The vulnerability of the server of the Zabbix universal monitoring system allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Zabbix universal monitoring system relates to the use of uncontrolled format strings in processing HttpRequest objects. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the Packet Forwarding Engine (PFE) module in Juniper Networks’ Junos OS on SRX Series devices allows a hacker to cause a service failure.

The vulnerability of the Packet Forwarding Engine PFE module in Juniper Networks’ Junos OS on SRX Series devices is related to the use of uncontrolled format strings. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the HTTP-server of the microprogrammed Wi-Fi range extension software from Actiontec, the WCB6200Q, allows a hacker to execute arbitrary code.

The vulnerability of the HTTP-server of the microprogrammed Wi-Fi range extension software Actiontec WCB6200Q is related to the use of uncontrolled format strings in processing HTTP request headers. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the microprogrammed software in the industrial cellular LTE modem OnCell G3470A-LTE arises from the use of uncontrolled format strings when processing binary files. This allows a hacker to trigger a service failure.

The vulnerability of the microprogrammed software in the industrial cellular LTE modem OnCell G3470A-LTE is related to the use of uncontrolled format strings. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

PT-2024-4557 · Moxa · Oncell G3470A-Lte Series

Name of the Vulnerable Software and Affected Versions: OnCell G3470A-LTE Series firmware versions v1.7.7 and prior Description: The issue is related to the use of uncontrolled format strings, which can be exploited by a remote attacker to cause a denial of service. An attacker could modify an...

The vulnerability of the Device Insight function in microprogrammed software for ZyXEL network devices, such as USG FLEX, USG FLEX 50(W)/USG20(W)-VPN, USG FLEX H, and ATP, allows a intruder to cause service interruptions.

The vulnerability of the Device Insight function in the microprogramming software for ZyXEL network devices, such as USG FLEX, USG FLEX 50W/USG20W-VPN, USG FLEX H, and ATP, is related to the use of uncontrolled format strings. Exploiting this vulnerability could allow a malicious actor to cause...

The vulnerability of the fgfmd daemon in the FortiOS operating system allows a hacker to execute arbitrary code.

The vulnerability of the fgfmd daemon in the FortiOS operating system is related to the use of uncontrolled format strings when processing binary files. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted requests remotely...

The vulnerability of the STST TA component in Samsung Teegris’ Android operating system allows a hacker to execute arbitrary code.

The vulnerability of the STST TA component in Samsung Teegris’ Android operating system security system is related to the use of uncontrolled format strings. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the iperf function in the application software interface for ASUS RT-AX55, RT-AX56U, and RT-AC86U routers allows a hacker to execute arbitrary code.

The vulnerability of the iperf function in the application programming interface for ASUS RT-AX55, RT-AX56UV2, and RT-AC86U routers is related to the use of uncontrolled format strings. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially created data...

The vulnerability of the application software interface of ASUS RT-AX55, RT-AX56U, and RT-AC86U allows a hacker to execute arbitrary code.

The vulnerability of the application software interface of ASUS RT-AX55, RT-AX56UV2, and RT-AC86U lies in the use of uncontrolled format strings. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially created data...

The vulnerability of the microprogrammed software of Wi-Fi routers ASUS RT-AC86U and RT-AX56U allows a hacker to execute arbitrary code.

The vulnerability of ASUS’ Wi-Fi router software, RT-AC86U and RT-AX56U, is related to the use of uncontrolled format strings. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the RTSP-based microprogramming software for IP cameras such as VPort P16-1MP-M12, VPort P16-1MP-M12-IR, and VPort P06-1MP-M12 allows a intruder to cause a service failure.

The vulnerability of the RTSP microprogramming software-based IP camera models VPort P16-1MP-M12, VPort P16-1MP-M12-IR, and VPort P06-1MP-M12 lies in the use of uncontrolled format strings. Exploiting this vulnerability could allow a malicious actor to cause service failure...

PT-2022-5484 · Unknown · Vport P06-1Mp-M12 +1

Name of the Vulnerable Software and Affected Versions: VPort P16-1MP-M12, VPort P16-1MP-M12-IR, VPort P06-1MP-M12 affected versions not specified Description: The issue is related to the use of uncontrolled format strings in the RTSP service of the IP camera microprogram. Exploitation of this iss...

The vulnerability of NAS storage systems (Network Attached Storage) such as NAS326, NAS540, and NAS542 lies in the use of uncontrolled format strings, which allow attackers to execute arbitrary code.

The vulnerability of NAS storage systems Network Attached Storage such as NAS326, NAS540, and NAS542 is related to the use of uncontrolled format strings. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using a specially created UDP packet...

The vulnerability of the sdp_media_set_lattr() function in the Wire Secure Messenger application, related to the use of uncontrolled format strings, allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the sdpmediasetlattr function in the Wire Secure Messenger messaging application is related to the use of uncontrolled format strings. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code or cause service failures...

The vulnerability of ASUS RT-AX88U Wi-Fi router’s microprogramming software, related to the use of uncontrolled format strings, allows a hacker to execute arbitrary code.

The vulnerability of ASUS RT-AX88U Wi-Fi router’s microprogramming software is related to the use of uncontrolled format strings. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

ROS-20220516-10

A vulnerability in the evdevlogmsg function of the libinput library's implementation of the X.Org and Wayland display server protocols is related to the use of uncontrolled format strings. Wayland is related to the use of uncontrolled format strings. Exploitation of the vulnerability could allow ...

The vulnerability of the authentication/authorization module for the Apache mod_auth_openidc HTTP server, related to the use of uncontrolled format strings, allows a perpetrator to cause a service failure.

The vulnerability of the authentication/authorization module for the Apache modauthopenidc server is related to the use of uncontrolled format strings. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the String#unpack method in the Ruby programming language allows attackers to exploit it to disclose protected information.

The vulnerability of the Stringunpack method in the Ruby programming language is related to the use of uncontrolled format strings. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose sensitive information that is protected by this method...

Multiple vulnerabilities exist in the functions cdio_log_handler (modules/access/cdda/access.c) of the CDDA plugin (libcdda_plugin), and in the cdio_log_handler and vcd_log_handler functions (modules/access/vcdx/access.c) of the VCDX plugin (libvcdx_plugin). These vulnerabilities allow an attacker to execute arbitrary code.

Multiple vulnerabilities exist in the functions cdiologhandler modules/access/cdda/access.c of the CDDA plugin libcddaplugin, and in the cdiologhandler and vcdloghandler functions modules/access/vcdx/access.c of the VCDX plugin libvcdxplugin of the VideoLAN VLC media player software. These...