Lucene search
K

31254 matches found

Vulnrichment
Vulnrichment
added 2024/04/09 2:12 p.m.15 views

CVE-2023-49906

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

7.2CVSS7.9AI score0.01919EPSS
Exploits1References1
CVE
CVE
added 2024/04/09 2:12 p.m.62 views

CVE-2023-49907

Talos-1888 details a stack-based buffer overflow in TP-Link AC1350 (EAP225 V3) firmware v5.1.0 Build 20220926, caused by the handling of newline-delimited POST parameters (ssid, band, profile, action) in /data/scheduler.association.json. Specifically, the vulnerability arises from unsafe copying ...

8.8CVSS7.8AI score0.01822EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/04/09 2:12 p.m.27 views

CVE-2023-49913

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

7.2CVSS7.9AI score0.01919EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/04/09 12:0 a.m.13 views

Ivanti Endpoint Manager Cloud Services Appliance web interface detection

Binary data ivantiendpointmanagercsawebdetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/09 12:0 a.m.30 views

EulerOS 2.0 SP9 : shim (EulerOS-SA-2024-1497)

According to the versions of the shim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. Th...

8.3CVSS7.7AI score0.04852EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/04/08 12:0 a.m.35 views

EulerOS 2.0 SP9 : shim (EulerOS-SA-2024-1518)

According to the versions of the shim package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. Thi...

8.3CVSS7.7AI score0.04852EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/04/08 12:0 a.m.7 views

Ruby Programming Language Installed (Windows)

Binary data rubywininstalled.nbin...

7.3AI score
Exploits0References2
Kitploit
Kitploit
added 2024/04/07 12:30 p.m.68 views

GDBFuzz - Fuzzing Embedded Systems Using Hardware Breakpoints

This is the companion code for the paper: 'Fuzzing Embedded Systems using Debugger Interfaces'. A preprint of the paper can be found here https://publications.cispa.saarland/3950/. The code allows the users to reproduce and extend the results reported in the paper. Please cite the above paper whe...

7.6AI score
Exploits0References6
SUSE CVE
SUSE CVE
added 2024/04/06 1:59 a.m.2 views

SUSE CVE-2024-3116

pgAdmin = 8.4 is affected by a Remote Code Execution RCE vulnerability through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the database management system's integrity and the security of the...

9.9CVSS8.2AI score0.64846EPSS
Exploits5References3
Veracode
Veracode
added 2024/04/05 6:58 a.m.29 views

Remote Code Execution (RCE)

pgAdmin is vulnerable to Remote Code Execution RCE. The vulnerability is due improper validation within the binary path API, which allows attackers to execute arbitrary code on the server...

9.8CVSS8.3AI score0.64846EPSS
Exploits5References6Affected Software1
Veracode
Veracode
added 2024/04/05 4:0 a.m.25 views

Integer Overflow

GTKWave 3.3.115 is vulnerable to an Integer Overflow. The vulnerability is caused due to a defect in the FSTBLGEOM parsing maxhandle functionality when compiled as a 32-bit binary. A specially crafted .fst file can lead to memory corruption when the user opens a malicious file to trigger this...

7.8CVSS6.7AI score0.0038EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2024/04/04 3:30 p.m.59 views

pgAdmin Remote Code Execution (RCE) vulnerability

pgAdmin = 8.4 is affected by a Remote Code Execution RCE vulnerability through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the database management system's integrity and the security of the...

9.8CVSS9AI score0.64846EPSS
Exploits5References7Affected Software1
OSV
OSV
added 2024/04/04 3:30 p.m.15 views

GHSA-27JX-FFW8-XRQV pgAdmin Remote Code Execution (RCE) vulnerability

pgAdmin = 8.4 is affected by a Remote Code Execution RCE vulnerability through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the database management system's integrity and the security of the...

7.4CVSS9AI score0.64846EPSS
Exploits5References7
RedHat Linux
RedHat Linux
added 2024/04/04 3:23 p.m.2 views

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

5.9CVSS6.7AI score0.93305EPSS
Exploits4References6
OSV
OSV
added 2024/04/04 3:15 p.m.11 views

CVE-2024-3116

pgAdmin = 8.4 is affected by a Remote Code Execution RCE vulnerability through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the database management system's integrity and the security of the...

9.8CVSS8.1AI score0.64846EPSS
Exploits5References4
Vulnrichment
Vulnrichment
added 2024/04/04 2:59 p.m.26 views

CVE-2024-3116 Remote Code Execution Vulnerability through the validate binary path API in pgAdmin 4

pgAdmin = 8.4 is affected by a Remote Code Execution RCE vulnerability through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the database management system's integrity and the security of the...

7.4CVSS9AI score0.64846EPSS
Exploits5References3
Cvelist
Cvelist
added 2024/04/04 2:59 p.m.70 views

CVE-2024-3116 Remote Code Execution Vulnerability through the validate binary path API in pgAdmin 4

pgAdmin = 8.4 is affected by a Remote Code Execution RCE vulnerability through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the database management system's integrity and the security of the...

7.4CVSS8.1AI score0.64846EPSS
Exploits5References3
CVE
CVE
added 2024/04/04 2:59 p.m.175 views

CVE-2024-3116

CVE-2024-3116 affects pgAdmin

9.8CVSS9AI score0.64846EPSS
Exploits5References4Affected Software1
CNNVD
CNNVD
added 2024/04/04 12:0 a.m.3 views

pgAdmin 安全漏洞

pgAdmin is an open source administration and development platform for the open source database PostgreSQL. A security vulnerability exists in pgAdmin 8.4 and prior versions that stems from a remote code execution RCE vulnerability in the binary path API...

9.8CVSS8.1AI score0.64846EPSS
Exploits5References6
NVD
NVD
added 2024/04/03 5:15 p.m.6 views

CVE-2024-27674

Macro Expert through 4.9.4 allows BUILTIN\Users:OICIM access to the "%PROGRAMFILESX86%\GrassSoft\Macro Expert" folder and thus an unprivileged user can escalate to SYSTEM by replacing the MacroService.exe binary...

7.8CVSS6.8AI score0.00312EPSS
Exploits0References2
Rows per page
Query Builder