CVE-2021-20698

CVE-2021-20698 affects Sharp NEC Displays (multiple models listed, e.g., UN462A/UN462VA/UN492S/UN492VS/UN552A/UN552S/UX552S and others across firmware branches) where an attacker can inject unintended parameters containing specific characters in an HTTP request, enabling root privilege escalation...

CVE-2021-20698

Sharp NEC Displays UN462A R1.300 and prior to it, UN462VA R1.300 and prior to it, UN492S R1.300 and prior to it, UN492VS R1.300 and prior to it, UN552A R1.300 and prior to it, UN552S R1.300 and prior to it, UN552VS R1.300 and prior to it, UN552 R1.300 and prior to it, UN552V R1.300 and prior to i...

Sharp NEC Displays和Sharp NEC Displays 命令注入漏洞

Sharp NEC Displays is a large screen display from Sharp NEC Corporation, U.S.A. Sharp NEC Displays is a display from Sharp Corporation, Japan that provides a display feature Sharp NEC Displays suffers from a command injection vulnerability that originates when the product does not properly filter...

Sharp NEC Displays和Sharp NEC Displays 命令注入漏洞

Sharp NEC Displays is a large screen display from Sharp NEC Corporation, U.S.A. Sharp NEC Displays is a display from Sharp Corporation, Japan that provides a display feature Sharp NEC Displays suffers from a command injection vulnerability that originates when the product does not properly filter...

PT-2021-14158

Name of the Vulnerable Software and Affected Versions: Sharp NEC Displays versions UN462A R1.300 and prior to it Sharp NEC Displays versions UN462VA R1.300 and prior to it Sharp NEC Displays versions UN492S R1.300 and prior to it Sharp NEC Displays versions UN492VS R1.300 and prior to it Sharp NE...

PT-2021-14157 · Sharp Nec · Sharp Nec Displays

Name of the Vulnerable Software and Affected Versions: Sharp NEC Displays versions UN462A R1.300 and prior to it Sharp NEC Displays versions UN462VA R1.300 and prior to it Sharp NEC Displays versions UN492S R1.300 and prior to it Sharp NEC Displays versions UN492VS R1.300 and prior to it Sharp NE...

PT-2021-13890 · Mongodb · Mongodb C Driver

Name of the Vulnerable Software and Affected Versions: MongoDB C Driver versions 2.12.0 through 2.12.1 Description: The MongoDB C Driver may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain...

Mongodb Server 信息泄露漏洞

MongoDB is a document-oriented database management system from the American company MongoDB. An information disclosure vulnerability exists in MongoDB C Driver versions 2.12 through 2.12.1. The vulnerability stems from the fact that events published by the program may contain security-sensitive...

Unauthorized Access Vulnerability in Sharp MX-3610N

Sharp is a Japanese electrical and electronics company. An unauthorized access vulnerability exists in Sharp MX-3610N, which can be exploited by attackers to obtain sensitive information...

jp.sharp Cross Site Scripting vulnerability OBB-1459177

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploit for Out-of-bounds Write in Php

It is an exploit module/toolkit targeting a remote code execution vulnerability. The target product/service or framework is php-fpm and Nginx. The vulnerability class/vector is remote code execution RCE. The probable entry point is not specified. Notable dependencies/tooling include Python and...

sharp-planet.eu Improper Access Control vulnerability

Open Bug Bounty ID: OBB-1155233 Security Researcher geeknik Helped patch 8815 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting sharp-planet.eu website an...

Multiple SHARP Android devices vulnerable to information disclosure

Overview Multiple SHARP Android devices contain an information disclosure vulnerability CWE-200. Impact Sensitive information of the device may be obtained by the other android application installed in the device. Solution Update the Firmware Update the firmware to the latest version according to...

CVE-2020-5571

SHARP AQUOS series AQUOS SH-M02 build number 01.00.05 and earlier, AQUOS SH-RM02 build number 01.00.04 and earlier, AQUOS mini SH-M03 build number 01.00.04 and earlier, AQUOS Keitai SH-N01 build number 01.00.01 and earlier, AQUOS L2 UQ mobile/J:COM build number 01.00.05 and earlier, AQUOS sense...

CVE-2020-5571

SHARP AQUOS series AQUOS SH-M02 build number 01.00.05 and earlier, AQUOS SH-RM02 build number 01.00.04 and earlier, AQUOS mini SH-M03 build number 01.00.04 and earlier, AQUOS Keitai SH-N01 build number 01.00.01 and earlier, AQUOS L2 UQ mobile/J:COM build number 01.00.05 and earlier, AQUOS sense...

Information disclosure

SHARP AQUOS series AQUOS SH-M02 build number 01.00.05 and earlier, AQUOS SH-RM02 build number 01.00.04 and earlier, AQUOS mini SH-M03 build number 01.00.04 and earlier, AQUOS Keitai SH-N01 build number 01.00.01 and earlier, AQUOS L2 UQ mobile/J:COM build number 01.00.05 and earlier, AQUOS sense...

CVE-2020-5571

CVE-2020-5571 affects SHARP AQUOS devices (multiple models) where information can be disclosed to malicious Android applications. Affected builds include AQUOS SH-M02 (01.00.05 and earlier), SH-RM02 (01.00.04 and earlier), SH-M03 (01.00.04 and earlier), SH-N01 (01.00.01 and earlier), L2 (01.00.05...

CVE-2020-5571

SHARP AQUOS series AQUOS SH-M02 build number 01.00.05 and earlier, AQUOS SH-RM02 build number 01.00.04 and earlier, AQUOS mini SH-M03 build number 01.00.04 and earlier, AQUOS Keitai SH-N01 build number 01.00.01 and earlier, AQUOS L2 UQ mobile/J:COM build number 01.00.05 and earlier, AQUOS sense...

JVN#93064451: Multiple SHARP Android devices vulnerable to information disclosure

Multiple SHARP Android devices contain an information disclosure vulnerability CWE-200. Impact Sensitive information of the device may be obtained by the other android application installed in the device. Solution Update the Firmware Update the firmware to the latest version according to the...

HTTP Asynchronous Reverse Shell - Asynchronous Reverse Shell Using The HTTP Protocol

Today there are many ways to create a reverse shell in order to be able to remotely control a machine through a firewall. Indeed, outgoing connections are not always filtered. However security software and hardware IPS, IDS, Proxy, AV, EDR... are more and more powerful and can detect these attack...