGiga. A security vulnerability exists in HGiga PowerStation, which stems from a chroot restriction bypass that could lead to privileged users accessing the entire file system...
CVE-2023-24838
HGiga PowerStation has a vulnerability of Information Leakage. An unauthenticated remote attacker can exploit this vulnerability to obtain the administrator's credential. This credential can then be used to login PowerStation or Secure Shell to achieve remote code execution...
CVE-2023-24837
HGiga PowerStation remote management function has insufficient filtering for user input. An authenticated remote attacker with general user privilege can exploit this vulnerability to inject and execute arbitrary system commands to perform arbitrary system operation or disrupt service...
Design/Logic Flaw
HGiga PowerStation has a vulnerability of Information Leakage. An unauthenticated remote attacker can exploit this vulnerability to obtain the administrator's credential. This credential can then be used to login PowerStation or Secure Shell to achieve remote code execution...
HGiga PowerStation 操作系统命令注入漏洞
Hgiga HGiga PowerStation is a network load balancing system from China's Henderson Technology Hgiga. An operating system command injection vulnerability exists in HGiga PowerStation versions prior to x64.6.2.165, which stems from insufficient filtering of user input by the remote management...
CVE-2023-24837 HGiga PowerStation - Command Injection
HGiga PowerStation remote management function has insufficient filtering for user input. An authenticated remote attacker with general user privilege can exploit this vulnerability to inject and execute arbitrary system commands to perform arbitrary system operation or disrupt service...
CVE-2023-24838 HGiga PowerStation - Information Leakage
HGiga PowerStation has a vulnerability of Information Leakage. An unauthenticated remote attacker can exploit this vulnerability to obtain the administrator's credential. This credential can then be used to login PowerStation or Secure Shell to achieve remote code execution...
CVE-2023-24838 HGiga PowerStation - Information Leakage
HGiga PowerStation has a vulnerability of Information Leakage. An unauthenticated remote attacker can exploit this vulnerability to obtain the administrator's credential. This credential can then be used to login PowerStation or Secure Shell to achieve remote code execution...
CVE-2023-24838
HGiga PowerStation (network-facing device) has an information-disclosure vulnerability. An unauthenticated remote attacker can obtain the administrator’s credentials, which could be used to log in to PowerStation or SSH and potentially achieve remote code execution. Public disclosures across mult...
CVE-2023-24837
CVE-2023-24837 describes a command-injection flaw in HGiga PowerStation’s remote management function. Insufficient input filtering lets an authenticated remote user with general privileges inject and execute arbitrary system commands, potentially taking arbitrary system actions or disrupting serv...
CVE-2023-24837 HGiga PowerStation - Command Injection
HGiga PowerStation remote management function has insufficient filtering for user input. An authenticated remote attacker with general user privilege can exploit this vulnerability to inject and execute arbitrary system commands to perform arbitrary system operation or disrupt service...
PT-2023-7466 · Unknown · Hgiga Powerstation
Name of the Vulnerable Software and Affected Versions: HGiga PowerStation affected versions not specified Description: The issue is related to insufficient filtering for user input in the remote management function of the system, allowing an authenticated remote attacker to inject and execute...