20 matches found
EUVD-2021-25725
Malware in sbrugna...
EUVD-2018-9676
Malware in sbrugna...
EUVD-2019-4095
Malware in sbrugna...
EUVD-2015-3330
Malware in sbrugna...
CVE-2021-39364
Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing for camera control after ARP cache poisoning has been achieved...
CVE-2019-12500
The Xiaomi M365 scooter 2019-02-12 before 1.5.1 allows spoofing of "suddenly accelerate" commands. This occurs because Bluetooth Low Energy commands have no server-side authentication check. Other affected commands include suddenly braking, locking, and unlocking...
CVE-2022-2107 ICSA-22-200-01 MiCODUS MV720 GPS tracker Use of Hard-coded Credentials
The MiCODUS MV720 GPS tracker API server has an authentication mechanism that allows devices to use a hard-coded master password. This may allow an attacker to send SMS commands directly to the GPS tracker as if they were coming from the GPS owner’s mobile number...
CVE-2021-39364
Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing for camera control after ARP cache poisoning has been achieved...
Command injection
Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing for camera control after ARP cache poisoning has been achieved...
CVE-2021-39364
Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing for camera control after ARP cache poisoning has been achieved...
CVE-2021-39364
The CVE-2021-39364 issue affects Honeywell HDZP252DI (1.00.HW02.4) and HBW2PER1 (1.000.HW01.3). It enables command spoofing for camera control after ARP cache poisoning, per multiple connected sources. Root cause: ARP spoofing enabling spoofed commands. No exploitation details or specific mitigat...
Honeywell HDZP252DI 1.00.HW02.4 安全漏洞
Honeywell Hdzp252Di is a Performance Series Ip Camera from Honeywell USA. A security vulnerability exists in Honeywell HDZP252DI 1.00.HW02.4 that originates from allowing command spoofing for camera control after ARP cache poisoning...
x26-Cogs 安全漏洞
X26-Cogs is a Red V3 generic cog from the individual developers at Twentysix. A security vulnerability exists in x26-Cogs that allows a user with administrator privileges to issue commands as if they were other users sharing the same server. If the bot owner shares the same server as an attacker...
CVE-2019-12500
The CVE-2019-12500 entry concerns the Xiaomi M365 scooter. The vulnerability is rooted in Bluetooth Low Energy commands lacking server-side authentication, enabling spoofing of critical controls such as a sudden acceleration, braking, locking, and unlocking. Affected firmware is prior to 1.5.1. D...
Mageia: Security Advisory (MGASA-2015-0337)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2015-0337 Updated openafs package fixes security vulnerabilities
Updated openafs packages fix security vulnerabilities: Memory allocated by vos for VLDB entry structures was not cleared prior to use, meaning stack data could be sent over the network, possibly in the clear if crypt mode was not in use CVE-2015-3282. The default use by bos of clear rather than...
OpenAFS 'bos' Command Spoofing Vulnerability
OpenAFS is an open source distributed file system that allows sharing of files and resources between systems over local and wide area networks. A security vulnerability exists in OpenAFS 1.6.12 and earlier versions. An attacker can exploit the vulnerability to forge RPC commands in a network...
CVE-2015-3283
OpenAFS before 1.6.13 allows remote attackers to spoof bos commands via unspecified vectors...
QNX PPPoEd daemon vulnerable to command spoofing
Overview The QNX PPPoEd daemon is vulnerable to command spoofing that may lead to arbitrary code execution. Description QNX is an RTOS Realtime Operating System. QNX is used in many different devices and industries, including, but not limited to routers manufacturing and processing medical...
CVE-2000-1159
NAI Sniffer Agent allows remote attackers to gain privileges on the agent by sniffing the initial UDP authentication packets and spoofing commands...