Malicious code in sharp-libvips-linux-x64 (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-9841 Malicious code in sharp-libvips-linux-x64 (npm)

--- -= Per source details. Do not edit below this line.=-...

CVE-2024-7011

Sharp NEC Projectors NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL, NP-P525UL+, NP-P525ULG, NP-P525ULJL, NP-P525WL, NP-P525WL+, NP-P525WLG, NP-P525WLJL, NP-CG6500UL, NP-CG6500WL, NP-CG6700UL, NP-P605UL, NP-P605UL+, NP-P605ULG, NP-P605ULJL, NP-CA4120X, NP-CA4160W, NP-CA4160X, NP-CA4200U,...

CVE-2024-7011

CVE-2024-7011 affects Sharp NEC Projectors (a long list of NP- model numbers) and is described as a DoS condition triggered by SNMP service. The Red Hat, CVE, NVD, and Virgo enrichment entries confirm the same core issue: SNMP-enabled services on affected projectors can be exploited to cause DoS....

CVE-2024-7011

Sharp NEC Projectors NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL, NP-P525UL+, NP-P525ULG, NP-P525ULJL, NP-P525WL, NP-P525WL+, NP-P525WLG, NP-P525WLJL, NP-CG6500UL, NP-CG6500WL, NP-CG6700UL, NP-P605UL, NP-P605UL+, NP-P605ULG, NP-P605ULJL, NP-CA4120X, NP-CA4160W, NP-CA4160X, NP-CA4200U,...

PT-2024-38029

Name of the Vulnerable Software and Affected Versions Sharp NEC Projectors NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL, NP-P525UL+, NP-P525ULG, NP-P525ULJL, NP-P525WL, NP-P525WL+, NP-P525WLG, NP-P525WLJL, NP-CG6500UL, NP-CG6500WL, NP-CG6700UL, NP-P605UL, NP-P605UL+, NP-P605ULG, NP-P605ULJL,...

Sharp NEC Projectors 安全漏洞

Sharp NEC Projectors is a line of projectors from Sharp NEC Japan. A security vulnerability exists in Sharp NEC Projectors that originates from allowing an attacker to cause a denial of service via SNMP service. The following products are affected: NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL...

CVE-2024-6596

An unauthenticated remote attacker can run malicious c code included in curve files and execute commands in the users context...

Ray Sharp DVR Password Retriever

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ray Sharp DVR Password Retriever', 'Description' = %q This module takes advantage of a protocol design issue with the Ray Sharp based DVR systems...

org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

A vulnerability was found in Bouncy Castle. An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters...

Uncontrolled Resource Consumption ('Resource Exhaustion')

Overview Affected versions of this package are vulnerable to Uncontrolled Resource Consumption 'Resource Exhaustion' through the Gif decoder. An attacker can cause the application to consume excessive memory resources by processing specially crafted image files. Workaround This vulnerability can ...

Out-of-Bounds Write

Overview Affected versions of this package are vulnerable to Out-of-Bounds Write in the ImageSharp gif decoder. An attacker can cause a crash by sending a specially crafted gif file. Remediation Upgrade SixLabors.ImageSharp to version 2.1.9, 3.1.5 or higher. References - GitHub Commit - GitHub...

Sharp MFP Security Vulnerability

Sharp MFP is a series of multifunction printers from Sharp Japan. A security vulnerability exists in Sharp MFP that originates from an out-of-bounds memory reference, and certain device web pages may cause the device to hang...

Sharp MFP Trust Management Issue Vulnerability

The Sharp MFP is a series of multifunction printers from Sharp Japan. The Sharp MFP suffers from a trust management issue vulnerability that arises from the fact that the credential information to perform certain device functions is hard-coded and can be exploited by an attacker who improperly...

Sharp Multi-Function Printer 18 Vulnerabilities

Hello, Please find a text-only version below sent to security mailing lists. The complete version on "17 vulnerabilities in Sharp Multi-Function Printers" is posted here: https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html The text version is also posted here:...

Sharp MFP Security Vulnerability

Sharp MFP is a series of multifunction printers from Sharp Japan. A security vulnerability exists in Sharp MFP that stems from incorrect credential information to perform certain device functions, which could result in referencing internal information in the device...

Sharp MFP Trust Management Issue Vulnerability

Sharp MFP is a series of multifunction printers from Sharp Japan. The Sharp MFP suffers from a trust management issue vulnerability that arises from hard-coded credential information for accessing an external site, which can be exploited by an attacker who improperly obtains the credential...

Sharp MFP Security Vulnerability

Sharp MFP is a series of multifunction printers from Sharp Japan. A security vulnerability exists in Sharp MFP that originates from a device web page that inadvertently sends information about credentials stored in the device, resulting in information disclosure...

Malicious code in TwіtterSharp (NuGet)

--- -= Per source details. Do not edit below this line.=-...

Multiple vulnerabilities in Sharp and Toshiba Tec MFPs

Overview Sharp and Toshiba Tec MFPs multifunction printers contain multiple vulnerabilities listed below. Stack-based Buffer Overflow CWE-121 - CVE-2024-28038 Incorrect Permission Assignment for Critical Resource CWE-732 - CVE-2024-28955 Cleartext Storage of Sensitive Information CWE-312 -...