70 matches found
CVE-2021-42987
Eltima USB Network Gate is affected by an Integer Overflow in IOCTL 0x22001B for versions above 7.0.1370 and below 9.2.2420. The flaw allows a local attacker to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Pa...
Eltima Usb Network Gate 输入验证错误漏洞
Eltima Usb Network Gate is a software from United Arab Emirates. It is used for remote Usb access via Internet or Lan. A security vulnerability exists in Eltima USB Network Gate, which can be exploited by a local attacker to cause a denial of service memory corruption and OS crash by executing...
Eltima Usb Network Gate安全漏洞
Eltima Usb Network Gate is a powerful software from United Arab Emirates. It is used for remote Usb access via Internet or Lan. A security vulnerability exists in Eltima Usb Network Gate, which originates from the IOCTL handler 0x22001B in USB Network Gate above 7.0.1370 and below 9.2.2420 that c...
UVI-2021-1002190 usbnet: sanity check for maxpacket
usbnet: sanity check for maxpacket This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15 by commit 397430b50a363d8b7bdda00522123f82df6adc5e. For...
GSD-2021-1000922 net: usb: fix possible use-after-free in smsc75xx_bind
net: usb: fix possible use-after-free in smsc75xxbind This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.128 by commit...
UVI-2021-1000680 net: usb: fix memory leak in smsc75xx_bind
net: usb: fix memory leak in smsc75xxbind This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.235 by commit...
CVE-2020-15061
Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 devices allow an attacker on the same network to denial-of-service the device via long input values...
CVE-2020-15059
Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 devices allow an attacker on the same network to bypass authentication via a web-administration request that lacks a password parameter...
CVE-2020-15057
TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to denial-of-service the device via long input values...
CVE-2020-15055
TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to bypass authentication via a web-administration request that lacks a password parameter...
CVE-2020-15056
TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to conduct persistent XSS attacks by leveraging administrative privileges to set a crafted server name...
CVE-2020-15057
TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to denial-of-service the device via long input values...
CVE-2020-15056
TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to conduct persistent XSS attacks by leveraging administrative privileges to set a crafted server name...
Input validation
TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to denial-of-service the device via long input values...
CVE-2020-15061
Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 devices allow an attacker on the same network to denial-of-service the device via long input values...
CVE-2020-15056
TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to conduct persistent XSS attacks by leveraging administrative privileges to set a crafted server name...
CVE-2020-15056
CVE-2020-15056 affects TP-Link TL-PS310U USB Network Server devices up to version 2.079.000.t0210. Affected function is the server name setting under administrative privileges, allowing an attacker on the same network to perform persistent cross-site scripting via a crafted server name. The vulne...
CVE-2020-15055
CVE-2020-15055 affects TP-Link USB Network Server TL-PS310U prior to firmware version 2.079.000.t0210. The vulnerability allows an attacker on the same network to bypass authentication via a web administration request that omits a password parameter. Connected sources corroborate the model-specif...
CVE-2020-15054
Affected product: TP-Link TL-PS310U (USB Network Server). Vulnerability: Elevation of privilege due to discovery of the administrative password by sniffing unencrypted UDP traffic. Root cause / vector: Unencrypted UDP traffic enables an attacker on the same network to obtain credentials and escal...
CVE-2020-15054
TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic...