17 matches found
EUVD-2013-4996
Malware in sbrugna...
EUVD-2012-4662
Malware in sbrugna...
EUVD-2015-3821
Malware in sbrugna...
CVE-2025-49131
FastGPT is an open-source project that provides a platform for building, deploying, and operating AI-driven workflows and conversational agents. The Sandbox container fastgpt-sandbox is a specialized, isolated environment used by FastGPT to safely execute user-submitted or dynamically generated...
PT-2025-24438
Name of the Vulnerable Software and Affected Versions FastGPT versions prior to 4.9.11 Description The issue concerns the Sandbox container in FastGPT, which has insufficient isolation and inadequate restrictions on code execution. This allows attackers to escape the intended sandbox boundaries b...
The vulnerability of the Lua interpreter used in Cisco IOS XE operating systems allows a hacker to execute arbitrary code with root privileges.
The vulnerability of the Lua interpreter used in Cisco IOS XE operating systems is related to insufficient restrictions on function calls. Exploiting this vulnerability allows an attacker to execute arbitrary code with root privileges...
CVE-2016-3884
server/notification/NotificationManagerService.java in the Notification Manager Service in Android 6.x before 2016-09-01 and 7.0 before 2016-09-01 lacks uid checks, which allows attackers to bypass intended restrictions on method calls via a crafted application, aka internal bug 29421441...
CVE-2016-3748
The sockets subsystem in Android 6.x before 2016-07-01 allows attackers to bypass intended system-call restrictions via a crafted application that makes an ioctl call, aka internal bug 28171804...
CVE-2016-3748
The sockets subsystem in Android 6.x before 2016-07-01 allows attackers to bypass intended system-call restrictions via a crafted application that makes an ioctl call, aka internal bug 28171804...
The vulnerability of the Mac OS X operating system allows a hacker to circumvent the restrictions imposed on telephone calls.
The vulnerability of the Telephony component in the Mac OS X operating system is related to errors in the code. Exploiting this vulnerability can allow an attacker, operating locally, to circumvent the restrictions imposed on telephone calls when the Continuity feature is enabled...
Vulnerability in Apple OS X Telephony component
Apple OS X is a specialized operating system developed by Apple for Mac computers.Telephony is one of the components that provides telephony functionality. A security vulnerability exists in the Telephony component of Apple OS X 10.10.5 and prior versions. A local attacker can exploit this...
CVE-2015-3785
The Telephony component in Apple OS X before 10.11, when the Continuity feature is enabled, allows local users to bypass intended telephone-call restrictions via unspecified vectors...
CVE-2013-5156
CVE-2013-5156 affects Apple iOS before 7, where the Telephony subsystem does not require API conformity for access to telephony-daemon interfaces. A crafted app can bypass restrictions and send direct requests to the daemon, potentially causing interference with telephony functionality. The Apple...
Asterisk: Multiple vulnerabilities
Background Asterisk is an open source telephony engine and toolkit. Description Multiple vulnerabilities have been found in Asterisk: An error in manager.c allows shell access CVE-2012-2186. An error in Asterisk could cause all RTP ports to be exhausted CVE-2012-3812. A double-free error could...
CVE-2012-4737
channels/chaniax2.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert7, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 does not enforce ACL rules during certa...
Design/Logic Flaw
channels/chaniax2.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert7, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 does not enforce ACL rules during certa...
CVE-2012-4737
CVE-2012-4737 affects Asterisk Open Source 1.8.x prior to 1.8.15.1 and 10.x prior to 10.7.1 (also affected Certified Asterisk 1.8.11 before 1.8.11-cert7, Asterisk Digiumphones 10.x, and Asterisk Business Edition C.3.x before C.3.7.6). The vulnerability arises because ACL rules are not enforced du...