8849 matches found
CVE-2025-37102
An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points. A successful exploitation could allow a remote attacker with elevated privileges to execute arbitrary commands on the underlying operating system as a highly privilege...
PT-2025-28991 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the networking subsystem. Specifically, a NULL dereference can occur in the rtnl create link function when dev-netdev ops is NULL, potentially...
CLSA-2025-1752086959 Update of ca-certificates
update to CKBI 2.74 from NSS 3.110 - updated certificates: - Certificate "Entrust.net Premium 2048 Secure Server CA" - Certificate "Entrust Root Certification Authority" - Certificate "AffirmTrust Commercial" - Certificate "AffirmTrust Networking" - Certificate "AffirmTrust Premium" - Certificate...
Juniper Junos OS Vulnerability (JSA100053)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA100053 advisory. - An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a logical...
CVE-2025-37103
Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone with knowledge of it to bypass normal device authentication. Successful exploitation could allow a remote attacker to gain administrative access to the system...
CVE-2025-37102
An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points. A successful exploitation could allow a remote attacker with elevated privileges to execute arbitrary commands on the underlying operating system as a highly privilege...
CVE-2025-37103 Hardcoded Credential Exposure Allows Unauthorized Access in Web Interface
Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone with knowledge of it to bypass normal device authentication. Successful exploitation could allow a remote attacker to gain administrative access to the system...
CVE-2025-37103 Hardcoded Credential Exposure Allows Unauthorized Access in Web Interface
Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone with knowledge of it to bypass normal device authentication. Successful exploitation could allow a remote attacker to gain administrative access to the system...
CVE-2025-37103
CVE-2025-37103 affects HPE Networking Instant On Access Points. The description across sources confirms hard-coded login credentials allow bypass of normal device authentication, enabling a remote attacker to gain administrative access. Affected products include HPE Networking Instant On Access P...
CVE-2025-37102 Authenticated Command Injection Vulnerability In Instant On Command Line Interface
An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points. A successful exploitation could allow a remote attacker with elevated privileges to execute arbitrary commands on the underlying operating system as a highly privilege...
CVE-2025-37102 Authenticated Command Injection Vulnerability In Instant On Command Line Interface
An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points. A successful exploitation could allow a remote attacker with elevated privileges to execute arbitrary commands on the underlying operating system as a highly privilege...
CVE-2025-37102
CVE-2025-37102 is an authenticated command-injection vulnerability affecting the CLI of HPE Networking Instant On Access Points. The attack could allow a remote attacker with elevated privileges to run arbitrary commands on the underlying OS as a highly privileged user (CVSS 3.1 base 7.2, NETWORK...
CVE-2025-49686
Null pointer dereference in Windows TCP/IP allows an authorized attacker to elevate privileges locally...
HPE Networking Instant On Access Points 安全漏洞
HPE Networking Instant On Access Points is a wireless network access point from HPE America. A security vulnerability exists in HPE Networking Instant On Access Points that stems from hard-coded login credentials that could lead to bypassing device authentication...
PT-2025-28659 · Hewlett Packard · Hpe Networking Instant On Access Points
Name of the Vulnerable Software and Affected Versions: HPE Networking Instant On Access Points affected versions not specified Description: An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points. Successful exploitation cou...
PT-2025-28660 · Hewlett Packard · Hpe Networking Instant On Access Points
Name of the Vulnerable Software and Affected Versions: HPE Networking Instant On Access Points versions 3.2.0 and earlier HPE Aruba Instant On Access Points versions 3.2.0.1 and earlier Aruba Instant On APs versions 3.2.0 and earlier Description: HPE Networking and Aruba Instant On Access Points...
PT-2025-73: NULL pointer dereference in Windows TCP/IP Driver
The Null pointer dereference vulnerability was discovered in Windows TCP/IP Driver. The vulnerability allows an authorized attacker to gain SYSTEM privileges. The affected products: Windows Server 2019 & Server 2019 Server Core installation Versions to 10.0.17763.7558 Windows 10 Version 1809 for...
USN-7591-5 linux-intel-iotg vulnerabilities
Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...
OESA-2025-1726 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: kcm: close race conditions on skreceivequeue sk-skreceivequeue is protected by skb queue lock, but for KCM sockets its RX path takes mux-rxlock to protect more...
USN-7585-6: Linux kernel (BlueField) vulnerabilities
It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...