Lucene search
+L

127 matches found

CNNVD
CNNVD
added 2022/05/23 12:0 a.m.5 views

多款EMCO Software产品安全漏洞

EMCO Software EMCO MSI Package Builder for Windows is a product of EMCO Software Iceland. EMCO Software EMCO MSI Package Builder for Windows is a software tool for creating Windows Installer packages. EMCO Software EMCO MSI Package Builder for Windows is a software tool for creating Windows...

8.8CVSS8.5AI score0.01503EPSS
Exploits2References4
BDU FSTEC
BDU FSTEC
added 2022/04/08 12:0 a.m.9 views

The vulnerability of Microsoft Teams’ corporate platform for Android, which stems from insufficient validation of input data, allows a hacker to trigger an emergency shutdown of the application.

The vulnerability of Microsoft Teams’ corporate platform for Android exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to cause the application to crash remotely...

6.8CVSS5.4AI score
Exploits0References1
OSV
OSV
added 2022/03/16 3:15 p.m.6 views

CVE-2022-25250

When connecting to a certain port Axeda agent All versions and Axeda Desktop Server for Windows All versions may allow an attacker to send a certain command to a specific port without authentication. Successful exploitation of this vulnerability could allow a remote unauthenticated attacker to sh...

7.5CVSS7.4AI score0.01629EPSS
Exploits0References2
CNVD
CNVD
added 2021/12/09 12:0 a.m.24 views

Canon LBP223 Licensing Issue Vulnerability

Canon LBP223 is a printer from Canon Japan. The Canon LBP223 printer has an authorization issue vulnerability, which stems from the fact that the LBP223 printer system management mode login does not require an account password or PIN. attackers can use this vulnerability to enter the background a...

7.8CVSS5AI score0.01439EPSS
Exploits1References1
Prion
Prion
added 2021/12/06 1:15 p.m.15 views

Denial of service

In Canon LBP223 printers, the System Manager Mode login does not require an account password or PIN. An attacker can remotely shut down the device after entering the background, creating a denial of service vulnerability...

7.8CVSS7.6AI score0.01439EPSS
Exploits1References1
CVE
CVE
added 2021/12/06 12:13 p.m.50 views

CVE-2021-43471

Affected product: Canon LBP223 printers. Vulnerability: System Manager Mode login accepts no password or PIN, enabling an attacker to gain access and remotely shut down the device, causing a denial-of-service. Root cause: Lack of authentication for System Manager Mode login. Impact: Network-acces...

7.8CVSS7.5AI score0.01439EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/12/06 12:0 a.m.14 views

Canon LBP223 安全漏洞

Canon LBP223 is a printer from Canon Japan. The Canon LBP223 printer has an authorization issue vulnerability, which stems from the fact that the LBP223 printer system management mode login does not require an account password or PIN. attackers can use this vulnerability to enter the background a...

7.8CVSS5.6AI score0.01439EPSS
Exploits1References1
AlpineLinux
AlpineLinux
added 2021/07/23 9:50 p.m.7 views

CVE-2021-32783

Contour is a Kubernetes ingress controller using Envoy proxy. In Contour before version 1.17.1 a specially crafted ExternalName type Service may be used to access Envoy's admin interface, which Contour normally prevents from access outside the Envoy container. This can be used to shut down Envoy...

8.5CVSS8.3AI score0.01151EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2021/07/23 12:0 a.m.5 views

PT-2021-19929 · Contour +1 · Contour +1

Name of the Vulnerable Software and Affected Versions: Contour versions prior to 1.17.1 Contour versions prior to 1.18.0 Description: A specially crafted ExternalName type Service may be used to access Envoy's admin interface, which Contour normally prevents from access outside the Envoy containe...

8.5CVSS7.1AI score0.01151EPSS
Exploits0References14
ICS
ICS
added 2021/01/19 12:0 a.m.52 views

Philips Interventional Workstations

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Low skill level to exploit Vendor: Philips Equipment: Philips Interventional WorkSpot, Coronary Tools/Dynamic Coronary Roadmap/Stentboost Live, ViewForum Vulnerability: OS Command Injection 2. RISK EVALUATION Successful exploitation of this...

