31231 matches found
Arbitrary Code Execution
Mercurial is vulnerable to a Arbitrary Code Execution. The vulnerability is due to incorrect bound checks in the binary delta decoder which allows an attacker to execute arbitrary code via a clone, push, or pull command, related to either list sizing rounding error or short records...
CVE-2023-41221
D-Link DIR-3040 prog.cgi SetWLanRadioSecurity Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...
NETGEAR CAX30 安全漏洞
The NETGEAR CAX30 is a Nighthawk AX6 Series 6-Stream WiFi 6 Router from Netgear that supports DOCSIS 3.1 technology to deliver multi-gigabit Internet and wireless speeds for simultaneous use of smart devices in the home during peak times. The NETGEAR CAX30 suffers from a buffer overflow...
ZenML Detection
Binary data zenmldetect.nbin...
CVE-2024-23462 ZCC Mac validinstaller file integrity check missing
An Improper Validation of Integrity Check Value vulnerability in Zscaler Client Connector on MacOS allows a denial of service of the Client Connector binary and thus removing client functionality.This issue affects Client Connector on MacOS: before 3.4...
Eclipse Jetty Web Server Detection
Binary data eclipsejettydetect.nbin...
Android Malware Wpeeper Uses Compromised WordPress Sites to Hide C2 Servers
Cybersecurity researchers have discovered a previously undocumented malware targeting Android devices that uses compromised WordPress sites as relays for its actual command-and-control C2 servers for detection evasion. The malware, codenamed Wpeeper, is an ELF binary that leverages the HTTPS...
Low: Red Hat Security Advisory: file security update
An update for file is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
Privilege Escalation
github.com/projectcalico/calico/ is vulnerable to Privilege Escalation. The vulnerability is due to an incorrect SUID bit configuration in the Calico CNI install binary, combined with the ability to control the input binary, allows an attacker to execute an arbitrary binary with elevated privileg...
Calico privilege escalation vulnerability
In vulnerable versions of Calico v3.27.2 and below, Calico Enterprise v3.19.0-1, v3.18.1, v3.17.3 and below, and Calico Cloud v19.2.0 and below, an attacker who has local access to the Kubernetes node, can escalate their privileges by exploiting a vulnerability in the Calico CNI install binary. T...
GHSA-6362-GV4M-53WW Calico privilege escalation vulnerability
In vulnerable versions of Calico v3.27.2 and below, Calico Enterprise v3.19.0-1, v3.18.1, v3.17.3 and below, and Calico Cloud v19.2.0 and below, an attacker who has local access to the Kubernetes node, can escalate their privileges by exploiting a vulnerability in the Calico CNI install binary. T...
Dell Repository Manager Installed (Windows)
Binary data dellrepositorymanagerwininstalled.nbin...
Dell Repository Manager Installed (Linux)
Binary data dellrepositorymanagernixinstalled.nbin...
CVE-2024-33522
In vulnerable versions of Calico v3.27.2 and below, Calico Enterprise v3.19.0-1, v3.18.1, v3.17.3 and below, and Calico Cloud v19.2.0 and below, an attacker who has local access to the Kubernetes node, can escalate their privileges by exploiting a vulnerability in the Calico CNI install binary. T...
CVE-2024-33522
CVE-2024-33522 affects Calico CNI installations where vulnerable releases (Calico <= v3.27.2, Enterprise <= v3.19.0-1, v3.18.1, v3.17.3 and below, Cloud
CVE-2024-33522 Privilege escalation in Calico CNI install binary
In vulnerable versions of Calico v3.27.2 and below, Calico Enterprise v3.19.0-1, v3.18.1, v3.17.3 and below, and Calico Cloud v19.2.0 and below, an attacker who has local access to the Kubernetes node, can escalate their privileges by exploiting a vulnerability in the Calico CNI install binary. T...
CVE-2024-33522 Privilege escalation in Calico CNI install binary
In vulnerable versions of Calico v3.27.2 and below, Calico Enterprise v3.19.0-1, v3.18.1, v3.17.3 and below, and Calico Cloud v19.2.0 and below, an attacker who has local access to the Kubernetes node, can escalate their privileges by exploiting a vulnerability in the Calico CNI install binary. T...
shim: Interger overflow leads to heap buffer overflow in verify_sbat_section on 32-bits systems
A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This fl...
shim: out of bounds read when parsing MZ binaries
A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...
Chef Manage Detection
Binary data chefmanagewebdetect.nbin...