Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-9074

Malicious code in bioql PyPI...

10CVSS9.5AI score0.0173EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:32 p.m.7 views

CVE-2021-21906

Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations. The Garrett iC Module exposes an authenticated CLI over TCP port 6877. This interface is used by a secondary GUI client, called “CMA...

9CVSS7.3AI score0.00974EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:12 p.m.8 views

CVE-2021-21901

A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to memcpy. An attacker can send a malicious packet to trigger this...

9.8CVSS7.3AI score0.01556EPSS
Exploits1References1
NVD
NVD
added 2021/12/22 7:15 p.m.31 views

CVE-2021-21901

A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to memcpy. An attacker can send a malicious packet to trigger this...

9.8CVSS0.01556EPSS
Exploits1References1
NVD
NVD
added 2021/12/22 7:15 p.m.34 views

CVE-2021-21903

A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to strcpy. An attacker can send a malicious packet to trigger this...

10CVSS0.0173EPSS
Exploits1References1
Prion
Prion
added 2021/12/22 7:15 p.m.17 views

Authentication flaw

An authentication bypass vulnerability exists in the CMA runserver6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0. A properly-timed network connection can lead to authentication bypass via session hijacking. An attacker can send a sequence of requests to trigger this...

9.3CVSS8.1AI score0.01723EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/12/22 7:15 p.m.22 views

Directory traversal

A directory traversal vulnerability exists in the CMA CLI getenv command functionality of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted command line argument can lead to local file inclusion. An attacker can provide malicious input to trigger this vulnerability...

4CVSS5.1AI score0.01423EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/12/22 7:15 p.m.22 views

Stack overflow

Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations. The Garrett iC Module exposes an authenticated CLI over TCP port 6877. This interface is used by a secondary GUI client, called “CMA...

9CVSS7.1AI score0.00974EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/12/22 7:15 p.m.19 views

Directory traversal

A directory traversal vulnerability exists in the CMA CLI setenv command of Garrett Metal Detectors’ iC Module CMA Version 5.0. An attacker can provide malicious input to trigger this vulnerability...

9CVSS6.9AI score0.02817EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/12/22 6:6 p.m.63 views

CVE-2021-21903

CVE-2021-21903 is a stack-based buffer overflow in Garrett Metal Detectors’ iC Module CMA Version 5.0. The vulnerability occurs in the CMA check_udp_crc path where a UDP-CRC field is copied with strcpy into an 8-byte buffer (input_crc_str) without bounds checking, enabling remote attackers to ove...

10CVSS9.5AI score0.0173EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/12/22 6:6 p.m.34 views

CVE-2021-21903

A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to strcpy. An attacker can send a malicious packet to trigger this...

9.8CVSS9.8AI score0.0173EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/12/22 6:6 p.m.36 views

CVE-2021-21902

An authentication bypass vulnerability exists in the CMA runserver6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0. A properly-timed network connection can lead to authentication bypass via session hijacking. An attacker can send a sequence of requests to trigger this...

7.5CVSS8.4AI score0.01723EPSS
Exploits1References1
CVE
CVE
added 2021/12/22 6:6 p.m.66 views

CVE-2021-21902

The TALOS advisory documents an authentication bypass in Garrett Metal Detectors iC Module CMA Version 5.0, specifically in the CMA run_server_6877 function. A race condition allows an attacker with no password to hijack an authenticated session by copying the attacker’s socket over the legitimat...

9.3CVSS8.1AI score0.01723EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/12/22 6:6 p.m.33 views

CVE-2021-21901

A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to memcpy. An attacker can send a malicious packet to trigger this...

9.8CVSS9AI score0.01556EPSS
Exploits1References1
Rows per page
Query Builder