CVE-2022-24046

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos One Speaker prior to 3.4.1 S2 systems and 11.2.13 build 57923290 S1 systems. Authentication is not required to exploit this vulnerability. The specific flaw exists within the anacapd...

Sonos One Speaker 数字错误漏洞

Sonos One Speaker is a smart speaker from Sonos USA. The Sonos One Speaker suffers from a numeric error vulnerability that stems from a lack of proper validation of user-supplied data, which could result in an integer underflow before writing to memory. An attacker can exploit this vulnerability ...

Tp-link TP-Link TL-WR940N 安全漏洞

Tp-link TP-Link TL-WR940N is a wireless router from China P&L Tp-link. The TP-Link TL-WR940N suffers from a buffer overflow vulnerability that stems from a lack of proper validation of the length of user-supplied data before copying it into a fixed-length stack-based buffer. An attacker could...

Sonos One Speaker 缓冲区错误漏洞

Sonos One Speaker is a smart speaker by Sonos, Inc. Sonos One Speaker suffers from a buffer error vulnerability that stems from a lack of proper validation of the length of user-supplied data before copying it into a stack-based buffer. An attacker could use this vulnerability to execute code in...

TP-LINK AC1750 缓冲区错误漏洞

The TP-LINK AC1750 is a wireless router from China P&L TP-LINK. A buffer error vulnerability exists in the TP-Link AC1750 version 1.1.4 Build 20211022 rel.59103, which stems from a lack of proper validation of user-supplied data, which could result in reading beyond the end of an allocated buffer...

USN-5260-3 samba vulnerability

USN-5260-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Orange Tsai discovered that the Samba vfsfruit module incorrectly handled certain memory operations. A remote attacker could use this issu...

USN-5260-1 samba vulnerabilities

Orange Tsai discovered that the Samba vfsfruit module incorrectly handled certain memory operations. A remote attacker could use this issue to cause Samba to crash, resulting in a denial of service, or possibly execute arbitrary code as root. CVE-2021-44142 Michael Hanselmann discovered that Samb...

Samba 缓冲区错误漏洞

Samba is the standard Windows interoperability program suite for Linux and Unix. A security vulnerability exists in Samba that stems from a lack of proper validation of the length of user-supplied data before copying it into a fixed-length heap-based buffer. An attacker could exploit this...

CVE-2021-34865

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of multiple NETGEAR routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the minihttpd service, which listens on TCP port 80 by default. The...

Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux

Overview Deep Security and Cloud One - Workload Security Agent for Linux provided by Trend Micro Incorporated contain multiple vulnerabilities listed below. Directory Traversal CWE-22 - CVE-2022-23119 Code Injection CWE-94 - CVE-2022-23120 As of 2022 January 24, a Proof-of-Concept PoC code...

CVE-2022-23220

USBView 2.1 before 2.2 allows some local users e.g., ones logged in via SSH to execute arbitrary code as root because certain Polkit settings e.g., allowany=yes for pkexec disable the authentication requirement. Code execution can, for example, use the --gtk-module option. This affects Ubuntu,...

CVE-2021-35004

This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link TL-WA1201 1.0.1 Build 20200709 rel.662445553 wireless access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of DNS response...

UBUNTU-CVE-2022-23220

USBView 2.1 before 2.2 allows some local users e.g., ones logged in via SSH to execute arbitrary code as root because certain Polkit settings e.g., allowany=yes for pkexec disable the authentication requirement. Code execution can, for example, use the --gtk-module option. This affects Ubuntu,...

CVE-2022-23227

NUUO NVRmini2 through 3.11 allows an unauthenticated attacker to upload an encrypted TAR archive, which can be abused to add arbitrary users because of the lack of handleimportuser.php authentication. When combined with another flaw CVE-2011-5325, it is possible to overwrite arbitrary files under...

CVE-2021-34978

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6260 1.1.0.781.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the setupwizard.cgi page. A crafted SOAP request can trigg...

PT-2021-6475 · NetGear · Netgear R6400V2 +6

Name of the Vulnerable Software and Affected Versions: NETGEAR R6700v3 version 1.0.4.120 10.0.91 NETGEAR R6400v2 affected versions not specified NETGEAR R6900P affected versions not specified NETGEAR R7000 affected versions not specified NETGEAR R7000P affected versions not specified NETGEAR RS40...

CVE-2021-3060

An OS command injection vulnerability in the Simple Certificate Enrollment Protocol SCEP feature of PAN-OS software allows an unauthenticated network-based attacker with specific knowledge of the firewall configuration to execute arbitrary code with root user privileges. The attacker must have...

PT-2021-6114 · Tp Link · Tp-Link Ac1750

Name of the Vulnerable Software and Affected Versions: TP-Link AC1750 version 1.1.4 Build 20211022 rel.591035553 Description: The issue is related to a read past the end of an allocated buffer in the NetUSB.ko module, which can be exploited by network-adjacent attackers to execute arbitrary code ...

NETGEAR R6260 安全漏洞

NETGEAR R6260 is a router device. A security vulnerability exists in NETGEAR R6260 routers, which stems from the device's failure to properly validate the length of user-supplied data before copying it to a fixed-length buffer, which could be exploited by an attacker to execute code in the root...

CVE-2021-34862

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 1.01rc001 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the var:menu parameter provided to the webpr...