The vulnerability of the timezone function in the PHP programming language interpreter allows attackers to trigger a service failure.

The vulnerability of the PHP language interpreter’s timezone function is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

Debian DLA-2964-1 : libdatetime-timezone-perl - LTS security update

The remote Debian 9 host has a package installed that is affected by a vulnerability as referenced in the dla-2964 advisory. This update includes the changes in tzdata 2022a for the Perl bindings. For the list of changes, see DLA-2963-1. For Debian 9 stretch, this problem has been fixed in versio...

DLA-2963-1 tzdata - new timezone database

Bulletin has no description...

Multiple ARRIS Product Command Injection Vulnerabilities (CNVD-2022-68534)

ARRIS SBR-AC1900P, SBR-AC3200P and SBR-AC1200P is a Wi-Fi router from ARRIS USA. Multiple ARRIS products are vulnerable to a command injection vulnerability, which stems from the TimeZone parameter in the ntp function failing to properly filter the construct command special characters, commands,...

CVE-2022-26991

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the ntp function via the TimeZone parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

CVE-2022-26991

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the ntp function via the TimeZone parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

CVE-2022-26991

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the ntp function via the TimeZone parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

Command injection

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the ntp function via the TimeZone parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

CVE-2022-26991

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the ntp function via the TimeZone parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

CVE-2022-26991

CVE-2022-26991 concerns Arris routers SBR-AC1900P (1.0.7-B05), SBR-AC3200P (1.0.7-B05) and SBR-AC1200P (1.0.5-B05). A command-injection in the ntp function via the TimeZone parameter allows an attacker to execute arbitrary commands through a crafted request. Public sources consistently describe i...

Xerox Phaser 4622 <= 35.013.01.000 DoS Vulnerability

Xerox Phaser 4622 devices are prone to a denial of service DoS vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program i...

Tenda Ax3 Buffer Overflow Vulnerability (CNVD-2022-13940)

Tenda Ax3 is an Ax1800 Gigabit Port Dual Band Wifi 6 Wireless Router from Tenda China. A buffer overflow vulnerability exists in Tenda AX3 v16.03.12.10CN, which can be exploited by an attacker to cause a denial of service DoS via the timeZone parameter...

CVE-2021-37354

Xerox Phaser 4622 v35.013.01.000 was discovered to contain a buffer overflow in the function sub3226AC via the TIMEZONE variable. This vulnerability allows attackers to cause a Denial of Service DoS via crafted overflow data...

Buffer overflow

Xerox Phaser 4622 v35.013.01.000 was discovered to contain a buffer overflow in the function sub3226AC via the TIMEZONE variable. This vulnerability allows attackers to cause a Denial of Service DoS via crafted overflow data...

CVE-2021-37354

CVE-2021-37354 affects Xerox Phaser 4622 firmware (v35.013.01.000). A buffer overflow in function sub_3226AC triggered via the TIMEZONE variable allows a crafted overflow to cause a Denial of Service. Documented impact is DoS; exploitation is network-based with low complexity and no authenticatio...

openSUSE: Security Advisory for icu.691 (openSUSE-SU-2021:4063-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-24163

Tenda AX3 v16.03.12.10CN was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service DoS via the timeZone parameter...

Stack overflow

Tenda AX3 v16.03.12.10CN and AX12 22.03.01.2CN was discovered to contain a stack overflow in the function formfastsettingwifiset. This vulnerability allows attackers to cause a Denial of Service DoS via the timeZone parameter...

Stack overflow

Tenda AX3 v16.03.12.10CN was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service DoS via the timeZone parameter...

Mageia: Security Advisory (MGASA-2016-0110)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...