PT-2024-8605 · Nvidia · Nvidia Base Command Manager

Name of the Vulnerable Software and Affected Versions: NVIDIA Base Command Manager affected versions not specified Description: The issue is related to a missing authentication vulnerability in the CMDaemon component. A successful exploit of this vulnerability might lead to code execution, denial...

oFono 安全漏洞

oFono is an open source telephony communication framework open-sourced by UBports. A security vulnerability exists in oFono that stems from an uninitialized variable vulnerability found in the AT CMGR Command module...

SUSE CVE-2019-8325

An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since Gem::CommandManagerrun calls alerterror without escaping, escape sequence injection is possible. There are many ways to cause an error...

CVE-2021-42774

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a buffer overflow vulnerability in the remote firmware download feature that could allow remote unauthenticated users to perform various attacks. In...

CVE-2021-42774

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a buffer overflow vulnerability in the remote firmware download feature that could allow remote unauthenticated users to perform various attacks. In...

CVE-2021-42775

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a vulnerability in the remote firmware download feature that could allow a user to place or replace an arbitrary file on the remote host. In...

CVE-2021-42773

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, could allow a user to retrieve an arbitrary file from a remote host with the GetDumpFile command. In non-secure mode, the user is unauthenticated...

Command injection

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a vulnerability in the remote firmware download feature that could allow a user to place or replace an arbitrary file on the remote host. In...

Buffer overflow

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a buffer overflow vulnerability in the remote firmware download feature that could allow remote unauthenticated users to perform various attacks. In...

CVE-2021-42775

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a vulnerability in the remote firmware download feature that could allow a user to place or replace an arbitrary file on the remote host. In...

CVE-2021-42775

The CVE-2021-42775 entry concerns Broadcom Emulex HBA Manager/One Command Manager. Affected versions are before 11.4.425.0 and 12.8.542.31. If not installed in Strictly Local Management mode, the remote firmware download feature is vulnerable, allowing an unauthenticated user in non-secure mode t...

CVE-2021-42773

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, could allow a user to retrieve an arbitrary file from a remote host with the GetDumpFile command. In non-secure mode, the user is unauthenticated...

CVE-2021-42773

CVE-2021-42773 affects Broadcom Emulex HBA Manager/OneCommand Manager used in Broadcom Dell PowerEdge deployments. In affected versions prior to 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, an unauthenticated user could use the GetDumpFile command to retrieve an...

CVE-2021-42774

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a buffer overflow vulnerability in the remote firmware download feature that could allow remote unauthenticated users to perform various attacks. In...

CVE-2021-42774

CVE-2021-42774 concerns Broadcom Emulex HBA Manager/OneCommand Manager prior to 11.4.425.0 and 12.8.542.31. The vulnerability is a buffer overflow in the remote firmware download feature when the device is not installed in Strictly Local Management mode, enabling remote unauthenticated attacks. I...

CVE-2021-42772

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a buffer overflow vulnerability in the remote GetDumpFile command that could allow a user to attempt various attacks. In non-secure mode, the user i...

Buffer overflow

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a buffer overflow vulnerability in the remote GetDumpFile command that could allow a user to attempt various attacks. In non-secure mode, the user i...

CVE-2021-42772

CVE-2021-42772 affects Broadcom Emulex HBA Manager/OneCommand Manager prior to 11.4.425.0 and 12.8.542.31. The vulnerability is a buffer overflow in the remote GetDumpFile command when the product is not installed in Strictly Local Management mode, with the non-secure mode permitting unauthentica...

CVE-2021-42772

Broadcom Emulex HBA Manager/One Command Manager versions before 11.4.425.0 and 12.8.542.31, if not installed in Strictly Local Management mode, have a buffer overflow vulnerability in the remote GetDumpFile command that could allow a user to attempt various attacks. In non-secure mode, the user i...

rubygems: Escape sequence injection vulnerability in errors

An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since Gem::CommandManagerrun calls alerterror without escaping, escape sequence injection is possible. There are many ways to cause an error...