76 matches found
CVE-2023-50382
Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This comman...
CVE-2023-50383
Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This comman...
EUVD-2023-55062
Malicious code in bioql PyPI...
EUVD-2023-45768
Malicious code in bioql PyPI...
EUVD-2023-53546
Malicious code in bioql PyPI...
EUVD-2023-55060
Malicious code in bioql PyPI...
EUVD-2023-55179
Malicious code in bioql PyPI...
EUVD-2023-55059
Malicious code in bioql PyPI...
EUVD-2023-55181
Malicious code in bioql PyPI...
EUVD-2023-38511
Malicious code in bioql PyPI...
EUVD-2023-53093
Malicious code in bioql PyPI...
EUVD-2024-19392
Malicious code in bioql PyPI...
EUVD-2023-53773
Malicious code in bioql PyPI...
EUVD-2023-50031
Malicious code in bioql PyPI...
VulnCheck KEV: CVE-2023-50381
Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This comman...
CVE-2023-47856
A stack-based buffer overflow vulnerability exists in the boa setRadvdPrefixParam functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger this vulnerability...
CVE-2023-41251
A stack-based buffer overflow vulnerability exists in the boa formRoute functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2023-34435
A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network packets can lead to arbitrary firmware update. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2021-35392
Realtek Jungle SDK version v2.x up to v3.4.14B provides a 'WiFi Simple Config' server that implements both UPnP and SSDP protocols. The binary is usually named wscd or miniupnpd and is the successor to miniigd. The server is vulnerable to a heap buffer overflow that is present due to unsafe...
CVE-2021-35394
Realtek Jungle SDK version v2.x up to v3.4.14B provides a diagnostic tool called 'MP Daemon' that is usually compiled as 'UDPServer' binary. The binary is affected by multiple memory corruption vulnerabilities and an arbitrary command injection vulnerability that can be exploited by remote...