Lucene search
K

194 matches found

OSV
OSV
added 2024/05/14 3:42 p.m.5 views

CVE-2024-3788

Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes SSI, through License /admin/CDPUsers. Exploitation of this vulnerability could allow a remote user to execute arbitrary code...

6.6CVSS6AI score0.00611EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2024/04/25 11:18 p.m.8 views

cdp-andorre.centredoc.fr Cross Site Scripting vulnerability OBB-3921956

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/03/01 10:1 p.m.8 views

cdp-online.nl Improper Access Control vulnerability OBB-3863178

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2024/02/05 12:0 a.m.345 views

WhatsUp Gold 2022 22.1.0 Build 39 Cross Site Scripting

Exploit Title: WhatsUpGold 22.1.0 - Stored Cross-Site Scripting XSS Date: April 18, 2023 Exploit Author: Andreas Finstad 4ndr34z Vendor Homepage: https://www.whatsupgold.com Version: v.22.1.0 Build 39 Tested on: Windows 2022 Server CVE : CVE-2023-35759 Reference:...

6.1CVSS7.4AI score0.0213EPSS
Exploits3
Exploit DB
Exploit DB
added 2024/02/05 12:0 a.m.476 views

WhatsUp Gold 2022 (22.1.0 Build 39) - XSS

Exploit Title: WhatsUpGold 22.1.0 - Stored Cross-Site Scripting XSS Date: April 18, 2023 Exploit Author: Andreas Finstad 4ndr34z Vendor Homepage: https://www.whatsupgold.com Version: v.22.1.0 Build 39 Tested on: Windows 2022 Server CVE : CVE-2023-35759 Reference:...

6.1CVSS6.3AI score0.0213EPSS
Exploits3
BDU FSTEC
BDU FSTEC
added 2024/01/11 12:0 a.m.7 views

The vulnerability of the microprogramming software for Aruba CX 6200F, 6300, 6400, 8320, 8325, and 8400 lies in the ability to perform write operations beyond the buffer boundaries, allowing an attacker to cause a service failure in the CDP process.

The vulnerability of the microprogrammed software of Aruba CX 6200F, 6300, 6400, 8320, 8325, and 8400 relates to writing beyond the buffer boundaries. Exploiting this vulnerability can allow a malicious actor to cause a service failure in the CDP process...

7.8CVSS7.4AI score0.00992EPSS
Exploits0References2Affected Software6
HackRead
HackRead
added 2023/12/24 12:3 p.m.18 views

Adobe Real-Time CDP: Personalized Customer Experience

By Owais Sultan In the current high-tech age, consumer data is a businesss most important asset as they progressively shifts towards… This is a post from HackRead.com Read the original post: Adobe Real-Time CDP: Personalized Customer Experience...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.31 views

Cisco Identity Services Engine DoS (CVE-2023-20213)

According to its self-reported version, Cisco Identity Services Engine Vulnerabilities is affected by a denial of service DoS vulnerability. A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of t...

4.3CVSS5.3AI score0.00302EPSS
Exploits0References3
NVD
NVD
added 2023/11/01 5:15 p.m.25 views

CVE-2023-20213

A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of the CDP process on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes CDP traffic...

4.3CVSS4.8AI score0.00302EPSS
Exploits0References1
Prion
Prion
added 2023/11/01 5:15 p.m.18 views

Design/Logic Flaw

A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of the CDP process on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes CDP traffic...

3.3CVSS4.9AI score0.00302EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/01 4:58 p.m.33 views

CVE-2023-20213

A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of the CDP process on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes CDP traffic...

4.3CVSS5.1AI score0.00302EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/11/01 4:58 p.m.4 views

CVE-2023-20213

A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of the CDP process on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes CDP traffic...

4.3CVSS7.3AI score0.00302EPSS
Exploits0References1
CVE
CVE
added 2023/11/01 4:58 p.m.79 views

CVE-2023-20213

CVE-2023-20213 merupakan DoS pada Cisco ISE melalui fitur pemrosesan CDP. Outputnya adalah crash pada proses CDP akibat bounds checking yang tidak memadai saat memproses lalu lintas CDP, memungkinkan penyerang adjacent tanpa autentikasi untuk memicu gangguan layanan. Dampaknya adalah terganggunya...

4.3CVSS4.9AI score0.00302EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2023/11/01 4:0 p.m.120 views

Cisco Identity Services Engine Vulnerabilities

Multiple vulnerabilities in Cisco Identity Services Engine ISE could allow an attacker to upload arbitrary files or disable Cisco Discovery Protocol CDP processing on an affected device. For more information about these vulnerabilities, see the Details "details" section of this advisory. Cisco ha...

4.7CVSS5.9AI score0.0057EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/11/01 12:0 a.m.6 views

PT-2023-17415 · Cisco · Cisco Ise

Name of the Vulnerable Software and Affected Versions: Cisco ISE affected versions not specified Description: A vulnerability in the CDP processing feature could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of the CDP process on an affected device. This i...

4.3CVSS4.8AI score0.00302EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/09/26 12:0 a.m.24 views

Debian DSA-5505-1 : lldpd - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5505 advisory. Matteo Memelli reported an out-of-bounds read flaw when parsing CDP addresses in lldpd, an implementation of the IEEE 802.1ab LLDP protocol. A remote attacker can tak...

9.8CVSS7.3AI score0.00954EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2023/09/13 2:24 p.m.15 views

CVE-2023-41910

A flaw was found in lldpd due to an out-of-bounds read in cdpdecode at daemon/protocols/cdp.c. By sending a specially crafted CDP PDU packet with specific CDPTLVADDRESSES TLVs, a remote attacker could cause a denial of service...

7.5CVSS9AI score0.00954EPSS
Exploits0References3
NVD
NVD
added 2023/09/05 7:15 a.m.7 views

CVE-2023-41910

An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDPTLVADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdpdecode in daemon/protocols/cdp.c...

9.8CVSS9.3AI score0.00954EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2023/09/05 7:15 a.m.26 views

CVE-2023-41910

An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDPTLVADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdpdecode in daemon/protocols/cdp.c...

9.8CVSS6.9AI score0.00954EPSS
Exploits0
Prion
Prion
added 2023/09/05 7:15 a.m.15 views

Out-of-bounds

An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDPTLVADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdpdecode in daemon/protocols/cdp.c...

7.5CVSS9.2AI score0.00954EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder