744 matches found
Trend Micro Endpoint Encryption PolicyServer SQL注入漏洞
Trend Micro Endpoint Encryption PolicyServer is a centralized management server from Trend Micro. A security vulnerability exists in Trend Micro Endpoint Encryption PolicyServer that stems from a post-authentication SQL injection issue that could result in elevated privileges...
Trend Micro Endpoint Encryption PolicyServer 安全漏洞
Trend Micro Endpoint Encryption PolicyServer is a centralized management server from Trend Micro. A security vulnerability exists in Trend Micro Endpoint Encryption PolicyServer that stems from a post-authentication SQL injection issue that could result in elevated privileges...
📄 Palo Alto PAN-OS CLI Crash
This Metasploit module triggers a denial-of-service condition in the CLI of Palo Alto PAN-OS by sending an overly long input after authentication. This module requires Metasploit Framework and compatible Ruby. require 'msf/core' require 'net/ssh' class MetasploitModule 'Palo Alto PAN-OS CLI Crash...
Roundcube Post-Auth RCE via PHP Object Deserialization
Roundcube Webmail before 1.5.10 and 1.6.x before 1.6.11 allows remote code execution by authenticated users because the from parameter in a URL is not validated in program/actions/settings/upload.php, leading to PHP Object Deserialization. An attacker can execute arbitrary system commands as the...
CVE-2025-35009
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MNNETSP command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command...
CVE-2025-35007
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFRULE command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argume...
CVE-2025-35008
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MMNAME command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argume...
CVE-2025-35010
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MNPINGTM command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command...
CVE-2025-35005
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFMAC command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argumen...
CVE-2025-35004
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFIP command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument...
CVE-2025-35010
The CVE-2025-35010 entry concerns Microhard BulletLTE-NA2 and IPn4Gii-NA2 gateway devices. A post-authentication command injection flaw in the AT+MNPINGTM command, caused by improper neutralization of argument delimiters (CWE-88), can lead to privilege escalation. Documents confirm affected compo...
Microhard Bullet-LTE和Microhard IPn4Gii-NA2 安全漏洞
The Microhard Bullet-LTE and Microhard IPn4Gii-NA2 are both products of Microhard Canada.The Microhard Bullet-LTE is an industrial serial gateway. It utilizes a 4G / HSPA + / LTE network infrastructure to provide a compact, rugged, and powerful industrial-strength wireless solution Microhard...
Microhard BulletLTE‑NA2和Microhard IPn4Gii-NA2 参数注入漏洞
The Microhard BulletLTE-NA2 and Microhard IPn4Gii-NA2 are both gateway devices from Microhard Canada. A parameter injection vulnerability exists in the Microhard BulletLTE-NA2 and Microhard IPn4Gii-NA2, which stems from the presence of post-authentication command injection on the AT+MNNETSP...
Microhard BulletLTE‑NA2和Microhard IPn4Gii-NA2 安全漏洞
The Microhard BulletLTE-NA2 and Microhard IPn4Gii-NA2 are both gateway devices from Microhard Canada. A security vulnerability exists in the Microhard BulletLTE-NA2 and Microhard IPn4Gii-NA2 that stems from a post-authentication command injection of the AT+MMNAME command, which could lead to...
Microhard BulletLTE‑NA2和Microhard IPn4Gii-NA2 安全漏洞
The Microhard BulletLTE-NA2 and Microhard IPn4Gii-NA2 are both gateway devices from Microhard Canada. A security vulnerability exists in the Microhard BulletLTE-NA2 and Microhard IPn4Gii-NA2 that stems from a post-authentication command injection of the AT+MFMAC command, which could lead to...
Microhard BulletLTE‑NA2和Microhard IPn4Gii-NA2 安全漏洞
The Microhard BulletLTE-NA2 and Microhard IPn4Gii-NA2 are both gateway devices from Microhard Canada. A security vulnerability exists in the Microhard BulletLTE-NA2 and Microhard IPn4Gii-NA2, which stems from the presence of post-authentication command injection for the AT+MFIP command, which cou...
📄 WatchGuard 12.11 Memory Corruption
WatchGuard version 12.11 memory corruption proof of concept exploit. ─$ cat watchguard12.11postauthclibof.py !/usr/bin/env python3 watchguard12.11postauthclibof.py this is a poc for post authorized stack overflow found in 'cli' binary. Tue Feb 4 06:12:20 EST 2025 by code610 More: networkdevice=...
📄 Palo Alto 11.1.4-h7 Memory Corruption
Palo Alto version 11.1.4-h7 post authentication memory corruption proof of concept exploit. !/usr/bin/env python3 post auth cli memory corruption poc for paloalto 11.1.4-h7 19.01.2025 @ 00:23 postauth user in general 'admin' but we'll get back to that later ; can use cli to provide one of the...
CVE-2024-45884
DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to setSWMGroup...
CVE-2024-45889
DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to commandTable...