174 matches found
ArticaTech Artica Proxy Operating System Command Injection Vulnerability
ArticaTech Artica Proxy is an open source Artica proxy solution from the French company ArticaTech. An operating system command injection vulnerability exists in versions prior to ArticaTech Artica Proxy 4.30.000000 Community Edition. The vulnerability arises from a network system or product not...
Limdu Operating System Command Injection Vulnerability
Limdu is a machine learning framework for Node.js by Erel Segal-Halevi Software Developers. An operating system command injection vulnerability exists in the 'trainBatch' function in versions of Limdu prior to 0.95. The vulnerability stems from a network system or product not properly filtering...
CVE-2020-3309 Cisco Firepower Device Manager On-Box Software Arbitrary File Overwrite Vulnerability
A vulnerability in Cisco Firepower Device Manager FDM On-Box software could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation. An attacker could exploit this...
Operating System Command Injection Vulnerability in Multiple NETGEAR Products
NETGEAR R6700 and others are products of NETGEAR, Inc.NETGEAR R6700 is a wireless router.NETGEAR D7800 is a wireless modem.NETGEAR R6900 is a wireless router.NETGEAR D7800 is a wireless modem.NETGEAR D7800 is a wireless modem.NETGEAR D7800 is a wireless modem.NETGEAR R6900 is a wireless router...
Command Injection Vulnerability in Multiple NETGEAR Products (CNVD-2021-50928)
NETGEAR EX7000 and others are products of NETGEAR Corporation.NETGEAR EX7000 is a wireless network signal extender.NETGEAR R8500 is a wireless router.NETGEAR D6400 is a wireless modem.NETGEAR R8500 is a wireless router.NETGEAR R8500 is a wireless router.NETGEAR R8500 is a wireless router.NETGEAR...
Jinfornet Jreport 15.6 - Unauthenticated Directory Traversal Exploit
Exploit for java platform in category web applications Exploit Title: Jinfornet Jreport 15.6 - Unauthenticated Directory Traversal Exploit Author: hongphukt Vendor Homepage: https://www.jinfonet.com/ Software Link: https://www.jinfonet.com/product/download-jreport/ Version: JReport 15.6 Tested on...
The vulnerability of the Win32k component of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Win32k component of the Windows operating system is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges...
Pi-Hole Operating System Command Injection Vulnerability
Pi-Hole is a web-grade ad-blocking application. An operating system command injection vulnerability exists in Pi-Hole version 4.3. The vulnerability arises when a network system or product fails to properly filter special characters, commands, etc. during the construction of executable operating...
CVE-2019-17526
An issue was discovered in SageMath Sage Cell Server through 2019-10-05. Python Code Injection can occur in the context of an internet facing web application. Malicious actors can execute arbitrary commands on the underlying operating system, as demonstrated by an import'os'.popen'whoami'.read...
The vulnerability of the PAN-OS operating system, related to the lack of protection for mission-critical data, allows attackers to enhance their privileges.
The vulnerability of the PAN-OS operating system is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to increase their privileges...
CVE-2017-12127
A password storage vulnerability exists in the operating system functionality of Moxa EDR-810 V4.1 build 17030317. An attacker with shell access could extract passwords in clear text from the device...
Solaris 10 (x86) : 150833-08
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: UNIX filesystem. Supported versions that are affected are 10 and 11.2. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized...
CVE-2018-0748
The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way memory...
The vulnerability of the Windows operating system’s kernel driver mode allows attackers to escalate their privileges.
The vulnerability of the Windows operating system’s kernel mode driver is related to improper data handling. Exploiting this vulnerability can allow an attacker, operating locally, to increase their privileges...
The vulnerability of the Android operating system, which allows a hacker to compromise the security of information
The vulnerability of the Android operating system is related to deficiencies in controlling access to the modem’s memory. Exploiting this vulnerability can allow a malicious actor to compromise information security remotely...
Palo Alto Networks PAN-OS Information Disclosure Vulnerability (CNVD-2017-06852)
PAN-OS is a security-specific operating system designed to control Palo Alto Networks' firewalls with a rich set of firewall, management, and network features. An information disclosure vulnerability exists in the management web interface in Palo Alto Networks PAN-OS, which can be exploited by a...
CVE-2017-0508
An elevation of privilege vulnerability in the kernel ION subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing th...
The vulnerability of the Android operating system, which allows a intruder to gain unauthorized access to the supervisor’s memory
The vulnerability of the Android operating system’s supervisor exists due to insufficient checking of input data. Exploiting this vulnerability can allow an intruder, operating locally, to gain unauthorized access to the supervisor’s memory using HLOS...
The vulnerability of the Android operating system, which allows a hacker to increase their privileges
The vulnerability of the Wi-Fi component of the Android operating system is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor, operating remotely, to enhance their privileges through a specially created application...
Vulnerability of the PHP interpreter and the Mac OS X operating system, allowing attackers to execute arbitrary code
The vulnerability of the phpsnmperror function ext/snmp/snmp.c in the PHP interpreter and the Mac OS X operating system exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...