174 matches found
The vulnerability of the Hyper-V hardware virtualization system of the Microsoft Windows operating system, which allows a hacker to trigger a service failure.
The vulnerability of the Hyper-V hardware virtualization technology of the Microsoft Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
elecom lan routers operating system command injection vulnerability (CNVD-2021-95483)
elecom lan routers is a router from Elecom Japan. An operating system command injection vulnerability exists in elecom lan routers, which can be exploited by an attacker to execute arbitrary operating system commands via an unspecified vector...
elecom lan routers operating system command injection vulnerability
elecom lan routers is a router from Elecom Japan. An operating system command injection vulnerability exists in elecom lan routers, which can be exploited by an attacker to execute arbitrary operating system commands via an unspecified vector...
Zephyr Null Pointer Dereference Vulnerability (CNVD-2021-95618)
Zephyr is an open source, small, scalable real-time operating system. Zephyr null pointer dereference vulnerability, which stems from mishandling of omitted source and destination addresses. No detailed vulnerability details are provided at this time...
baserCMS OS Command Injection Vulnerability
baserCMS is an enterprise content management system CMS from the baserCMS Basercms team. baserCMS's management system is vulnerable to operating system command injection, which could be exploited by an attacker with upload file privileges to upload crafted zip files that could execute arbitrary...
Weidmueller Industrial WLAN devices operating system command injection vulnerability (CNVD-2021-48131)
Weidmueller Industrial WLAN devices is an industrial WIAN from Weidmueller, Germany. The Weidmueller Industrial WLAN devices operating system command injection vulnerability can be exploited by an attacker to take full control of the device via specially crafted network configuration information...
Google Android Information Disclosure Vulnerability (CNVD-2021-45436)
Google Android is a Linux-based open source operating system from the Google Open Handheld Consortium Google. Google Android 11 suffers from an information disclosure vulnerability. The vulnerability arises due to an out-of-bounds read due to a heap buffer overflow in ih264efmtconv.c in...
Cisco DNA Spaces Operating System Command Injection Vulnerability
Cisco DNA Spaces is a set of indoor location services platform of the United States Cisco Cisco. An operating system command injection vulnerability exists in Cisco DNA Spaces Connector versions prior to 2.0.519, which stems from improper input validation. An attacker could exploit this...
Cisco DNA Spaces OS Command Injection Vulnerability (CNVD-2021-37122)
Cisco DNA Spaces is a set of indoor location services platform of the United States Cisco Cisco. An operating system command injection vulnerability exists in Cisco DNA Spaces Connector versions prior to 2.3.1, which can be exploited by an attacker to execute arbitrary operating system commands o...
NetBSD Input Validation Error Vulnerability
NetBSD is an open source Unix-like operating system from the NetBSD Netbsd Foundation. A security vulnerability exists in NetBSD version 7.1. An attacker could exploit this vulnerability to cause a denial of service to a program...
Google Android System elevation of privilege vulnerability (CNVD-2021-43413)
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the System component of Google Android versions 8.1, 9, 10, and 11, which can be exploited by an attacker to cause...
Design/Logic Flaw
A vulnerability in one of the diagnostic test CLI commands of Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary code on an affected device. To exploit this vulnerability, the attacker would need to have valid user credentials at privilege level 15. This...
CVE-2021-1335 Cisco Small Business RV Series Routers Management Interface Remote Command Execution and Denial of Service Vulnerabilities
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an authenticated, remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly. These vulnerabilities are due t...
Google Android heap buffer overflow vulnerability (CNVD-2021-14809)
Google Android is a Linux-based open source operating system developed by Google and the Open Handheld Consortium Google. Google Android 11 suffers from a buffer overflow vulnerability that originates from memory corruption in ksd due to a heap buffer overflow. An attacker can exploit the...
The vulnerability of the QES operating system, related to access control deficiencies, allows a intruder to gain unauthorized access to protected information.
The vulnerability of the QES operating system is related to deficiencies in access control. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information...
The vulnerability of the Azure Sphere operating system, related to deficiencies in access control, allows attackers to escalate their privileges.
The vulnerability of the Azure Sphere operating system is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the FXOS operating system, which arises due to the failure to address the issue of eliminating special elements, allows a hacker to execute arbitrary commands with root privileges.
The vulnerability of the FXOS operating system exists due to the lack of measures taken to neutralize special elements used in the operating system’s commands. Exploiting this vulnerability allows an attacker to execute arbitrary commands with root privileges...
The vulnerability of the PAN-OS operating system, related to copying buffers without checking the size of the input data, allows a hacker to execute arbitrary code with root privileges.
The vulnerability of the PAN-OS operating system lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with root privileges...
Palo Alto Networks PAN-OS Input Validation Error Vulnerability (CNVD-2020-49272)
Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks for its firewall appliances. An input validation error vulnerability exists in Palo Alto Networks PAN-OS. The vulnerability arises from a network system or product that does not properly validate incoming data. An...
Palo Alto Networks PAN-OS OS Command Injection Vulnerability (CNVD-2021-22171)
PAN-OS is an operating system designed specifically for security and control of Palo Alto Networks firewalls, with extensive firewall, management and network features. An OS command injection vulnerability exists in the Palo Alto Networks PAN-OS management interface. An attacker could exploit thi...