Lucene search
K

107 matches found

NVD
NVD
added 2023/07/14 7:15 p.m.22 views

CVE-2023-36850

An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Connectivity Fault ManagementCFM module of Juniper Networks Junos OS on MX Seriesexcept MPC10, MPC11 and LC9600 allows an adjacent attacker on the local broadcast domain to cause a Denial of ServiceDoS...

6.5CVSS0.00271EPSS
Exploits0References1
NVD
NVD
added 2023/07/14 6:15 p.m.22 views

CVE-2023-36848

An Improper Handling of Undefined Values vulnerability in the periodic packet management daemon PPMD of Juniper Networks Junos OS on MX Seriesexcept MPC10, MPC11 and LC9600 allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. When a malformed CFM packet is received, it...

6.5CVSS0.00271EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/07/14 6:6 p.m.22 views

CVE-2023-36850 Junos OS: MX Series: An MPC will crash upon receipt of a malformed CFM packet.

An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Connectivity Fault ManagementCFM module of Juniper Networks Junos OS on MX Seriesexcept MPC10, MPC11 and LC9600 allows an adjacent attacker on the local broadcast domain to cause a Denial of ServiceDoS...

6.5CVSS6.5AI score0.00271EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/14 6:6 p.m.14 views

CVE-2023-36850 Junos OS: MX Series: An MPC will crash upon receipt of a malformed CFM packet.

An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Connectivity Fault ManagementCFM module of Juniper Networks Junos OS on MX Seriesexcept MPC10, MPC11 and LC9600 allows an adjacent attacker on the local broadcast domain to cause a Denial of ServiceDoS...

6.5CVSS6.6AI score0.00271EPSS
Exploits0References1
CVE
CVE
added 2023/07/14 6:6 p.m.61 views

CVE-2023-36850

CVE-2023-36850 describes an improper validation of index/position/offset in Juniper Networks Junos OS CFM that causes the MPC on MX Series to crash when malformed CFM packets are received, leading to a sustained DoS if CFM is not configured. Affected: Junos OS on MX Series (excluding MPC10, MPC11...

6.5CVSS6.3AI score0.00271EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/14 5:52 p.m.24 views

CVE-2023-36848 Junos OS: MX Series: The FPC will crash on receiving a malformed CFM packet

An Improper Handling of Undefined Values vulnerability in the periodic packet management daemon PPMD of Juniper Networks Junos OS on MX Seriesexcept MPC10, MPC11 and LC9600 allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. When a malformed CFM packet is received, it...

6.5CVSS6.7AI score0.00271EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/14 5:52 p.m.23 views

CVE-2023-36848 Junos OS: MX Series: The FPC will crash on receiving a malformed CFM packet

An Improper Handling of Undefined Values vulnerability in the periodic packet management daemon PPMD of Juniper Networks Junos OS on MX Seriesexcept MPC10, MPC11 and LC9600 allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. When a malformed CFM packet is received, it...

6.5CVSS7.1AI score0.00271EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/07/12 12:0 a.m.5 views

PT-2023-6695 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS versions prior to 19.1R3-S10 on MX Series Juniper Networks Junos OS 19.2 versions prior to 19.2R3-S7 on MX Series Juniper Networks Junos OS 19.3 versions prior to 19.3R3-S8 on MX Series Juniper Networks Junos OS 19.4...

6.5CVSS6.4AI score0.00271EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2023/07/11 2:7 p.m.7 views

Exploit for Classic Buffer Overflow in Tenda Ac6_Firmware

CVE-2023-38823 Buffer Overflow in formSetCfm Affected mod...

9.8CVSS7.4AI score0.01203EPSS
Exploits3
GithubExploit
GithubExploit
added 2023/07/11 2:7 p.m.16 views

Exploit for Classic Buffer Overflow in Tenda Ac6_Firmware

Buffer Overflow in formSetCfm Affected models and firmwa...

9.8CVSS7.6AI score0.01203EPSS
Exploits3
GithubExploit
GithubExploit
added 2023/07/11 2:7 p.m.17 views

Exploit for Classic Buffer Overflow in Tenda Ac6_Firmware

Buffer Overflow in formSetCfm Affected models and firmwa...

