COMFAST CF-WR630AX 安全漏洞

COMFAST CF-WR630AX is a wireless router from China Four Seas Zonglian COMFAST. A security vulnerability exists in COMFAST CF-WR630AX version v2.7.0.2, which stems from the use of hard-coded passwords found in /etc/shadow...

PT-2024-36415 · Comfast · Comfast Cf-Wr630Ax

Name of the Vulnerable Software and Affected Versions: COMFAST CF-WR630AX version 2.7.0.2 Description: The issue is related to a hardcoded password vulnerability in the /etc/shadow file, which allows attackers to log in as the root user. This vulnerability enables unauthorized access to the syste...

CVE-2024-54747

WAVLINK WN531P3 202383 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

CVE-2024-54745

WAVLINK WN701AE M01AEV240305 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

Ubiquiti U7-Pro 安全漏洞

Ubiquiti U7-Pro is a wireless remote access point from Ubiquiti, Inc. A security vulnerability exists in the Ubiquiti U7-Pro version 7.0.35, which stems from the inclusion of a hard-coded password vulnerability in /etc/shadow that allows an attacker to log in as root...

PT-2024-36411 · Wavlink · Wavlink Wn531P3

Name of the Vulnerable Software and Affected Versions: WAVLINK WN531P3 version 202383 Description: A hardcoded password vulnerability was discovered in /etc/shadow, allowing attackers to log in as root. This issue enables unauthorized access to the system with elevated privileges. Recommendations...

Ubiquiti U6-LR 安全漏洞

Ubiquiti U6-LR is a wireless remote access point from Ubiquiti, Inc. A security vulnerability exists in Ubiquiti U6-LR version 6.6.65, which stems from the inclusion of a hard-coded password vulnerability in /etc/shadow that allows an attacker to log in as root...

CVE-2024-52788

Tenda W9 v1.0.0.74456 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

CVE-2024-52789

Tenda W30E v2.0 V16.01.0.8 was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...

pam: libpam: Libpam vulnerable to read hashed password

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

PT-2024-35441 · Tenda · Tenda W9

Name of the Vulnerable Software and Affected Versions: Tenda W9 version 1.0.0.74456 Description: The issue is related to a hardcoded password in the /etc ro/shadow file, which allows attackers to log in as root. Recommendations: For Tenda W9 version 1.0.0.74456, consider changing the hardcoded...

The vulnerability of the /etc/shadow file in microprogramming-based router software like LB-LINK allows a hacker to gain unauthorized access to protected information.

The vulnerability of the /etc/shadow file in microprogramming-based router software like LB-LINK lies in the use of strictly encrypted user credentials. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

K000148482: Sudo vulnerability CVE-2019-19234

Security Advisory Description In Sudo through 1.8.29, the fact that a user has been blocked e.g., by using the ! character in the shadow file instead of a password hash is not considered, allowing an attacker who has access to a Runas ALL sudoer account to impersonate any blocked user. NOTE: The...

CVE-2024-51431

LB-LINK BL-WR 1300H v.1.0.4 contains hardcoded credentials stored in /etc/shadow which are easily guessable...

PT-2024-8002 · Lb Link · Lb-Link Bl-Wr 1300H

Name of the Vulnerable Software and Affected Versions: LB-LINK BL-WR 1300H version 1.0.4 Description: The issue is related to hardcoded credentials stored in the /etc/shadow file of the LB-LINK BL-WR 1300H router. These credentials are easily guessable, which could allow a remote attacker to gain...

LB-LINK BL-WR 1300H 安全漏洞

The LB-LINK BL-WR 1300H is a wireless dual-band gigabit router from China Bilink LB-LINK. A security vulnerability exists in the LB-LINK BL-WR 1300H version v.1.0.4, which stems from the use of hard-coded credentials in /etc/shadow...

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Checkpoint Quantum_Spark_Firmware

CVE-2024-24919POC It's Proof of Concept on CVE-2024-24919-POC...

DEBIAN-CVE-2024-10041

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

UBUNTU-CVE-2024-10041

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

CVE-2024-48192

Tenda G3 v15.01.0.52848755EN was discovered to contain a hardcoded password vulnerability in /etcro/shadow, which allows attackers to log in as root...