80 matches found
USN-6850-1: OpenVPN vulnerability
It was discovered that OpenVPN incorrectly handled certain configurations with multiple authentication plugins. A remote attacker could possibly use this issue to bypass authentication using incomplete credentials...
MAL-2024-1852 Malicious code in by-network (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2024-31601
An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php component...
CVE-2024-31601
An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php component...
CVE-2024-31601
An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php component...
The vulnerability of the PPP over Ethernet (PPPoE) network gateway function in Cisco IOS XR operating systems allows a hacker to induce a service failure.
The vulnerability of the PPP over Ethernet PPPoE network gateway function in Cisco IOS XR operating systems is related to insufficient input data validation. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by sending specific PPPoE packets...
The vulnerability of WLAN micro-programming software from MediaTek allows attackers to enhance their privileges.
The vulnerability of the WLAN microprogramming software solution from MediaTek arises from the execution of operations beyond the buffer boundaries in memory, due to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
CVE-2023-39376
SiberianCMS - CWE-284 Improper Access Control Authorized user may disable a security feature over the network...
Cisco IOS XE SD-WAN Software 安全漏洞
Cisco IOS XE SD-WAN Software is a Cisco software for network management software-defined networking for the Cisco IOS XE network operating system. A security vulnerability exists in Cisco IOS XE SD-WAN Software that originates from insufficient validation of inputs to the system CLI...
CVE-2022-47012
Use of uninitialized variable in function genethrecv in GNS3 dynamips 0.2.21...
GHSA-GXGJ-XJCW-FV9P socks Infinite Loop vulnerability
The RemoteAddr and LocalAddr methods on the returned net.Conn may call themselves, leading to an infinite loop which will crash the program due to a stack overflow...
The vulnerabilities of the functions parse_hello_subtlv(), parse_ihu_subtlv(), and parse_update_subtl() in the software for implementing network routing on Unix-like systems allow a hacker to execute arbitrary code.
The vulnerability of the functions parsehellosubtlv, parseihusubtlv, and parseupdatesubtl babeld/message.c of the software tool for implementing networking routing on Unix-like systems is related to the escape of operations outside of the buffer in memory. Exploiting this vulnerability could allo...
GSD-2022-1002684 net: annotate races around sk->sk_bound_dev_if
net: annotate races around sk-skbounddevif This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit...
CVE-2022-28944
Certain EMCO Software products are affected by: CWE-494: Download of Code Without Integrity Check. This affects MSI Package Builder for Windows 9.1.4 and Remote Installer for Windows 6.0.13 and Ping Monitor for Windows 8.0.18 and Remote Shutdown for Windows 7.2.2 and WakeOnLan 2.0.8 and Network...
Remote code execution
Certain EMCO Software products are affected by: CWE-494: Download of Code Without Integrity Check. This affects MSI Package Builder for Windows 9.1.4 and Remote Installer for Windows 6.0.13 and Ping Monitor for Windows 8.0.18 and Remote Shutdown for Windows 7.2.2 and WakeOnLan 2.0.8 and Network...
多款EMCO Software产品安全漏洞
EMCO Software EMCO MSI Package Builder for Windows is a product of EMCO Software Iceland. EMCO Software EMCO MSI Package Builder for Windows is a software tool for creating Windows Installer packages. EMCO Software EMCO MSI Package Builder for Windows is a software tool for creating Windows...
PT-2022-2315 · Cisco · Cisco Ios Xe
Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: A vulnerability in the IPSec decryption routine could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS...
PT-2022-4325 · Cisco · Cisco Ios Xe
Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to perform an injection attack against an affected device. This...
VulnCheck KEV: CVE-2017-6740
The Simple Network Management Protocol SNMP subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload...
The vulnerability of the command-line interface (CLI) of Cisco IOS XE SD-WAN software allows a attacker to re-record any files.
The vulnerability of the Cisco IOS XE SD-WAN software’s command-line interface is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability could allow a attacker to re-write any files at will...