9.8CVSS7.4AI score0.01203EPSS
Exploits3
0day.today
0day.today
added 2023/03/06 12:0 a.m.463 views

Lucee Authenticated Scheduled Job Code Execution Exploit

This Metasploit module can be used to execute a payload on Lucee servers that have an exposed administrative web interface. It's possible for an administrator to create a scheduled job that queries a remote ColdFusion file, which is then downloaded and executed when accessed. The payload is...

7.8AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:40 a.m.3 views

SUSE CVE-2017-13052

The CFM parser in tcpdump before 4.9.2 has a buffer over-read in print-cfm.c:cfmprint...

5.3CVSS7.5AI score0.03428EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/01/18 12:0 a.m.4 views

PT-2023-9913 · Unknown · Iamdroppy Phoenixcf

Name of the Vulnerable Software and Affected Versions: iamdroppy phoenixcf affected versions not specified Description: A critical vulnerability was found in iamdroppy phoenixcf, affecting an unknown functionality of the file content/2-Community/articles.cfm. The manipulation leads to sql...

9.8CVSS6.2AI score0.00658EPSS
Exploits0References6
OSV
OSV
added 2022/08/05 10:15 p.m.4 views

CVE-2022-24007

A buffer overflow vulnerability exists in the GetValue functionality of TCL LinkHub Mesh Wi-Fi MS1G0001.0014. A specially-crafted configuration value can lead to a buffer overflow. An attacker can modify a configuration value to trigger this vulnerability.This vulnerability represents all...

9.8CVSS7.7AI score0.01109EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/08/05 9:13 p.m.8 views

CVE-2022-24007

A buffer overflow vulnerability exists in the GetValue functionality of TCL LinkHub Mesh Wi-Fi MS1G0001.0014. A specially-crafted configuration value can lead to a buffer overflow. An attacker can modify a configuration value to trigger this vulnerability.This vulnerability represents all...

9.6CVSS9.6AI score0.01109EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/08/05 12:0 a.m.6 views

PT-2022-16408 · Tcl · Tcl Linkhub Mesh Wi-Fi

Name of the Vulnerable Software and Affected Versions: TCL LinkHub Mesh Wi-Fi MS1G 00 01.00 14 Description: A buffer overflow issue exists in the GetValue functionality. This can be triggered by a specially-crafted configuration value, allowing an attacker to modify the configuration and cause a...

9.8CVSS9.3AI score0.01109EPSS
Exploits1References2
OSV
OSV
added 2020/11/24 2:15 a.m.6 views

CVE-2020-15929

In Ortus TestBox 2.4.0 through 4.1.0, unvalidated query string parameters passed to system/runners/HTMLRunner.cfm allow an attacker to write an arbitrary CFM file within the application's context containing attacker-defined CFML tags, leading to Remote Code Execution...

9.8CVSS7.5AI score0.04549EPSS
Exploits1References1
Kitploit
Kitploit
added 2020/11/03 11:30 a.m.50 views

Webshell-Analyzer - Web Shell Scanner And Analyzer

Web shell analyzer is a cross platform stand-alone binary built solely for the purpose of identifying, decoding, and tagging files that are suspected to be web shells. The web shell analyzer is the bigger brother to the web shell scanner project http://github.com/tstillz/webshell-scan, which only...

7AI score
Exploits0References3
Cvelist
Cvelist
added 2020/04/08 7:26 p.m.17 views

CVE-2020-1639 Junos OS: A crafted Ethernet OAM packet received by Junos may cause the Ethernet OAM connectivity fault management process (CFM) to core.

When an attacker sends a specific crafted Ethernet Operation, Administration, and Maintenance Ethernet OAM packet to a target device, it may improperly handle the incoming malformed data and fail to sanitize this incoming data resulting in an overflow condition. This overflow condition in Juniper...

7.5CVSS7.5AI score0.01091EPSS
Exploits0References1
Rows per page
Query Builder