17 matches found
CVE-2019-16300
An issue was discovered in Open Network Operating System ONOS 1.14. In the access control application org.onosproject.acl, the host event listener does not handle the following event types: HOSTREMOVED. In combination with other applications, this could lead to the absence of intended code...
EUVD-2007-2622
Malware in sbrugna...
EUVD-2019-7094
Malware in sbrugna...
EUVD-2021-33443
Malicious code in bioql PyPI...
CVE-2025-57882 AutomationDirect CLICK PLUS Improper Resource Shutdown or Release
An improper resource shutdown or release vulnerability has been identified in the Click Plus C2-03CPU-2 device running firmware version 3.60. The vulnerability allows an unauthenticated attacker to perform a denial-of-service attack by exhausting all available device sessions in the Remote PLC...
CVE-2022-42892
A vulnerability has been identified in syngo Dynamics All versions VA40G HF01. syngo Dynamics application server hosts a web service using an operation with improper write access control that could allow directory listing in any folder accessible to the account assigned to the website’s applicati...
Dell iDRAC Service Module < 5.3.1.0 Multiple Vulnerabilities
Dell iDRAC Service Module version 5.3.0.0 and prior, contains multiple Out-of-bound Write Vulnerabilities. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service event. Note that Nessus has not tested for this issue but has instead relied only on the...
The vulnerability of the CodeMeter license control application, related to the execution of operations outside the buffer in memory, allows a violator to execute arbitrary code.
The vulnerability of the CodeMeter license control application relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
CVE-2022-31593
SAP Business One client - version 10.0 allows an attacker with low privileges, to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...
CVE-2021-44530
An injection vulnerability exists in a third-party library used in UniFi Network Version 6.5.53 and earlier Log4J CVE-2021-44228 allows a malicious actor to control the application...
WAFW00F v1.0.0 - Detect All The Web Application Firewall!
WAFW00F identifies and fingerprints Web Application Firewall WAF products. How does it work? To do its magic, WAFW00F does the following: Sends a normal HTTP request and analyses the response; this identifies a number of WAF solutions. If that is not successful, it sends a number of potentially...
ASUS PCE-AC56 WLAN Card Utilities (PCAUSA Rawether Windows 10 x64) - Local Privilege Escalation Expl
Exploit for windows platform in category local exploits Rawether for Windows is a framework that facilitates communication between an application and the NDIS miniport driver. It’s produced by a company named Printing Communications Assoc., Inc. PCAUSA, which seems to be no longer operating...
CVE-2010-4687
STCAPP aka the SCCP telephony control application on Cisco IOS before 15.01XA1 does not properly handle multiple calls to a shared line, which allows remote attackers to cause a denial of service port hang by simultaneously ending two calls that were controlled by CallManager Express CME, aka Bug...
NetSupport Manager Client Spoofing Remote Authentication Bypass
NetSupport Manager NSM, a multi-platform remote control application, is installed on the remote host. According to its version, the NetSupport Manager client component on the remote host does not properly handle authentication sessions. A remote attacker may be able to leverage this issue to pose...
Bradford CampusManager v3.1(6) Sensitive Data Disclosure
Bradford CampusManager v3.16 Sensitive Data Disclosure The following directories should be protected from world readability. Child folders include backup, log, and configuration files. http://cmnms.target.com:8080/runTime/ http://cmnms.target.com:8080/remediationReports/ Vulnerable: CampusManager...
Security Best Practice: Domains Block List Protection - Blocking LogMeIn
LogMeIn is a remote control application that provides access to any Windows PC from anywhere in the world. It only requires a computer connected to the Internet. The user can remotely access a target computer and have a full desktop view and complete control of everything on it, including: Remote...
Novell Client login form enables reading and writing from and to the clipboard of the logged-in user
Suggested Risk Level: Low. Type of Risk: Information Leakage, Information Injection, Unauthorized Access. Affected Software: Novell Client for Windows, versions 4.9 and 4.8 On windows XP Pro and Windows 2000 Workstation. This versions are the only one tested, thus other version may be vulnerable ...