Arbitrary Code Execution

qemu is vulnerable to arbitrary code execution. A heap overflow flaw was found in the way QEMU-KVM emulated the e1000 network interface card. A privileged guest user in a virtual machine whose network interface is configured to use the e1000 emulated driver could use this flaw to crash the host o...

CVE-2019-14816

A vulnerability was found in the Linux kernel's Marvell WiFi chip driver. Where, while parsing vendor-specific informational attributes, an attacker on the same WiFi physical network segment could cause a system crash, resulting in a denial of service, or potentially execute arbitrary code. This...

CVE-2020-10866

An issue was discovered in Avast Antivirus before 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service AvastSvc.exe allows attackers to enumerate the network interfaces and access points from a Low Integrity process via RPC...

Evil SSDP - Spoof SSDP Replies And Create Fake UPnP Devices To Phish For Credentials And NetNTLM Challenge/Response

This tool responds to SSDP multicast discover requests, posing as a generic UPNP device. Your spoofed device will magically appear in Windows Explorer on machines in your local network. Users who are tempted to open the device are shown a configurable phishing page. This page can load a hidden...

The vulnerabilities of the microprogramming software used in Huawei USG6330 and USG9500 allow for the tampering with system files using specially crafted update files.

The vulnerability of the microprogrammed network interface card software in Huawei USG6330 and USG9500 lies in the lack of integrity checks. Exploiting this vulnerability can allow a malicious actor to compromise the integrity of system files using specially crafted update files...

The vulnerability of Huawei USG9500’s microprogramming software allows a intruder to compromise the confidentiality and integrity of the protected information.

The vulnerability of Huawei USG9500’s microprogramming network interface card is related to insufficient protection for registration data. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality and integrity of the protected information...

Remote Code Execution (RCE)

Apache cassandra is vulnerable to remote code execution. The vulnerability exists due to the use of a default JMX configuration of unauthenticated JMX/RMI interface to all network interfaces. Therefore, anyone with access to the interface is allowed to listen to the RMI and to trigger a remote...

Improper access control

An issue was discovered on Zyxel GS1900 devices with firmware before 2.50AAHH.0C0. Through an undocumented sequence of keypresses, undocumented functionality is triggered. A diagnostics shell is triggered via CTRL-ALT-t, which prompts for the password returned by fdssyspassDebugPasswdret. The...

Technicolor TC7300.B0 - 'hostname' Persistent Cross-Site Scripting

Exploit Title: Technicolor TC7300.B0 - 'hostname' Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-11-11 Exploit Author: Luis Stefan Vendor Homepage: https://www.technicolor.com/ Software Link: N/A Version: TC7300.B0 - STFA.51.20 Tested on: macOS Mojave and Catalina CVE : !/usr/bin/env...

Denial of Service Vulnerability in ZLAN5102 and ZLAN5103 NICs

ZLAN5102 serial server is a protocol converter between RS232/485 and TCP/IP developed by Shanghai Zoran Information Technology Co. This serial server can easily connect serial devices to Ethernet and Internet, and realize the network upgrade of serial devices.ZLAN5103 is a new generation of...

Security Advisory 2019-11-05-1 - LuCI stored XSS

DESCRIPTION A vulnerability has been reported in LuCI which allows injection of script code through maliciously crafted wireless network SSIDs. When joining a wireless network by clicking Network → Wireless → Join, the subsequent configuration view interprets the SSID of the network to join witho...

CVE-2019-13164

qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name obtained from bridge.conf or a --br=bridge option is limited to the IFNAMSIZ size, which can lead to an ACL bypass. Mitigation This flaw can only be exploited if /etc/qemu/bridge.conf contains a line containi...

CVE-2019-17219

An issue was discovered on V-Zug Combi-Steam MSLQ devices before Ethernet R07 and before WLAN R05. By default, the device does not enforce any authentication. An adjacent attacker is able to use the network interface without proper access control...

Improper access control

An issue was discovered on V-Zug Combi-Steam MSLQ devices before Ethernet R07 and before WLAN R05. By default, the device does not enforce any authentication. An adjacent attacker is able to use the network interface without proper access control...

CVE-2019-17219

CVE-2019-17219 concerns V‑Zug Combi‑Steam MSLQ devices. The issue arises from an authentication deficiency on the device before Ethernet R07 and WLAN R05, allowing an adjacent attacker to use the network interface without proper access control. Affected firmware versions lack sufficient authentic...

CVE-2019-17219

An issue was discovered on V-Zug Combi-Steam MSLQ devices before Ethernet R07 and before WLAN R05. By default, the device does not enforce any authentication. An adjacent attacker is able to use the network interface without proper access control...

Update Rollup 8 for System Center 2016 Virtual Machine Manager

Update Rollup 8 for System Center 2016 Virtual Machine Manager Introduction This article describes the issues that are fixed in Update Rollup 8 for Microsoft System Center 2016 Virtual Machine Manager. Two updates are available for Virtual Machine Manager, one for the Virtual Machine Manager serv...

Debian: Security Advisory (DLA-1927-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the NULL character detection function in Cisco Firepower Threat Defense’s network interface controllers, as well as in Cisco FirePOWER Services Software for ASA and Cisco Firepower Management Center’s network management software, allows attackers to bypass the configured content filters and compromise the integrity of the protected information.

The vulnerability of the NULL character detection function in Cisco Firepower Threat Defense’s microprogramming network interface cards, as well as in Cisco FirePOWER Services Software for ASA and Cisco Firepower Management Center’s network management software, stems from errors in command text...

June 20, 2019—KB4503277 (Preview of Monthly Rollup)

June 20, 2019—KB4503277 Preview of Monthly Rollup Starting with KB4493472 Monthly Rollup updates will no longer include PciClearStaleCache.exe. This installation utility addressees inconsistencies in the internal PCI cache. This can cause the symptoms listed below when installing monthly updates...