877 matches found
CVE-2026-2534 Comfast CF-N1 V2 mbox-config sub_44AC4C command injection
A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub44AC4C of the file /cgi-bin/mbox-config?method=SET§ion=ptestbandwidth. The manipulation of the argument bandwidth leads to command injection. The attack can be initiated remotely. The exploit h...
CVE-2026-2534
A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub44AC4C of the file /cgi-bin/mbox-config?method=SET§ion=ptestbandwidth. The manipulation of the argument bandwidth leads to command injection. The attack can be initiated remotely. The exploit h...
CVE-2026-2534 Comfast CF-N1 V2 mbox-config sub_44AC4C command injection
A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub44AC4C of the file /cgi-bin/mbox-config?method=SET§ion=ptestbandwidth. The manipulation of the argument bandwidth leads to command injection. The attack can be initiated remotely. The exploit h...
PT-2026-8310
Name of the Vulnerable Software and Affected Versions Comfast CF-N1 V2 version 2.6.0.2 Description A remote command injection issue exists in Comfast CF-N1 V2 2.6.0.2. The issue is located in the sub 44AC4C function within the /cgi-bin/mbox-config file. Manipulation of the bandwidth argument in t...
COMFAST CF-N1 命令注入漏洞
COMFAST CF-N1 is a wireless router produced by COMFAST Corporation. The Comfast CF-N1 V2 2.6.0.2 version has a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter “bandwidth” in the function sub44AC4C within the file...
Crypto-RV: High-Efficiency FPGA-Based RISC-V Cryptographic Co-Processor for IoT Security
Cryptographic operations are critical for securing IoT, edge computing, and autonomous systems. However, current RISC-V platforms lack efficient hardware support for comprehensive cryptographic algorithm families and post-quantum cryptography. This paper presents Crypto-RV, a RISC-V co-processor...
EUVD-2020-30935
10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application's registration key input, enabling...
CVE-2020-37043
10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application's registration key input, enabling...
CVE-2020-37043
10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application's registration key input, enabling...
CVE-2020-37043 10-Strike Bandwidth Monitor 3.9 - Buffer Overflow
10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application's registration key input, enabling...
CVE-2020-37043
The CVE concerns 10-Strike Bandwidth Monitor 3.9. A buffer overflow in the registration key input allows exploitation that can bypass SafeSEH, ASLR and DEP, enabling remote code execution and arbitrary system commands. Connected sources confirm the targeted software and the exploitation path, but...
PT-2026-5483
Name of the Vulnerable Software and Affected Versions 10-Strike Bandwidth Monitor version 3.9 Description The software contains a buffer overflow issue that allows attackers to bypass SafeSEH, ASLR, and DEP protections. Exploitation occurs through crafted input sent to the application’s...
10-Strike Bandwidth Monitor security vulnerability
10-Strike Bandwidth Monitor is a network bandwidth monitoring and traffic analysis tool developed by the American company 10-Strike. Version 3.9 of 10-Strike Bandwidth Monitor contains a security vulnerability; this vulnerability stems from a buffer overflow issue related to the input of...
CVE-2020-37021
10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during service startup...
CVE-2020-37021
10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during service startup...
CVE-2020-37021
10-Strike Bandwidth Monitor 3.9 has an unquoted service path vulnerability allowing local privilege escalation to SYSTEM during service startup by placing a malicious executable in specific file paths. Root cause: unquoted service path in multiple services. Public details include CVSS 3.1/7.8 (HI...
CVE-2020-37021 Bandwidth Monitor 3.9 - 'Svc10StrikeBandMontitor' Unquoted Service Path
10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during service startup...
CVE-2020-37021 Bandwidth Monitor 3.9 - 'Svc10StrikeBandMontitor' Unquoted Service Path
10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during service startup...
ALSA-2026:1595 Moderate: iperf3 security update
Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss. Security Fixes: iperf3: iperf Heap Buffer Overflow CVE-2025-54349 For more details about the security issues, including the impac...
10-Strike Bandwidth Monitor code issue vulnerability
10-Strike Bandwidth Monitor is a network bandwidth monitoring and traffic analysis tool developed by the American company 10-Strike. Version 3.9 of 10-Strike Bandwidth Monitor has a code vulnerability; this vulnerability arises from multiple service paths not being enclosed in quotes, which may...