194 matches found
CVE-2024-3788
Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes SSI, through License /admin/CDPUsers. Exploitation of this vulnerability could allow a remote user to execute arbitrary code...
cdp-andorre.centredoc.fr Cross Site Scripting vulnerability OBB-3921956
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
cdp-online.nl Improper Access Control vulnerability OBB-3863178
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
WhatsUp Gold 2022 22.1.0 Build 39 Cross Site Scripting
Exploit Title: WhatsUpGold 22.1.0 - Stored Cross-Site Scripting XSS Date: April 18, 2023 Exploit Author: Andreas Finstad 4ndr34z Vendor Homepage: https://www.whatsupgold.com Version: v.22.1.0 Build 39 Tested on: Windows 2022 Server CVE : CVE-2023-35759 Reference:...
WhatsUp Gold 2022 (22.1.0 Build 39) - XSS
Exploit Title: WhatsUpGold 22.1.0 - Stored Cross-Site Scripting XSS Date: April 18, 2023 Exploit Author: Andreas Finstad 4ndr34z Vendor Homepage: https://www.whatsupgold.com Version: v.22.1.0 Build 39 Tested on: Windows 2022 Server CVE : CVE-2023-35759 Reference:...
The vulnerability of the microprogramming software for Aruba CX 6200F, 6300, 6400, 8320, 8325, and 8400 lies in the ability to perform write operations beyond the buffer boundaries, allowing an attacker to cause a service failure in the CDP process.
The vulnerability of the microprogrammed software of Aruba CX 6200F, 6300, 6400, 8320, 8325, and 8400 relates to writing beyond the buffer boundaries. Exploiting this vulnerability can allow a malicious actor to cause a service failure in the CDP process...
Adobe Real-Time CDP: Personalized Customer Experience
By Owais Sultan In the current high-tech age, consumer data is a businesss most important asset as they progressively shifts towards… This is a post from HackRead.com Read the original post: Adobe Real-Time CDP: Personalized Customer Experience...
Cisco Identity Services Engine DoS (CVE-2023-20213)
According to its self-reported version, Cisco Identity Services Engine Vulnerabilities is affected by a denial of service DoS vulnerability. A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of t...
CVE-2023-20213
A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of the CDP process on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes CDP traffic...
Design/Logic Flaw
A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of the CDP process on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes CDP traffic...
CVE-2023-20213
A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of the CDP process on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes CDP traffic...
CVE-2023-20213
A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of the CDP process on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes CDP traffic...
CVE-2023-20213
CVE-2023-20213 merupakan DoS pada Cisco ISE melalui fitur pemrosesan CDP. Outputnya adalah crash pada proses CDP akibat bounds checking yang tidak memadai saat memproses lalu lintas CDP, memungkinkan penyerang adjacent tanpa autentikasi untuk memicu gangguan layanan. Dampaknya adalah terganggunya...
Cisco Identity Services Engine Vulnerabilities
Multiple vulnerabilities in Cisco Identity Services Engine ISE could allow an attacker to upload arbitrary files or disable Cisco Discovery Protocol CDP processing on an affected device. For more information about these vulnerabilities, see the Details "details" section of this advisory. Cisco ha...
PT-2023-17415 · Cisco · Cisco Ise
Name of the Vulnerable Software and Affected Versions: Cisco ISE affected versions not specified Description: A vulnerability in the CDP processing feature could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of the CDP process on an affected device. This i...
Debian DSA-5505-1 : lldpd - security update
The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5505 advisory. Matteo Memelli reported an out-of-bounds read flaw when parsing CDP addresses in lldpd, an implementation of the IEEE 802.1ab LLDP protocol. A remote attacker can tak...
CVE-2023-41910
A flaw was found in lldpd due to an out-of-bounds read in cdpdecode at daemon/protocols/cdp.c. By sending a specially crafted CDP PDU packet with specific CDPTLVADDRESSES TLVs, a remote attacker could cause a denial of service...
CVE-2023-41910
An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDPTLVADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdpdecode in daemon/protocols/cdp.c...
CVE-2023-41910
An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDPTLVADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdpdecode in daemon/protocols/cdp.c...
Out-of-bounds
An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDPTLVADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdpdecode in daemon/protocols/cdp.c...