17 matches found
EUVD-2005-2029
Malware in sbrugna...
EUVD-2023-25670
Malicious code in bioql PyPI...
EUVD-2022-31991
Malicious code in bioql PyPI...
CVE-2023-21502
Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands...
CVE-2005-2027
Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 does not properly restrict certain debugging commands to the ADMIN account, which could allow attackers to obtain sensitive information or modify the registry...
Zyxel ATP Security Vulnerability
Zyxel ATP is a firewall from China Heqin Zyxel. A security vulnerability exists in the Zyxel ATP series that stems from an incorrect privilege management vulnerability when debugging CLI commands, which allows an authenticated, local attacker to access system files on the affected device. Affecte...
CVE-2023-21502
Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands...
CVE-2023-21502
Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands...
Input validation
Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands...
CVE-2023-21502
CVE-2023-21502 affects the FactoryTest application prior to Samsung SMR May-2023 Release 1. Root cause is improper input validation, enabling local privilege escalation via debugging commands. Public details consistently describe local access requirements and privilege escalation; no remote/vecto...
SAMSUNG Mobile devices 输入验证错误漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, and more, from South Korea's Samsung SAMSUNG. A security vulnerability in SAMSUNG Mobile devices SMR May-2023 Release 1 previously existed in the FactoryTest application that allowed a local attacker to...
Samsung Mobile Device Information Disclosure Vulnerability (CNVD-2020-29854)
Android is a free and open source operating system from Google based on the Linux kernel without GNU components. An information disclosure vulnerability exists in Samsung mobile devices, which can be exploited by attackers to access data with the help of Bluetooth debugging commands...
OpenJDK: insufficient checks of JDWP packets (Hotspot, 8159519)
It was discovered that the Hotspot component of OpenJDK did not properly check received Java Debug Wire Protocol JDWP packets. An attacker could possibly use this flaw to send debugging commands to a Java program running with debugging enabled if they could make victim's browser send HTTP request...
CVE-2016-5573
It was discovered that the Hotspot component of OpenJDK did not properly check received Java Debug Wire Protocol JDWP packets. An attacker could possibly use this flaw to send debugging commands to a Java program running with debugging enabled if they could make victim's browser send HTTP request...
Websense Appliance Manager - Command Injection
Abstract A command injection vulnerability was found in Websense Appliance Manager that allows an attacker to execute arbitrary code on the appliance. This issue can be combined with other vulnerabilities, like Cross-Site Scripting, to perform a remote unauthenticated attacks to compromise the...
CVE-2005-2027
Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 does not properly restrict certain debugging commands to the ADMIN account, which could allow attackers to obtain sensitive information or modify the registry...
CVE-2005-2027
Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 does not properly restrict certain debugging commands to the ADMIN account, which could allow attackers to obtain sensitive information or modify the registry...