14 matches found
MINI-P526-3RCP-V3VH
Bulletin has no description...
CVE-2021-31658
TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is affected by an Array index error. The interface that provides the "device description" function only judges the length of the received data, and does not filter special characters. This vulnerability will cause the application t...
EUVD-2000-0797
Malware in sbrugna...
gpio: prevent potential speculation leaks in gpio_device_get_desc()
...
Exploit for CVE-2024-5420
CVE-2024-5420XSS Description A vulnerability was found in ut...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an information disclosure issue in the gpiodevicegetdesc function...
qemu-kvm: 'qemu-img info' leads to host file read/write
A flaw was found in the QEMU disk image utility qemu-img 'info' command. A specially crafted image file containing a json: value describing block devices in QMP could cause the qemu-img process on the host to consume large amounts of memory or CPU time, leading to denial of service or read/write ...
CVE-2021-31658
TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is affected by an Array index error. The interface that provides the "device description" function only judges the length of the received data, and does not filter special characters. This vulnerability will cause the application t...
Design/Logic Flaw
TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is affected by an Array index error. The interface that provides the "device description" function only judges the length of the received data, and does not filter special characters. This vulnerability will cause the application t...
TP-Link TL-SG2005和TP-Link TL-SG2008 输入验证错误漏洞
Tp-link TP-Link TL-SG2005 and TP-Link TL-SG2008 are both switches from Tp-link. A security vulnerability exists in TP-Link TL-SG2005 and TL-SG2008. The vulnerability originates from version 1.0.0 of TL-SG2005 and TL-SG2008, which is affected by an array indexing error, whereby the interfaces that...
GNU Groff uses the current working directory to find a device description file which allows a local user to gain additional privileges by including a malicious postpro directive in the description file which is executed when another user runs groff.
...
CVE-2017-11345
Stack buffer overflow in networkmap in Asuswrt-Merlin firmware for ASUS devices and ASUS firmware for ASUS RT-AC5300, RTAC1900P, RT-AC68U, RT-AC68P, RT-AC88U, RT-AC66U, RT-AC66UB1, RT-AC58U, RT-AC56U, RT-AC55U, RT-AC52U, RT-AC51U, RT-N18U, RT-N66U, RT-N56U, RT-AC3200, RT-AC3100, RTAC1200GU,...
D-Link DIR-615 Rev H CSRF / Disclosure / Command Injection
Device Name: DIR-615 - Hardware revision H1 Vendor: D-Link ============ Device Description: ============ Delivering great wireless performance, network security and coverage, the D-Link Wireless N 300 Router DIR-615 is ideal for upgrading your existing wireless home network. Source:...
CVE-2000-0803
GNU Groff is affected by a local privilege escalation vulnerability in which the program searches the current working directory for a device description file. The underlying issue is a directory-based lookup (postpro directive) that, if a malicious device description file is present, can execute ...