Lucene search
+L

59 matches found

Vulnrichment
Vulnrichment
added 2023/07/11 8:42 a.m.15 views

CVE-2023-29156 Denial of Service due to loss of information in DroneScout ds230 Remote ID receiver from BlueMark Innovations

DroneScout ds230 Remote ID receiver from BlueMark Innovations is affected by an information loss vulnerability through traffic injection. An attacker can exploit this vulnerability by injecting, at the right times, spoofed Open Drone ID ODID messages which force the DroneScout ds230 Remote ID...

4.7CVSS6.7AI score0.00317EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/07/11 8:42 a.m.28 views

CVE-2023-29156 Denial of Service due to loss of information in DroneScout ds230 Remote ID receiver from BlueMark Innovations

DroneScout ds230 Remote ID receiver from BlueMark Innovations is affected by an information loss vulnerability through traffic injection. An attacker can exploit this vulnerability by injecting, at the right times, spoofed Open Drone ID ODID messages which force the DroneScout ds230 Remote ID...

4.7CVSS6.8AI score0.00317EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/11 12:0 a.m.6 views

BlueMark Innovations DroneScout ds230 安全漏洞

BlueMark Innovations DroneScout ds230 is a Remote ID receiver from BlueMark Innovations that supports various protocols and bands. A security vulnerability exists in the BlueMark Innovations DroneScout ds230 Remote ID receiver that stems from being affected by a loss of information vulnerability...

6.8CVSS6.7AI score0.00317EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/07/11 12:0 a.m.6 views

BlueMark Innovations DroneScout ds230 安全漏洞

BlueMark Innovations DroneScout ds230 is a Remote ID receiver from BlueMark Innovations that supports various protocols and bands. A security vulnerability exists in the BlueMark Innovations DroneScout ds230 Remote ID receiver that stems from being affected by a loss of information vulnerability...

9.3CVSS7.7AI score0.0035EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/11 12:0 a.m.10 views

PT-2023-23217 · Bluemark Innovations · Dronescout Ds230 Remote Id Receiver

Name of the Vulnerable Software and Affected Versions: DroneScout ds230 Remote ID receiver from BlueMark Innovations versions 20211210-1627 through 20230329-1042 Description: The issue is related to an information loss vulnerability through traffic injection. An attacker can exploit this by...

9.3CVSS7.4AI score0.0035EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2022/09/26 10:7 a.m.9 views

CVE-2022-36159

Contec FXA3200 version 1.13 and under were discovered to contain a hard coded hash password for root stored in the component /etc/shadow. As the password strength is weak, it can be cracked in few minutes. Through this credential, a malicious actor can access the Wireless LAN Manager interface an...

8.9AI score0.00975EPSS
Exploits1References4
NVD
NVD
added 2022/08/15 1:15 p.m.22 views

CVE-2022-33989

dproxy-nexgen aka dproxy nexgen uses a static UDP source port selected randomly only at boot time in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not enough entropy to prevent traffic injection attacks...

5.3CVSS0.00794EPSS
Exploits1References3
Prion
Prion
added 2022/08/15 1:15 p.m.18 views

Design/Logic Flaw

dproxy-nexgen aka dproxy nexgen uses a static UDP source port selected randomly only at boot time in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not enough entropy to prevent traffic injection attacks...

5CVSS5.4AI score0.00794EPSS
Exploits1References3
Prion
Prion
added 2022/08/15 12:15 p.m.11 views

Design/Logic Flaw

totd 1.5.3 uses a fixed UDP source port in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not enough entropy to prevent traffic injection attacks...

7.5CVSS9.4AI score0.01441EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2022/08/15 12:10 p.m.31 views

CVE-2022-33989

dproxy-nexgen aka dproxy nexgen uses a static UDP source port selected randomly only at boot time in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not enough entropy to prevent traffic injection attacks...

