Lucene search
K

80 matches found

Ubuntu
Ubuntu
added 2024/06/26 1:6 a.m.31 views

USN-6850-1: OpenVPN vulnerability

It was discovered that OpenVPN incorrectly handled certain configurations with multiple authentication plugins. A remote attacker could possibly use this issue to bypass authentication using incomplete credentials...

9.8CVSS7.4AI score0.03519EPSS
Exploits0
OSV
OSV
added 2024/06/25 12:30 p.m.5 views

MAL-2024-1852 Malicious code in by-network (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
NVD
NVD
added 2024/04/26 9:15 p.m.14 views

CVE-2024-31601

An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php component...

9.8CVSS7.5AI score0.0035EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/26 12:0 a.m.18 views

CVE-2024-31601

An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php component...

7.9AI score0.0035EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/26 12:0 a.m.18 views

CVE-2024-31601

An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php component...

7.8AI score0.0035EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/03/25 12:0 a.m.7 views

The vulnerability of the PPP over Ethernet (PPPoE) network gateway function in Cisco IOS XR operating systems allows a hacker to induce a service failure.

The vulnerability of the PPP over Ethernet PPPoE network gateway function in Cisco IOS XR operating systems is related to insufficient input data validation. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by sending specific PPPoE packets...

7.4CVSS7.2AI score0.00336EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/10/02 12:0 a.m.8 views

The vulnerability of WLAN micro-programming software from MediaTek allows attackers to enhance their privileges.

The vulnerability of the WLAN microprogramming software solution from MediaTek arises from the execution of operations beyond the buffer boundaries in memory, due to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.8CVSS7AI score0.00089EPSS
Exploits0References3
OSV
OSV
added 2023/09/27 3:18 p.m.10 views

CVE-2023-39376

SiberianCMS - CWE-284 Improper Access Control Authorized user may disable a security feature over the network...

6.5CVSS7.2AI score
Exploits0References1
CNNVD
CNNVD
added 2023/03/23 12:0 a.m.4 views

Cisco IOS XE SD-WAN Software 安全漏洞

Cisco IOS XE SD-WAN Software is a Cisco software for network management software-defined networking for the Cisco IOS XE network operating system. A security vulnerability exists in Cisco IOS XE SD-WAN Software that originates from insufficient validation of inputs to the system CLI...

7.8CVSS7.4AI score0.00222EPSS
Exploits0References2
NVD
NVD
added 2023/01/20 7:15 p.m.17 views

CVE-2022-47012

Use of uninitialized variable in function genethrecv in GNS3 dynamips 0.2.21...

7.5CVSS7.6AI score0.00858EPSS
Exploits1References1
OSV
OSV
added 2022/12/28 12:30 a.m.13 views

GHSA-GXGJ-XJCW-FV9P socks Infinite Loop vulnerability

The RemoteAddr and LocalAddr methods on the returned net.Conn may call themselves, leading to an infinite loop which will crash the program due to a stack overflow...

7.5CVSS7.4AI score0.00782EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/08/24 12:0 a.m.9 views

The vulnerabilities of the functions parse_hello_subtlv(), parse_ihu_subtlv(), and parse_update_subtl() in the software for implementing network routing on Unix-like systems allow a hacker to execute arbitrary code.

The vulnerability of the functions parsehellosubtlv, parseihusubtlv, and parseupdatesubtl babeld/message.c of the software tool for implementing networking routing on Unix-like systems is related to the escape of operations outside of the buffer in memory. Exploiting this vulnerability could allo...

10CVSS7.9AI score0.01014EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/06/28 6:9 p.m.7 views

GSD-2022-1002684 net: annotate races around sk->sk_bound_dev_if

net: annotate races around sk-skbounddevif This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit...

7.2AI score
Exploits0
NVD
NVD
added 2022/05/23 6:16 p.m.36 views

CVE-2022-28944

Certain EMCO Software products are affected by: CWE-494: Download of Code Without Integrity Check. This affects MSI Package Builder for Windows 9.1.4 and Remote Installer for Windows 6.0.13 and Ping Monitor for Windows 8.0.18 and Remote Shutdown for Windows 7.2.2 and WakeOnLan 2.0.8 and Network...

8.8CVSS0.01689EPSS
Exploits2References3
Prion
Prion
added 2022/05/23 6:16 p.m.18 views

Remote code execution

Certain EMCO Software products are affected by: CWE-494: Download of Code Without Integrity Check. This affects MSI Package Builder for Windows 9.1.4 and Remote Installer for Windows 6.0.13 and Ping Monitor for Windows 8.0.18 and Remote Shutdown for Windows 7.2.2 and WakeOnLan 2.0.8 and Network...

6.8CVSS9.2AI score0.01689EPSS
Exploits2References3Affected Software8
CNNVD
CNNVD
added 2022/05/23 12:0 a.m.3 views

多款EMCO Software产品安全漏洞

EMCO Software EMCO MSI Package Builder for Windows is a product of EMCO Software Iceland. EMCO Software EMCO MSI Package Builder for Windows is a software tool for creating Windows Installer packages. EMCO Software EMCO MSI Package Builder for Windows is a software tool for creating Windows...

8.8CVSS8.5AI score0.01689EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2022/04/13 12:0 a.m.3 views

PT-2022-2315 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: A vulnerability in the IPSec decryption routine could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS...

7.7CVSS7.5AI score0.01259EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2022/04/13 12:0 a.m.4 views

PT-2022-4325 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to perform an injection attack against an affected device. This...

9CVSS7AI score0.01542EPSS
Exploits0References5
VulnCheck KEV
VulnCheck KEV
added 2022/03/03 12:0 a.m.6 views

VulnCheck KEV: CVE-2017-6740

The Simple Network Management Protocol SNMP subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload...

9CVSS7.4AI score0.10788EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/11/10 12:0 a.m.4 views

The vulnerability of the command-line interface (CLI) of Cisco IOS XE SD-WAN software allows a attacker to re-record any files.

The vulnerability of the Cisco IOS XE SD-WAN software’s command-line interface is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability could allow a attacker to re-write any files at will...

5.5CVSS7AI score0.00242EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder