Lucene search
+L

8 matches found

The Hacker News
The Hacker News
added 2023/04/01 4:51 a.m.107 views

Cacti, Realtek, and IBM Aspera Faspex Vulnerabilities Under Active Exploitation

Critical security flaws in Cacti, Realtek, and IBM Aspera Faspex are being exploited by various threat actors in hacks targeting unpatched systems. This entails the abuse of CVE-2022-46169 CVSS score: 9.8 and CVE-2021-35394 CVSS score: 9.8 to deliver MooBot and ShellBot aka PerlBot, Fortinet...

10CVSS10.3AI score0.99968EPSS
Exploits55
The Hacker News
The Hacker News
added 2023/01/30 9:30 a.m.119 views

Realtek Vulnerability Under Attack: Over 134 Million Attempts to Hack IoT Devices

Researchers are warning about a spike in exploitation attempts weaponizing a now-patched critical remote code execution flaw in Realtek Jungle SDK since the start of August 2022. According to Palo Alto Networks Unit 42, the ongoing campaign is said to have recorded 134 million exploit attempts as...

10CVSS2AI score0.99861EPSS
Exploits2
Check Point Advisories
Check Point Advisories
added 2021/08/31 12:0 a.m.21 views

Realtek Jungle SDK Command Injection (CVE-2021-35394)

A command injection vulnerability exists in Realtek Jungle SDK. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

10CVSS5.9AI score0.99861EPSS
Exploits2
VulnCheck KEV
VulnCheck KEV
added 2021/08/27 12:0 a.m.5 views

VulnCheck KEV: CVE-2021-35394

RealTek Jungle SDK contains multiple memory corruption vulnerabilities which can allow an attacker to perform remote code execution...

10CVSS7.7AI score0.99861EPSS
Exploits2References1
The Hacker News
The Hacker News
added 2021/08/17 6:19 a.m.121 views

Multiple Flaws Affecting Realtek Wi-Fi SDKs Impact Nearly a Million IoT Devices

Taiwanese chip designer Realtek is warning of four security vulnerabilities in three software development kits SDKs accompanying its WiFi modules, which are used in almost 200 IoT devices made by at least 65 vendors. The flaws, which affect Realtek SDK v2.x, Realtek "Jungle" SDK...

10CVSS0.99861EPSS
Exploits4
Circl
Circl
added 2021/08/16 4:14 p.m.10 views

CVE-2021-35394

creationtimestamp| type| source ---|---|--- 2021-08-16 16:14:35+00:00| seen| https://t.me/cibsecurity/27375 2021-08-17 19:18:26+00:00| seen| https://t.me/NeKaspersky/1142 2021-08-18 16:31:58+00:00| seen| https://t.me/sysodmins/12727 2021-09-01 11:53:46+00:00| published-proof-of-concept|...

10CVSS7.5AI score0.99861EPSS
Exploits2References14
CVE
CVE
added 2021/08/16 11:7 a.m.1244 views

CVE-2021-35394

Realtek Jungle SDK vulnerable versions are 2.x up to 3.4.14B. The CVE-2021-35394 issue involves the UDPServer/MP Daemon (management interface) suffering multiple memory corruption flaws and an arbitrary command injection, enabling remote unauthenticated code execution. Related connected documents...

10CVSS10AI score0.99861EPSS
In wildExploits2References5Affected Software1
Vulnrichment
Vulnrichment
added 2021/08/16 11:7 a.m.16 views

CVE-2021-35394

Realtek Jungle SDK version v2.x up to v3.4.14B provides a diagnostic tool called 'MP Daemon' that is usually compiled as 'UDPServer' binary. The binary is affected by multiple memory corruption vulnerabilities and an arbitrary command injection vulnerability that can be exploited by remote...

10AI score0.99861EPSS
Exploits2References4
Rows per page
Query Builder