Lucene search
K

7653 matches found

CVE
CVE
added 2023/01/10 8:56 p.m.81 views

CVE-2021-26402

CVE-2021-26402 describes insufficient bounds checking in the AMD Secure Processor (ASP) firmware during BIOS mailbox handling, enabling an attacker to write partially controlled data out-of-bounds into SMM or SEV-ES regions and potentially compromise integrity and availability. The issue is discu...

7.1CVSS7.2AI score0.0018EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/01/10 2:15 a.m.28 views

Authentication flaw

Zip4j through 2.11.2, as used in Threema and other products, does not always check the MAC when decrypting a ZIP archive...

2.6CVSS5.7AI score0.00619EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologies
added 2023/01/10 12:0 a.m.5 views

PT-2023-1485 · Amd · Amd Secure Encrypted Virtualization (Sev) Firmware

Name of the Vulnerable Software and Affected Versions: AMD Secure Encrypted Virtualization SEV firmware affected versions not specified Description: The issue is related to improper input validation and bounds checking in the SEV firmware, which may cause a buffer overflow in memory. This could...

5.5CVSS6.9AI score0.00185EPSS
Exploits0References6
CNVD
CNVD
added 2023/01/04 12:0 a.m.26 views

Tenda A15 SYSPS Parameter Stack Overflow Vulnerability

Tenda A15 is a WiFi extender from Tenda China. A stack overflow vulnerability exists in the Tenda A15 SYSPS parameter, which originates from a lack of length checking of input data in the SYSPS parameter of /goform/SysToolChangePwd, which can be exploited by an attacker to cause a denial of servi...

7.5CVSS7.5AI score0.00775EPSS
Exploits1References1
CNVD
CNVD
added 2023/01/04 12:0 a.m.22 views

Tenda A15 wepkey4 parameter stack overflow vulnerability

Tenda A15 is a WiFi extender from Tenda, China. A stack overflow vulnerability exists in the Tenda A15 wepkey4 parameter, which stems from a lack of length checking of input data in the wepkey4 parameter of /goform/WifiBasicSet, and could be exploited to execute arbitrary code on the system...

9.8CVSS3.7AI score0.00873EPSS
Exploits1References1
CNVD
CNVD
added 2023/01/04 12:0 a.m.22 views

Tenda A15 security parameter stack overflow vulnerability

Tenda A15 is a WiFi extender from Tenda, a Chinese company. A stack overflow vulnerability exists in the Tenda A15 security parameter, which originates from a lack of length checking of input data in the security parameter of /goform/WifiBasicSet, and can be exploited by an attacker to execute...

9.8CVSS9.8AI score0.00873EPSS
Exploits1References1
CNVD
CNVD
added 2023/01/04 12:0 a.m.20 views

Tenda A15 wepkey1 parameter stack overflow vulnerability

Tenda A15 is a WiFi extender from Tenda, China. A stack overflow vulnerability exists in the Tenda A15 wepkey1 parameter, which stems from a lack of length checking of input data in the wepkey1 parameter of /goform/WifiBasicSet, and can be exploited by attackers to execute arbitrary code on the...

9.8CVSS6.1AI score0.00873EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/01/04 12:0 a.m.4 views

Google Android OS和unisoc部分产品安全漏洞

Google Android is a set of Linux-based open source operating system by the American company Google Google. A security vulnerability exists in some Google Android OS and unisoc products, which stems from a lack of permission checking in the messaging service, leading to a local denial of service...

5.5CVSS5.6AI score0.00083EPSS
Exploits0References4
CNVD
CNVD
added 2023/01/04 12:0 a.m.20 views

Tenda A15 wepauth parameter stack overflow vulnerability

Tenda A15 is a WiFi extender from Tenda, China. A stack overflow vulnerability exists in the Tenda A15 wepauth parameter, which stems from a lack of length checking of input data in the wepauth parameter of /goform/WifiBasicSet, and can be exploited by attackers to execute arbitrary code on the...

9.8CVSS5.9AI score0.00873EPSS
Exploits1References1
CNVD
CNVD
added 2023/01/04 12:0 a.m.13 views

TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18946)

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the loginname parameter of the dographauth sub4061E0 function, which can be exploited by an attacker to execute arbitrary...

9.8CVSS9.8AI score0.00873EPSS
Exploits1References1
CNVD
CNVD
added 2023/01/04 12:0 a.m.20 views

TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18948)

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the REMOTEUSER parameter of the getaccess sub45AC2C function, which can be exploited by an attacker to execute arbitrary co...

9.8CVSS9.8AI score0.00873EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/01/04 12:0 a.m.5 views

Google Android OS和unisoc部分产品缓冲区错误漏洞

Google Android is a Linux-based open source operating system from the American company Google. A security vulnerability exists in some Google Android OS and unisoc products, which stems from a lack of bounds checking in the wlan driver, leading to a local denial of service...

5.5CVSS5.7AI score0.00084EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/01/04 12:0 a.m.2 views

UNISOC chipset 安全漏洞

The UNISOC chipset is an integrated circuit chipset from China's Zilight Zhanrui UNISOC. A security vulnerability exists in the UNISOC chipset that stems from a lack of privilege checking in the music service, which could lead to a local denial of service in the contact service without additional...

5.5CVSS5.7AI score0.00083EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/01/04 12:0 a.m.3 views

Google Android OS和unisoc部分产品缓冲区错误漏洞

Google Android is a Linux-based open source operating system from the American company Google. A security vulnerability exists in some Google Android OS and unisoc products, which stems from a lack of bounds checking in the wlan driver, leading to a local denial of service...

5.5CVSS5.6AI score0.00084EPSS
Exploits0References4
CNVD
CNVD
added 2023/01/04 12:0 a.m.12 views

TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18955)

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the wpsstaenrolleepin parameter in the setstaenrolleepin5g function, which can be exploited by an attacker to execute...

9.8CVSS9.8AI score0.00873EPSS
Exploits1References1
CNVD
CNVD
added 2023/01/04 12:0 a.m.16 views

TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18954)

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the wpsstaenrolleepin parameter in the setstaenrolleepin24g function, which can be exploited by an attacker to execute...

9.8CVSS9.8AI score0.00873EPSS
Exploits1References1
CNVD
CNVD
added 2023/01/04 12:0 a.m.16 views

TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18947)

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from the lack of size checking of input data in the wpsstaenrolleepin parameter in the dostaenrolleewifi function, which can be exploited by an attacker to execute...

9.8CVSS9.8AI score0.00873EPSS
Exploits1References1
CNVD
CNVD
added 2023/01/04 12:0 a.m.13 views

TRENDnet TEW-755AP Stack Overflow Vulnerability (CNVD-2023-18950)

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from the lack of size checking of input data in the setbgnum parameter of the icpsetbgimg sub41DD68 function, which can be exploited by an attacker to execute arbitrary...

9.8CVSS9.8AI score0.00966EPSS
Exploits1References1
CNVD
CNVD
added 2023/01/04 12:0 a.m.19 views

TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18953)

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from the lack of size checking of input data in the rejecturl parameter of the reject sub41BD60 function, which can be exploited by an attacker to execute arbitrary code...

9.8CVSS9.8AI score0.00873EPSS
Exploits1References1
CNVD
CNVD
added 2023/01/04 12:0 a.m.17 views

TRENDnet TEW-755AP Stack Overflow Vulnerability

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the reboottype parameter of the wizardipv6 sub41C380 function, which can be exploited by an attacker to execute arbitrary...

9.8CVSS9.8AI score0.00873EPSS
Exploits1References1
Rows per page
Query Builder