EUVD-2023-34958

Malicious code in bioql PyPI...

The vulnerability of the DIWEB virtual machine on the Dionis-NX system allows a hacker to elevate their privileges to the root level.

The vulnerability of the DIWEB virtual machine Dionis-NX relates to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows a malicious actor to elevate their privileges to root level by executing a specially crafted command from an SSH client...

The vulnerability of the DIWEB virtual machine Dionis-NX allows a hacker to elevate their privileges to the root level and execute arbitrary code.

The vulnerability of the DIWEB virtual machine Dionis-NX relates to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows a malicious actor to elevate their privileges to root level and execute arbitrary code by introducing special characters...

CVE-2025-21711

In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer overflows in rosesetsockopt In case of possible unpredictably large arguments passed to rosesetsockopt and multiplied by extra values on top of that, integer overflows may occur. Do the safest minimum an...

The vulnerability of the CGI function in D-Link router microprogramming devices such as DI-7003GV2, DI-7100G+V2, DI-7100GV2, DI-7200GV2, DI-7300G+V2, and DI-7400G+V2 allows attackers to execute arbitrary commands.

The vulnerability of the CGI function in D-Link router microprogramming devices such as DI-7003GV2, DI-7100G+V2, DI-7100GV2, DI-7200GV2, DI-7300G+V2, and DI-7400G+V2 lies in insufficient checking of arguments passed in commands. Exploiting this vulnerability allows a remote attacker to execute...

The vulnerability of the “register_argc_argv” option in the Cacti network monitoring software allows a hacker to execute arbitrary commands.

The vulnerability of the Cacti network monitoring software’s option registerargcargv is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely by injecting a specially crafted URL address...

CVE-2024-0151

Insufficient argument checking in Secure state Entry functions in software using Cortex-M Security Extensions CMSE, that has been compiled using toolchains that implement 'Arm v8-M Security Extensions Requirements on Development Tools' prior to version 1.4, allows an attacker to pass values to...

CVE-2024-0151

Insufficient argument checking in Secure state Entry functions in software using Cortex-M Security Extensions CMSE, that has been compiled using toolchains that implement 'Arm v8-M Security Extensions Requirements on Development Tools' prior to version 1.4, allows an attacker to pass values to...

CVE-2024-0151

Insufficient argument checking in Secure state Entry functions in software using Cortex-M Security Extensions CMSE, that has been compiled using toolchains that implement 'Arm v8-M Security Extensions Requirements on Development Tools' prior to version 1.4, allows an attacker to pass values to...

CVE-2024-0151

CVE-2024-0151 affects software using Cortex-M Security Extensions (CMSE). The issue arises from insufficient argument checking in Secure state Entry functions, allowing values out of range for types smaller than 32-bits to be passed into secure state, potentially causing incorrect operations. Pub...

PT-2024-15359 · Arm · Arm Cortex-M Security Extensions

Name of the Vulnerable Software and Affected Versions: Software using Cortex-M Security Extensions CMSE compiled using toolchains that implement 'Arm v8-M Security Extensions Requirements on Development Tools' prior to version 1.4 Description: The issue is related to insufficient argument checkin...

The vulnerability of the Service Port component 7329 of the Tenda AC23 microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the Service Port component 7329 of the Tenda AC23 microprogramming router lies in insufficient checking of arguments passed in commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

Debian dla-3681 : amanda-client - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3681 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3681-1 [email protected]...

Huawei EulerOS: Security Advisory for amanda (EulerOS-SA-2023-3112)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the printer web page module (ARM) of Honeywell PM43, which allows a intruder to execute arbitrary commands

The vulnerability of the printer web page module ARM of Honeywell PM43 is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

The vulnerability of Fortinet FortiManager’s centralized device management system lies in the insufficient checking of arguments passed in commands, allowing an attacker to execute arbitrary commands or code.

The vulnerability of Fortinet FortiManager’s centralized device management system lies in insufficient checking of arguments passed in commands. Exploiting this vulnerability allows an attacker to execute arbitrary commands or code...

OESA-2023-1507 amanda security update

AMANDA, the Advanced Maryland Automatic Network Disk Archiver, is a backup system that allows the administrator of a LAN to set up a single master backup server to back up multiple hosts to a single large capacity tape or disk drive. Amanda uses native tools such as GNUtar, dump for backup and ca...

OPENSUSE-SU-2023:0206-1 Security update for amanda

This update for amanda fixes the following issues: - CVE-2023-30577: Fixed improper argument checking for runtar.c boo1213701,...

OPENSUSE-SU-2023:0205-1 Security update for amanda

This update for amanda fixes the following issues: - CVE-2023-30577: Fixed improper argument checking for runtar.c boo1213701...

DEBIAN-CVE-2023-30577

AMANDA Advanced Maryland Automatic Network Disk Archiver before tag-community-3.5.4 mishandles argument checking for runtar.c, a different vulnerability than CVE-2022-37705...