5.7AI score0.00794EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/08/15 12:0 a.m.9 views

PT-2022-21951 · Unknown · Dproxy-Nexgen

Name of the Vulnerable Software and Affected Versions: dproxy-nexgen affected versions not specified Description: The issue allows DNS cache poisoning due to the use of a static UDP source port with insufficient entropy to prevent traffic injection attacks. This occurs because dproxy-nexgen selec...

5.3CVSS5.3AI score0.00794EPSS
Exploits1References7
Cvelist
Cvelist
added 2021/09/23 2:25 a.m.38 views

CVE-2021-1625 Cisco IOS XE Software Zone-Based Policy Firewall ICMP and UDP Inspection Vulnerability

A vulnerability in the Zone-Based Policy Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to prevent the Zone-Based Policy Firewall from correctly classifying traffic. This vulnerability exists because ICMP and UDP responder-to-initiator flows are not...

5.8CVSS5.9AI score0.00913EPSS
Exploits0References1
Prion
Prion
added 2019/05/16 2:29 a.m.23 views

Design/Logic Flaw

A vulnerability in the Border Gateway Patrol BGP Multiprotocol Label Switching MPLS-based Ethernet VPN EVPN implementation of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to trigger a denial of service DoS condition on an affected device. The vulnerability is due to a...

6.1CVSS6.4AI score0.00646EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/10/18 12:0 a.m.6 views

The vulnerability of the WPA2 protocol, which stems from errors in managing the cryptographic keys, allows unauthorized access to encrypted information transmitted over a wireless network.

The vulnerability of the WPA2 protocol, which provides security for wireless Wi-Fi networks, is related to errors in the management of cryptographic keys. Exploiting this vulnerability allows a perpetrator within the range of a Wi-Fi network to gain access to encrypted information transmitted ove...

7.9CVSS7AI score0.0207EPSS
Exploits0References23Affected Software39
Schneier on Security
Schneier on Security
added 2017/09/06 11:55 a.m.25 views

Security Vulnerabilities in AT&T Routers

They're actually Arris routers, sold or given away by AT&T.; There are several security vulnerabilities, some of them very serious. They can be fixed, but because these are routers it takes some skill. We don't know how many routers are affected, and estimates range from thousands to 138,000. Amo...

7AI score
Exploits0
Kitploit
Kitploit
added 2013/12/27 12:0 a.m.29 views

[Wifitap] WLAN Traffic Injection Tool

Wifitap is a proof of concept for communication over WLAN networks using traffic injection. Wifitap allows direct communication with an associated station to a given access point directly, whilst not being being associated ourselves or being handled by access point. Wifitap is written in Python,...

7.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.44 views

SuSE 10 Security Update : OpenSSH (ZYPP Patch Number 2184)

Several security problems were fixed in OpenSSH : - A denial of service problem has been fixed in OpenSSH which could be used to cause lots of CPU consumption on a remote openssh server. CVE-2006-4924 - If a remote attacker is able to inject network traffic this could be used to cause a client...

9.3CVSS6.9AI score0.44963EPSS
Exploits9References8
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.55 views

openSUSE 10 Security Update : openssh (openssh-2183)

Several security problems were fixed in OpenSSH : - CVE-2006-4924: A denial of service problem has been fixed in OpenSSH which could be used to cause lots of CPU consumption on a remote openssh server. - CVE-2006-4925: If a remote attacker is able to inject network traffic this could be used to...

9.3CVSS7.4AI score0.44963EPSS
Exploits9References4
Packet Storm
Packet Storm
added 2007/09/30 12:0 a.m.29 views

tor01216-rewrite.txt

t.bat which will run calc.exe on next boot. This is not very silent though, t.bat will contain something like 45 rows of crap which the user will see in about 1 sec, drop me a mail if you have a better way. Either have a TOR user visit this HTML or inject it into her traffic when you're a TOR exi...

7.4AI score
Exploits0
Rows per page
Query Builder