170 matches found
Malicious code in Be.Vlaandеren.Basіsregisters.CommandHanԁliոg.Idempotency (NuGet)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-4174 Malicious code in Be.Vlaandеren.Basіsregisters.CommandHanԁliոg.Idempotency (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in Be.Vlaaոderen.Basisregistеrs.CommandHandling (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in Be.Vlaaոdereո.Basisrеgistеrs.CommandHandling (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in Be.Vlaаnderеո.Basisregisters.CommandHandling.Idempotency.Miсrosoft (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in Bе.Vlaaոderen.Basіsregisters.CommandHandling.SqlStreаmStore (NuGet)
--- -= Per source details. Do not edit below this line.=-...
The vulnerability of the web server of the microprogramming software in the industrial cellular LTE modem OnCell G3470A-LTE allows a hacker to execute arbitrary code.
The vulnerability of the web server of the microprogramming software in the industrial cellular LTE modem OnCell G3470A-LTE is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to...
(Pwn2Own) Autel MaxiCharger AC Elite Business C50 BLE AppChargingControl Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Autel MaxiCharger AC Elite Business C50 charging stations. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The...
UBUNTU-CVE-2022-48650
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix memory leak in qlt24xxhandleabts Commit 8f394da36a36 "scsi: qla2xxx: Drop TARGETSCFLOOKUPLUNFROMTAG" made the qlt24xxhandleabts function return early if tcmqla2xxxfindcmdbytag didn't find a command, but it miss...
The vulnerability of the processAnalyticsReport method of the com.webos.service.cloudupload service in the LG WebOS operating system allows a hacker to elevate their privileges to the root level.
The vulnerability of the processAnalyticsReport method of the com.webos.service.cloudupload service in the LG WebOS operating system exists because measures to neutralize the special elements used in the operating system commands have not been taken. Exploiting this vulnerability allows a malicio...
The vulnerability of the svc_cifssupport utility in the Dell Unity Operating Environment (OE) system allows a malicious actor to execute arbitrary operating system commands with root privileges.
The vulnerability of the svccifssupport utility in the Dell Unity Operating Environment DELL Unity Operating Environment system exists due to the lack of measures taken to neutralize special elements used in the operating system’s commands. Exploiting this vulnerability allows an attacker to...
The vulnerability of the CLI interface of ArubaOS operating systems allows a perpetrator to execute arbitrary commands.
The vulnerability of the CLI interface of ArubaOS operating systems is related to the lack of measures taken to neutralize special elements used in operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
PT-2024-40844 · Git +1 · Cras
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-double-free crash. Technical details include a crash state with functions such as handle at command and handle at command...
GHSA-R7QV-8R2H-PG27 Multiple issues involving quote API in shlex
Issue 1: Failure to quote characters Affected versions of this crate allowed the bytes and \xa0 to appear unquoted and unescaped in command arguments. If the output of quote or join is passed to a shell, then what should be a single command argument could be interpreted as multiple arguments. Thi...
The vulnerability of the PAN-OS operating system arises from the lack of measures taken to neutralize special elements used in the operating system’s commands. This allows attackers to execute arbitrary code.
The vulnerability of the PAN-OS operating system exists due to the lack of measures taken to neutralize special elements used in the operating system’s commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the flupl function in D-Link G416 router microprogramming software allows a hacker to execute arbitrary code.
The vulnerability of the flupl function in D-Link G416 router microprogramming software is related to the failure to take measures to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by...
PT-2023-21817 · Wlan Hal · Wlan Hal
Name of the Vulnerable Software and Affected Versions: WLAN HAL affected versions not specified Description: The issue involves information disclosure in the WLAN HAL when handling commands through WMI interfaces. Recommendations: At the moment, there is no information about a newer version that...
DEBIAN-CVE-2023-36479
Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very specific command structure may have the wrong command executed. If a user sends a request to a org.eclipse.jetty.servlets.CGI Servlet for a binary with a space in its name, th...
PT-2023-7953 · D Link · D-Link G416
Name of the Vulnerable Software and Affected Versions: D-Link G416 affected versions not specified Description: The issue is related to the cfgsave upusb function in the D-Link G416 router's firmware, which does not properly neutralize special elements used in an operating system command. This ca...
ROS-2-1301
2.1301 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...