6.5CVSS6.8AI score0.00887EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2020/12/22 12:0 a.m.6 views

The vulnerability of the Junos operating system arises from an operation that goes beyond the buffer boundaries in memory, allowing a attacker to trigger an emergency shutdown of the kernel’s memory dump process.

The vulnerability of the Junos operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor, operating remotely, to cause a failure in the kernel’s memory dump process due to receiving an incorrect DHCPv6 packet...

7.8CVSS7.4AI score0.01276EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/10 12:0 a.m.7 views

The vulnerability of the software in Schneider Electric Easergy T300 (HU250) web-servers, a modular control system for automating transformer substations, allows a perpetrator to shut down the web-server service.

The vulnerability of the software for the web server of the micro-programming controller for transformer automation of Schneider Electric Easergy T300 HU250 exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to remotely shut down the...

5.3CVSS5.9AI score0.01256EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2020/04/22 5:15 p.m.3 views

DEBIAN-CVE-2020-12066

CServer::SendMsg in engine/server/server.cpp in Teeworlds 0.7.x before 0.7.5 allows remote attackers to shut down the server...

7.5CVSS7.4AI score0.02957EPSS
Exploits0References1
OSV
OSV
added 2020/04/22 5:15 p.m.10 views

UBUNTU-CVE-2020-12066

CServer::SendMsg in engine/server/server.cpp in Teeworlds 0.7.x before 0.7.5 allows remote attackers to shut down the server...

7.5CVSS5.8AI score0.02957EPSS
Exploits0References5
OSV
OSV
added 2019/12/18 6:15 p.m.16 views

CVE-2019-19833

In Tautulli 2.1.9, CSRF in the /shutdown URI allows an attacker to shut down the remote media server. Also, anonymous access can be achieved in applications that do not have a user login area...

6.5CVSS6.8AI score
Exploits0References3
PyPA
PyPA
added 2019/12/18 6:15 p.m.7 views

PYSEC-2019-254

In Tautulli 2.1.9, CSRF in the /shutdown URI allows an attacker to shut down the remote media server. Also, anonymous access can be achieved in applications that do not have a user login area...

6.5CVSS7AI score0.14706EPSS
Exploits9References7Affected Software1
CVE
CVE
added 2019/12/18 5:8 p.m.66 views

CVE-2019-19833

CVE-2019-19833 affects Tautulli (2.1.9 and earlier). A CSRF flaw in the /shutdown URI allows an attacker to remotely shut down the media server; some sources also note unauthenticated/shutdown via this endpoint in apps without login. The NVD/ATT&CK notes show impact as a shutdown/DoS risk with ne...

6.5CVSS6.4AI score0.14706EPSS
Exploits9References3Affected Software1
OSV
OSV
added 2019/08/01 7:17 p.m.8 views

GHSA-JVPP-HXJJ-5CCC Improper Input Validation and Missing Authentication for Critical Function in Apache ActiveMQ

It was found that the Apache ActiveMQ client before 5.14.5 exposed a remote shutdown command in the ActiveMQConnection class. An attacker logged into a compromised broker could use this flaw to achieve denial of service on a connected client...

4.9CVSS6.3AI score0.01966EPSS
Exploits0References5
NVD
NVD
added 2019/08/01 2:15 p.m.21 views

CVE-2015-7559

It was found that the Apache ActiveMQ client before 5.14.5 exposed a remote shutdown command in the ActiveMQConnection class. An attacker logged into a compromised broker could use this flaw to achieve denial of service on a connected client...

4CVSS3.9AI score0.01966EPSS
Exploits0References2
OSV
OSV
added 2019/08/01 2:15 p.m.11 views

CVE-2015-7559

It was found that the Apache ActiveMQ client before 5.14.5 exposed a remote shutdown command in the ActiveMQConnection class. An attacker logged into a compromised broker could use this flaw to achieve denial of service on a connected client...

2.7CVSS3.5AI score0.01966EPSS
Exploits0References5
Rows per page
Query Builder