Lucene search
+L

141 matches found

Zero Day Initiative
Zero Day Initiative
added 2024/05/29 12:0 a.m.25 views

A10 Thunder ADC Incorrect Permission Assignment Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of A10 Thunder ADC. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the installer. The...

7.8CVSS7.5AI score0.03016EPSS
Exploits0References1
NVD
NVD
added 2024/05/03 3:15 a.m.27 views

CVE-2023-42129

A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific flaw...

6.5CVSS6.1AI score0.02389EPSS
Exploits1References2
OSV
OSV
added 2024/05/03 3:15 a.m.6 views

CVE-2023-42129

A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific flaw...

6.5CVSS5.7AI score0.02389EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.9 views

CVE-2023-42130

A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability. This vulnerability allows remote attackers to read and delete arbitrary files on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific fla...

8.8CVSS5.9AI score0.02066EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.7 views

CVE-2023-42129

A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific flaw...

6.5CVSS5.7AI score0.02389EPSS
Exploits1References3
NVD
NVD
added 2024/05/03 3:15 a.m.16 views

CVE-2023-42130

A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability. This vulnerability allows remote attackers to read and delete arbitrary files on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific fla...

8.8CVSS8.2AI score0.02066EPSS
Exploits1References2
OSV
OSV
added 2024/05/03 3:15 a.m.7 views

CVE-2023-42130

A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability. This vulnerability allows remote attackers to read and delete arbitrary files on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific fla...

8.8CVSS5.9AI score0.02066EPSS
Exploits1References2
CVE
CVE
added 2024/05/03 2:13 a.m.63 views

CVE-2023-42129

CVE-2023-42129 affects A10 Networks’ Thunder ADC ; the vulnerability is in the ShowTechDownloadView class, caused by a lack of validation for a user-supplied path used in file operations. This directory traversal could allow an attacker to disclose sensitive information with authentication requir...

6.5CVSS6.1AI score0.02389EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 2:13 a.m.27 views

CVE-2023-42129 A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability

A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific flaw...

6.5CVSS6.1AI score0.02389EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/05/03 2:13 a.m.27 views

CVE-2023-42129 A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability

A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific flaw...

6.5CVSS6.3AI score0.02389EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/05/03 2:13 a.m.27 views

CVE-2023-42130 A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability

A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability. This vulnerability allows remote attackers to read and delete arbitrary files on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific fla...

8.3CVSS8.3AI score0.02066EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:13 a.m.15 views

CVE-2023-42130 A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability

A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability. This vulnerability allows remote attackers to read and delete arbitrary files on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific fla...

8.3CVSS6.6AI score0.02066EPSS
Exploits1References2
CVE
CVE
added 2024/05/03 2:13 a.m.55 views

CVE-2023-42130

The CVE-2023-42130 issue affects A10 Thunder ADC, specifically the FileMgmtExport class, where improper validation of a user-supplied path enables a directory traversal that can read and delete arbitrary files. The vulnerability context is authenticated use, with the impact described as read/dele...

8.8CVSS8.2AI score0.02066EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.7 views

A10 Networks Thunder ADC 安全漏洞

A10 Networks Thunder ADC is an application distribution/load balancer from A10 Networks that provides high performance. A10 Networks Thunder ADC has a security vulnerability that originates from failure to properly validate user-supplied paths before using them, a directory traversal and...

6.5CVSS6.2AI score0.02389EPSS
Exploits1References4
Zero Day Initiative
Zero Day Initiative
added 2023/10/04 12:0 a.m.25 views

A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific flaw exists within the ShowTechDownloadView class. The issue results from the lack of proper validation...

6.5CVSS6.2AI score0.02389EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/10/04 12:0 a.m.8 views

PT-2023-6115 · A10 · A10 Thunder Adc

Name of the Vulnerable Software and Affected Versions: A10 Thunder ADC affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations of A10 Thunder ADC. The specific flaw exists within the ShowTechDownloadView class,...

6.8CVSS6.5AI score0.02389EPSS
Exploits1References9
Zero Day Initiative
Zero Day Initiative
added 2023/10/04 12:0 a.m.24 views

A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability

This vulnerability allows remote attackers to read and delete arbitrary files on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific flaw exists within the FileMgmtExport class. The issue results from the lack of proper validation of a...

8.3CVSS6.6AI score0.02066EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/10/04 12:0 a.m.6 views

PT-2023-6114 · A10 · A10 Thunder Adc

Name of the Vulnerable Software and Affected Versions: A10 Thunder ADC affected versions not specified Description: The issue is related to the FileMgmtExport class in the Advanced Core Operating System ACOS of A10 Thunder ADC controllers, where there is improper restriction of a directory path...

8.8CVSS6.9AI score0.02066EPSS
Exploits1References9
BDU FSTEC
BDU FSTEC
added 2023/09/21 12:0 a.m.8 views

The vulnerability of TP-Link Archer A10’s microprogramming software arises from the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to execute arbitrary operating system commands.

The vulnerability of TP-Link Archer A10 router’s microprogramming software exists due to the lack of measures taken to neutralize the special elements used in the operating system’s command set. Exploiting this vulnerability allows a remote attacker to execute arbitrary operating system commands...

8.8CVSS8AI score0.00435EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2023/09/10 12:0 a.m.71 views

TP-LINK Archer AX50/A10 Command Execution Vulnerability

The TP-LINK Archer is a series of routers from China P&L TP-LINK. A command execution vulnerability exists in firmware versions prior to TP-LINK Archer AX50JPV1230529, Archer A10JPV2230504, which stems from an application failing to correctly filter constructed command special characters, command...

8CVSS7.4AI score0.00418EPSS
Exploits0References1
Rows per page
Query Builder