Lucene search
K

163 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/13 12:0 a.m.72 views

Siemens Scalance W1750D Buffer Copy without Checking Size of Input (CVE-2023-45614)

There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities resul...

9.8CVSS8.1AI score0.02132EPSS
Exploits0References4
NVD
NVD
added 2024/03/12 6:15 a.m.21 views

CVE-2024-25331

DIR-822 Rev. B Firmware v2.02KRB09 and DIR-822-CA Rev. B Firmware v2.03WWb01 suffer from a LAN-Side Unauthenticated Remote Code Execution RCE vulnerability elevated from HNAP Stack-Based Buffer Overflow...

9.3CVSS7.2AI score0.00334EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2024/01/31 12:0 a.m.242 views

TELSAT marKoni FM Transmitter 1.9.5 Root Command Injection

!/usr/bin/env python TELSAT marKoni FM Transmitter 1.9.5 Root Command Injection PoC Exploit Vendor: TELSAT Srl Product web page: https://www.markoni.it Affected version: Markoni-D Compact FM Transmitters Markoni-DH Exciter+Amplifiers FM Transmitters Markoni-A Analogue Modulator FM Transmitters...

7.4AI score
Exploits0
Vulnrichment
Vulnrichment
added 2024/01/08 7:0 p.m.11 views

CVE-2018-25095 Duplicator < 1.3.0 - Unauthenticated RCE

The Duplicator WordPress plugin before 1.3.0 does not properly escape values when its installer script replaces values in WordPress configuration files. If this installer script is left on the site after use, it could be use to run arbitrary code on the server...

9.6AI score0.00916EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2023/12/25 12:0 a.m.4 views

PT-2024-22: (Unauth Remote Code Execution) in MyQ Print Server

The vulnerability was identified in MyQ Print Server, versions 8.2 patch 43. An Unauthenticated Remote Code Execution vulnerability can be exploited by an attacker to gain elevated privileges on the target server. Vulnerability status: Confirmed by vendor Date of vulnerability detection: 25.12.20...

9.8CVSS7.9AI score
Exploits0References1
GithubExploit
GithubExploit
added 2023/12/11 7:23 p.m.309 views

Exploit for Missing Authorization in Zoneminder

CVE-2023-26035 Unauthenticated RCE in ZoneMinder Snapshots - P...

9.8CVSS9.8AI score0.80462EPSS
Exploits11
Vulnrichment
Vulnrichment
added 2023/11/14 10:43 p.m.19 views

CVE-2023-45614

There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities resul...

9.8CVSS10AI score0.02132EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.5 views

Aruba Networks ArubaOS and InstantOS Security Vulnerabilities

Aruba Networks ArubaOS and Aruba Networks InstantOS are both products of Aruba Networks, Inc. Aruba Networks InstantOS is an Arch Linux-based distribution. Aruba Networks ArubaOS and InstantOS have security vulnerabilities that stem from a buffer overflow vulnerability in the underlying CLI servi...

9.8CVSS9AI score0.02132EPSS
Exploits0References4
Prion
Prion
added 2023/10/30 11:15 p.m.19 views

Deserialization of untrusted data

Frigate is an open source network video recorder. Prior to version 0.13.0 Beta 3, an unsafe deserialization vulnerability was identified in the endpoints used to save configurations for Frigate. This can lead to unauthenticated remote code execution. This can be performed through the UI at /confi...

5.1CVSS7.9AI score0.01387EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2023/10/30 12:0 a.m.5 views

Frigate Code Issue Vulnerability

Frigate is a complete local NVR designed for home assistants with AI object detection by Blake Blackshear Personal Developer. A code issue vulnerability exists in versions prior to Frigate 0.13.0 Beta 3 that stems from the presence of an insecure deserialization vulnerability that could lead to...

7.5CVSS7.8AI score0.01387EPSS
Exploits1References5
F5 Networks
F5 Networks
added 2023/10/26 7:22 p.m.45 views

K000137368: Overview of F5 vulnerabilities (October 26, 2023)

Security Advisory Description On October 26, 2023, F5 announced the following security issues. This document is intended to serve as an overview of these vulnerabilities and security exposures to help determine the impact to your F5 devices. You can find the details of each issue in the associate...

9.8CVSS9.8AI score0.96515EPSS
Exploits18
OSV
OSV
added 2023/10/26 5:15 p.m.33 views

CVE-2023-43208

NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Note that this vulnerability is caused by the incomplete patch of CVE-2023-37679...

9.8CVSS8.1AI score0.82708EPSS
Exploits21References3
CVE
CVE
added 2023/10/26 12:0 a.m.241 views

CVE-2023-43208

NextGen Healthcare Mirth Connect (before 4.4.1) is affected by a deserialization of untrusted data vulnerability that allows unauthenticated remote code execution. Root cause: an incomplete patch of CVE-2023-37679 left a gadget chain bypassing the original deny list, enabling RCE via crafted HTTP...

9.8CVSS9.7AI score0.82708EPSS
In wildExploits21References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/22 12:0 a.m.10 views

CVE-2023-43762

Certain WithSecure products allow Unauthenticated Remote Code Execution via the web server backend. This affects WithSecure Policy Manager 15 and Policy Manager Proxy 15...

7.6AI score0.01128EPSS
Exploits0References3
0day.today
0day.today
added 2023/08/21 12:0 a.m.720 views

Jorani Remote Code Execution Exploit

This Metasploit module exploits an unauthenticated remote code execution vulnerability in Jorani versions prior to 1.0.2. It abuses log poisoning and redirection bypass via header spoofing and then it uses path traversal to trigger the vulnerability. It has been tested on Jorani 1.0.0. This modul...

9.8CVSS8.2AI score0.81918EPSS
Exploits5
Cvelist
Cvelist
added 2023/07/25 6:28 p.m.16 views

CVE-2023-35980 Unauthenticated Buffer Overflow Vulnerabilities in Services Accessed by the PAPI Protocol

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities...

9.8CVSS10AI score0.01615EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/07 12:0 a.m.10 views

CVE-2023-37170

TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain an unauthenticated remote code execution RCE vulnerability via the lang parameter in the setLanguageCfg function...

8.5AI score0.01396EPSS
Exploits1References1
OSV
OSV
added 2023/05/08 3:15 p.m.6 views

CVE-2023-22786

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities...

9.8CVSS8.1AI score0.02118EPSS
Exploits0References1
Prion
Prion
added 2023/05/08 3:15 p.m.20 views

Buffer overflow

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities...

7.5CVSS9.8AI score0.02068EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2023/05/08 2:3 p.m.11 views

CVE-2023-22785 Unauthenticated Buffer Overflow Vulnerabilities in Services Accessed by the PAPI Protocol

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities...

9.8CVSS9.9AI score0.02068EPSS
Exploits0References1
Rows per page
Query Builder