18 matches found
Real Time Logic FuguHub 安全漏洞
Real Time Logic FuguHub is a consumer product from Real Time Logic developed using the Barracuda Application Server SDK. A security vulnerability exists in Real Time Logic FuguHub version 8.1 that stems from the /fs/ file manager interface not cleaning up or restricting script execution when...
EUVD-2024-42927
Malicious code in bioql PyPI...
CVE-2020-23834
Insecure Service File Permissions in the bd service in Real Time Logic BarracudaDrive v6.5 allow local attackers to escalate privileges to admin by replacing the %SYSTEMDRIVE%\bd\bd.exe file. When the computer next starts, the new bd.exe will be run as LocalSystem...
Real Time Logic SharkSSL 安全漏洞
Real Time Logic SharkSSL is an embedded SSL/TLS client and server solution from Real Time Logic. A security vulnerability exists in Real Time Logic SharkSSL. An attacker could exploit this vulnerability to trigger a denial of service via a malformed Client-Hello message...
CVE-2024-53379
Heap buffer overflow in the server site handshake implementation in Real Time Logic LLC's SharkSSL version from 05/05/24 commit 64808a5e12c83b38f85c943dee0112e428dc2a43 allows a remote attacker to trigger a Denial-of-Service via a malformed Client-Hello message...
CVE-2024-48075
A Heap buffer overflow in the server-site handshake implementation in Real Time Logic SharkSSL from 09/09/24 and earlier allows a remote attacker to trigger a Denial-of-Service via a malformed TLS Client Key Exchange message...
CVE-2024-48075
A Heap buffer overflow in the server-site handshake implementation in Real Time Logic SharkSSL from 09/09/24 and earlier allows a remote attacker to trigger a Denial-of-Service via a malformed TLS Client Key Exchange message...
CVE-2024-48075
A Heap buffer overflow in the server-site handshake implementation in Real Time Logic SharkSSL from 09/09/24 and earlier allows a remote attacker to trigger a Denial-of-Service via a malformed TLS Client Key Exchange message...
CVE-2023-24078
Real Time Logic FuguHub v8.1 and earlier was discovered to contain a remote code execution RCE vulnerability via the component /FuguHub/cmsdocs/...
CVE-2023-24078
Real Time Logic FuguHub v8.1 and earlier was discovered to contain a remote code execution RCE vulnerability via the component /FuguHub/cmsdocs/...
Real Time Logic FuguHub 代码注入漏洞
Real Time Logic FuguHub is a consumer product from Real Time Logic developed using the Barracuda Application Server SDK. A security vulnerability exists in Real Time Logic FuguHub v8.1 and prior versions that stems from an operational Remote Code Execution RCE vulnerability...
CVE-2023-24078
CVE-2023-24078 affects Real Time Logic FuguHub v8.1 and earlier, with a remote code execution (RCE) vulnerability exploitable via the /FuguHub/cmsdocs/ component. The NVD entry lists a high-severity CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). Public material in connected do...
CVE-2020-23834
Insecure Service File Permissions in the bd service in Real Time Logic BarracudaDrive v6.5 allow local attackers to escalate privileges to admin by replacing the %SYSTEMDRIVE%\bd\bd.exe file. When the computer next starts, the new bd.exe will be run as LocalSystem...
CVE-2020-23834
Insecure Service File Permissions in the bd service in Real Time Logic BarracudaDrive v6.5 allow local attackers to escalate privileges to admin by replacing the %SYSTEMDRIVE%\bd\bd.exe file. When the computer next starts, the new bd.exe will be run as LocalSystem...
Design/Logic Flaw
Insecure Service File Permissions in the bd service in Real Time Logic BarracudaDrive v6.5 allow local attackers to escalate privileges to admin by replacing the %SYSTEMDRIVE%\bd\bd.exe file. When the computer next starts, the new bd.exe will be run as LocalSystem...
CVE-2020-23834
CVE-2020-23834 affects Real Time Logic BarracudaDrive v6.5, where insecure permissions on the bd service executable (%SYSTEMDRIVE%\bd\bd.exe) allow a local attacker to replace the file and cause the next boot to run a new bd.exe as LocalSystem, enabling privilege escalation. Documented impact is ...
CVE-2020-23834
Insecure Service File Permissions in the bd service in Real Time Logic BarracudaDrive v6.5 allow local attackers to escalate privileges to admin by replacing the %SYSTEMDRIVE%\bd\bd.exe file. When the computer next starts, the new bd.exe will be run as LocalSystem...
barracudadrive 3.7.2 - Multiple Vulnerabilities
barracudadrive 3.7.2 - Multiple Vulnerabilities Luigi Auriemma Application: BarracudaDrive Web Server http://barracudaserver.com/products/BarracudaDrive/ http://barracudaserver.com/products/HomeServer/ Versions: = 3.7.2 Platforms: Windows Bugs: A directory traversal B scripts source visualization...