191 matches found
The vulnerability of the access controller service allows attackers to exploit the Capability Access Management Service (camsvc) of Windows operating systems, thereby enabling them to increase their privileges.
The vulnerability of the access controller service related to the Capability Access Management Service camsvc on Windows operating systems is associated with competitive access to resources during a “race condition”. Exploiting this vulnerability can allow an attacker to enhance their privileges...
CVE-2023-31445
Cassia Access controller before 2.1.1.2203171453, was discovered to have a unprivileged -information disclosure vulnerability that allows read-only users have the ability to enumerate all other users and discover e-mail addresses, phone numbers, and privileges of all other users...
CVE-2017-20037
A vulnerability has been found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument c leads to privilege escalation. The attack can be launched remotely...
CVE-2017-20038
A vulnerability was found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this issue is some unknown functionality of the file cardscandecoder.php. The manipulation of the argument No/door leads to privilege escalation. The attack may be launched remotely...
CVE-2017-20040
A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been declared as problematic. This vulnerability affects unknown code of the component Password Storage. The manipulation leads to weak encryption. Attacking locally is a requirement...
CVE-2009-4234
Cross-site scripting XSS vulnerability in loginpages/erroruser.shtml on the Micronet Network Access Controller SP1910 allows remote attackers to inject arbitrary web script or HTML via the msg parameter...
CVE-2017-20039
A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been classified as very critical. This affects an unknown part. The manipulation leads to weak authentication. It is possible to initiate the attack remotely...
Malicious code in openbet-access-controller (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0dd796ac609bd9ccd763f039c5ecfd7fd63b7c76170f3feaba70a4d2148fa881 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-602 Malicious code in openbet-access-controller (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0dd796ac609bd9ccd763f039c5ecfd7fd63b7c76170f3feaba70a4d2148fa881 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Experts Warn of Critical Unpatched Vulnerability in Linear eMerge E3 Systems
Cybersecurity researchers are warning about an unpatched vulnerability in Nice Linear eMerge E3 access controller systems that could allow for the execution of arbitrary operating system OS commands. The flaw, assigned the CVE identifier CVE-2024-9441, carries a CVSS score of 9.8 out of a maximum...
The vulnerability of the integrated service module of Dell iDRAC in remote access controllers iDRAC, related to the execution of operations outside the buffer in memory, allows a intruder to execute arbitrary code or cause a service failure.
The vulnerability of the Dell iDRAC Service Module integrated service module controllers in remote access iDRAC devices relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code or cause a service failure...
Dell iDRAC Service Module Out-of-Bounds Read Vulnerability (CNVD-2024-34489)
The Dell iDRAC Service Module is a lightweight software module from Dell USA designed to run on Dell PowerEdge servers to enhance the functionality of iDRAC Integrated Dell Remote Access Controller. An out-of-bounds read vulnerability exists in Dell iDRAC Service Module 5.3.0.0 and earlier...
Dell DRAC / iDRAC Detection Consolidation
Consolidation of Dell Remote Access Controller DRAC / Integrated Remote Access Controller iDRAC detections. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Tenda AC500 Command Injection Vulnerability
The Tenda AC500 is a Gigabit port access controller from Tenda, China. A command injection vulnerability exists in Tenda AC500 version 2.0.1.91307, which stems from a command injection issue in the mac parameter of the formWriteFacMac method of the /goform/WriteFacMac file. No details of the...
Unspecified vulnerability in Tenda AC500 (CNVD-2024-20427)
The Tenda AC500 is a Gigabit port access controller from Tenda, China. A security vulnerability exists in Tenda AC500 version 2.0.1.91307, which stems from a buffer overflow in the page parameter of the fromDhcpListClient method of the /goform/DhcpListClient file. No details of the vulnerability...
Unspecified Vulnerability in Tenda AC500 (CNVD-2024-23312)
The Tenda AC500 is a Gigabit port access controller from Tenda, China. A security vulnerability exists in Tenda AC500 version 2.0.1.91307, which originates from a buffer overflow issue in the cmdinput parameter of the formexeCommand method of the /goform/execCommand file. No details of the...
Unspecified Vulnerability in Tenda AC500 (CNVD-2024-23311)
The Tenda AC500 is a Gigabit port access controller from Tenda, China. A security vulnerability exists in Tenda AC500 version 2.0.1.91307, which originates from a buffer overflow issue in the PPPOEPassword parameter of the formQuickIndex method of the /goform/QuickIndex file. No details of the...
Integrated Dell Remote Access Controller (iDRAC) Service Module Installed (Windows)
Binary data dellidracservicemodulewininstalled.nbin...
The vulnerability of the PAN-OS operating system’s web interface allows attackers to obtain credentials in plain text for stored external system integrations such as LDAP, SCP, RADIUS, TACACS+, and SNMP.
The vulnerability of the PAN-OS operating system’s web interface is related to insufficient protection of registration data. Exploiting this vulnerability allows a malicious actor to obtain login credentials in plain text for stored external system integrations such as LDAP, SCP, RADIUS, TACACS+,...
Tenda M3 Security Vulnerability
Tenda M3 is an access controller from Tenda, China. A security vulnerability exists in Tenda M3 version V1.0.0.124856, which is caused by a stack overflow vulnerability in the fromSetLocalVlanInfo method...