7638 matches found
CVE-2022-41000
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-41006
CVE-2022-41006 is reported against Siretta QUARTZ-GOLD, version G5.0.1.5-210720-141020, describing multiple stack-based buffer overflow vulnerabilities in the DetranCLI command parsing functionality. Talos details show that the overflow occurs in parsing templates such as the no ip static route c...
CVE-2022-41006
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-41005
CVE-2022-41005 affects Siretta QUARTZ-GOLD (G5.0.1.5-210720-141020) via stack-based buffer overflows in the DetranCLI command parsing, specifically targeting the ip static route destination … description WORD template. A crafted network packet sequence can lead to arbitrary command execution. Tal...
CVE-2022-41003
CVE-2022-41003 is a real vulnerability affecting the Siretta QUARTZ-GOLD router family, specifically the DetranCLI command parsing functionality in version G5.0.1.5-210720-141020. The connected TALOS report details concrete technical aspects: multiple stack-based buffer overflow vulnerabilities w...
CVE-2022-41000
CVE-2022-41000 affects Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. Talos/Talos CVE report details multiple stack-based buffer overflows in the DetranCLI command parsing, enabling arbitrary command execution when a crafted network packet triggers the template for the command: no gre index tunnel ...
CVE-2022-41010
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-41001
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40999
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40992
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40991
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40995
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40996
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40994
CVE-2022-40994 affects Siretta QUARTZ-GOLD (G5.0.1.5-210720-141020). Talos-2022-1613 documents stack-based buffer overflow vulnerabilities in the DetranCLI command parsing, specifically in templates like no firmwall keyword WORD description (WORD|null). The issues arise from unsafe use of formatt...
CVE-2022-40996
The TALOS-2022-1613 report details CVE-2022-40996 affecting Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. The vulnerability is a stack-based buffer overflow in the DetranCLI command parsing framework, specifically within a command template such as no firmwall srcmac/srcip/dstip/protocol/srcport/dst...
CVE-2022-40993
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40998
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40995
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40994
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40997
CVE-2022-40997 affects Siretta QUARTZ-GOLD routers (G5.0.1.5-210720-141020). The DetranCLI command parser contains stack-based buffer overflows in the gre index destination A.B.C.D/M description (WORD|null) template, which can be triggered by specially crafted network packets to achieve arbitrar...