82 matches found
Bender ebee 充电控制器 缓冲区错误漏洞
The ebee is a charge controller from Bender. A security vulnerability exists in the Bender ebee Charge Controller that stems from a long URL that could cause the web server to crash. An attacker can exploit this vulnerability to bypass credential checks and elevate privileges. The following...
Bender ebee 充电控制器 安全漏洞
The ebee is a charge controller from Bender. A security vulnerability exists in the Bender ebee Charge Controller that stems from an unprotected data export. The backup export is protected by a random key. The key is set at user login. It is empty after a reboot. An attacker can exploit this...
PT-2022-10360 · Unknown · Bender/Ebee Charge Controllers
Name of the Vulnerable Software and Affected Versions: Bender/ebee Charge Controllers affected versions not specified Description: The issue concerns an RFID leak in Bender/ebee Charge Controllers. The RFID of the last charge event can be read without authentication via the web interface...
PT-2022-10361 · Unknown · Bender/Ebee Charge Controllers
Name of the Vulnerable Software and Affected Versions: Bender/ebee Charge Controllers affected versions not specified Description: The issue allows an authenticated attacker to perform Cross-site Scripting by writing HTML code into configuration values, which are not properly escaped when...
PT-2022-10363 · Unknown · Bender/Ebee Charge Controllers
Name of the Vulnerable Software and Affected Versions: Bender/ebee Charge Controllers affected versions not specified Description: The issue allows for Command injection via the Web interface. An authenticated attacker could enter shell commands into some input fields. Recommendations: At the...
Bender ebee 充电控制器 安全漏洞
The ebee is a charge controller from Bender. A security vulnerability exists in the Bender ebee Charge Controller that stems from an easy local privilege escalation. An authenticated attacker can gain root access via the suid application socat, ip udhcpc, and ifplugd. The following products and...
CVE-2019-19885
In Bender COMTRAXX, user authorization is validated for most, but not all, routes in the system. A user with knowledge about the routes can read and write configuration data without prior authorization. This affects COM465IP, COM465DP, COM465ID, CP700, CP907, and CP915 devices before 4.2.0...
CVE-2019-19885
In Bender COMTRAXX, user authorization is validated for most, but not all, routes in the system. A user with knowledge about the routes can read and write configuration data without prior authorization. This affects COM465IP, COM465DP, COM465ID, CP700, CP907, and CP915 devices before 4.2.0...
Authorization
In Bender COMTRAXX, user authorization is validated for most, but not all, routes in the system. A user with knowledge about the routes can read and write configuration data without prior authorization. This affects COM465IP, COM465DP, COM465ID, CP700, CP907, and CP915 devices before 4.2.0...
CVE-2019-19885
CVE-2019-19885 affects Bender COMTRAXX devices (COM465IP, COM465DP, COM465ID, CP700, CP907, CP915) prior to version 4.2.0. Root cause: user authorization is validated for most routes but not all; a user who knows the routes can read and write configuration data without prior authorization. Impact...
CVE-2019-19885
In Bender COMTRAXX, user authorization is validated for most, but not all, routes in the system. A user with knowledge about the routes can read and write configuration data without prior authorization. This affects COM465IP, COM465DP, COM465ID, CP700, CP907, and CP915 devices before 4.2.0...
bender-wirth.com XSS vulnerability
Open Bug Bounty ID: OBB-388916 Description| Value ---|--- Affected Website:| bender-wirth.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...
Adobe Pixel Shader
Added: 06/24/2014 CVE: CVE-2014-0515 BID: 67092 OSVDB: 106347 Background The Adobe Flash plugin provides flash content rendering for web browsers. Problem A buffer overflow exists due to an error in processing SWF files. The vulnerable function exists in the the DisplayShader class and can be...
Adobe Pixel Shader
Added: 06/24/2014 CVE: CVE-2014-0515 BID: 67092 OSVDB: 106347 Background The Adobe Flash plugin provides flash content rendering for web browsers. Problem A buffer overflow exists due to an error in processing SWF files. The vulnerable function exists in the the DisplayShader class and can be...
Adobe Pixel Shader
Added: 06/24/2014 CVE: CVE-2014-0515 BID: 67092 OSVDB: 106347 Background The Adobe Flash plugin provides flash content rendering for web browsers. Problem A buffer overflow exists due to an error in processing SWF files. The vulnerable function exists in the the DisplayShader class and can be...
Adobe Flash Player Buffer Overflow Vulnerability (Apr 2014) - Windows
Adobe Flash Player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer...
Adobe Flash Player Buffer Overflow Vulnerability (Apr 2014) - Linux
Adobe Flash Player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer...
MS KB2961887: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer
The remote host is missing KB2961887. It is, therefore, affected by a buffer overflow vulnerability due to improper user input validation in the Pixel Bender component. An attacker could cause a buffer overflow with a specially crafted SWF file, resulting in arbitrary code execution. C Tenable...
Adobe Pixel Bender Toolkit2 11.0.422584 DLL Hijack
Exploit Title: Adobe Pixel Bender Toolkit2 tbbmalloc.dll DLL Hijacking Exploit Date: 2012-08-23 Author: coolkaveh [email protected] Greets To Mohammad Morteza Sanaie [email protected] Https://twitter.com/coolkaveh Vendor Homepage: http://www.adobe.com/ Version: 11.0.422584 Tested on...
Adobe Pixel Bender Toolkit2 - 'tbbmalloc.dll' Multiple DLL Loading Code Execution Vulnerabilities
// source: https://www.securityfocus.com/bid/55179/info Adobe Pixel Bender Toolkit2 is prone to multiple vulnerabilities that allow attackers execute arbitrary code. An attacker can exploit these issues by enticing a legitimate user to use the vulnerable application to open a file from a network...