71 matches found
event-driven-ansible: Event Stream Test Mode Exposes Sensitive Headers in AAP EDA
A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible EDA Event Stream API. This vulnerability allows exposure of sensitive client credentials and internal infrastructure headers via the testheaders field when an event stream is in test mode. The possible outcome...
EUVD-2018-20673
Malware in sbrugna...
EUVD-2024-54339
Malicious code in bioql PyPI...
EUVD-2025-24239
Malicious code in bioql PyPI...
CVE-2025-40761
A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions, RUGGEDCOM ROX MX5000RE All versions, RUGGEDCOM ROX RX1400 All versions, RUGGEDCOM ROX RX1500 All versions, RUGGEDCOM ROX RX1501 All versions, RUGGEDCOM ROX RX1510 All versions, RUGGEDCOM ROX RX1511 All versions, RUGGEDCOM R...
Siemens多款产品 安全漏洞
Siemens RUGGEDCOM ROX RX1511 and others are products of Siemens, Germany Siemens.Siemens RUGGEDCOM ROX RX1511 is a communication device.Siemens RUGGEDCOM ROX RX1512 is a communication device.Siemens RUGGEDCOM ROX RX5000 is a communication device. A security vulnerability exists in various Siemens...
CVE-2025-21423
Memory corruption occurs when handling client calls to EnableTestMode through an Escape call...
CVE-2025-21423
Memory corruption occurs when handling client calls to EnableTestMode through an Escape call...
CVE-2025-21423 Improper Validation of Array Index in Display
Memory corruption occurs when handling client calls to EnableTestMode through an Escape call...
Qualcomm Chipsets 输入验证错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets, which stems from a memory corruption that occurs when handling EnableTestMode calls...
DEBIAN-CVE-2024-47719
In the Linux kernel, the following vulnerability has been resolved: iommufd: Protect against overflow of ALIGN during iova allocation Userspace can supply an iova and uptr such that the target iova alignment becomes really big and ALIGN overflows which corrupts the selected area range during...
GHSA-V784-FJJH-F8R4 Nuxt vulnerable to remote code execution via the browser when running the test locally
Summary Due to the insufficient validation of the path parameter in the NuxtTestComponentWrapper, an attacker can execute arbitrary JavaScript on the server side, which allows them to execute arbitrary commands. Details While running the test, a special component named NuxtTestComponentWrapper is...
The vulnerability of the tddpd function in the Enable_test_mode microprogramming system of Tp-Link wireless access points Tp-Link AC1350 and Tp-Link N300 allows a hacker to execute arbitrary commands.
The vulnerability of the tddpd function in the Enabletestmode microprogramming system of Tp-Link AC1350 and Tp-Link N300 wireless access points is related to the activation of functions from an unverified controlled area. Exploiting this vulnerability allows a malicious actor to send arbitrary...
The vulnerability of the tddpd function in wireless access points Tp-Link AC1350 and Tp-Link N300 allows a hacker to execute arbitrary code with root privileges.
The vulnerability of the tddpd Enabletestmode function in wireless access points Tp-Link AC1350 and Tp-Link N300 lies in the activation of functions from an unverified controlled area. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with root privileges by sending...
CVE-2023-49134
A command execution vulnerability exists in the tddpd enabletestmode functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926 and Tp-Link N300 Wireless Access Point EAP115 V4 v5.0.4 Build 20220216. A specially crafted series of network requests can lea...
CVE-2023-49133
A command execution vulnerability exists in the tddpd enabletestmode functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926 and Tp-Link N300 Wireless Access Point EAP115 V4 v5.0.4 Build 20220216. A specially crafted series of network requests can lea...
TP-LINK AC1350 命令注入漏洞
The TP-LINK AC1350/N300 is a router from China P&L TP-LINK. The TP-LINK AC1350 and TP-LINK N300 suffer from a command injection vulnerability that stems from the tddpd enabletestmode function failing to correctly filter constructed command special characters, commands, and so on. An attacker can...
Qualcomm Chipsets Security Vulnerability
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from memory corruption while processing the TPC target power meter in FTM TPC...
PT-2023-8993 · Tp Link · Tp-Link N300 Wireless Access Point +1
Name of the Vulnerable Software and Affected Versions: Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 version 5.1.0 Build 20220926 Tp-Link N300 Wireless Access Point EAP115 V4 version 5.0.4 Build 20220216 Description: A command execution vulnerability exists in the tddpd enable te...
PT-2023-9017 · Tp Link · Eap225 V3 +1
Name of the Vulnerable Software and Affected Versions: Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 version 5.1.0 Build 20220926 Tp-Link N300 Wireless Access Point EAP115 V4 version 5.0.4 Build 20220216 Description: A command execution issue exists in the tddpd enable test mode...