CVE-2022-37814

Tenda AC1206 V15.03.06.23 was discovered to contain multiple stack overflows via the deviceMac and the deviceid parameters in the function addWifiMacFilter...

EUVD-2020-5405

Malware in sbrugna...

EUVD-2022-40423

Malicious code in bioql PyPI...

EUVD-2022-3897

Malicious code in bioql PyPI...

CVE-2020-15873

In LibreNMS before 1.65.1, an authenticated attacker can achieve SQL Injection via the customoid.inc.php deviceid POST parameter to ajaxform.php...

Microsoft CLIPSP.SYS License update privilege escalation vulnerability

Talos Vulnerability Report TALOS-2024-1966 Microsoft CLIPSP.SYS License update privilege escalation vulnerability August 13, 2024 CVE Number CVE-2024-38186 SUMMARY A privilege escalation vulnerability exists in the License update functionality of Microsoft CLIPSP.SYS 10.0.22621 Build 22621,...

Macrovideo v380pro 安全漏洞

Macrovideo v380pro is a video surveillance service from Macrovideo. A security vulnerability exists in Macrovideo v380pro version 1.4.97, which stems from a deviceid and password being sent out when sharing a device...

Design/Logic Flaw

The userid and deviceid on the Ourphoto App version 1.4.1 /device/ end-points both suffer from insecure direct object reference vulnerabilities. Other end-users userid and deviceid values can be enumerated by incrementing or decrementing id numbers. The impact of this vulnerability allows an...

CVE-2022-37814

Tenda AC1206 V15.03.06.23 was discovered to contain multiple stack overflows via the deviceMac and the deviceid parameters in the function addWifiMacFilter...

Stack overflow

Tenda AC1206 V15.03.06.23 was discovered to contain multiple stack overflows via the deviceMac and the deviceid parameters in the function addWifiMacFilter...

CVE-2022-37814

Tenda AC1206 V15.03.06.23 was discovered to contain multiple stack overflows via the deviceMac and the deviceid parameters in the function addWifiMacFilter...

GHSA-G5R6-VRMX-9GWJ LibreNMS SQL Injection vulnerability

In LibreNMS before 1.65.1, an authenticated attacker can achieve SQL Injection via the customoid.inc.php deviceid POST parameter to ajaxform.php...

LibreNMS SQL Injection vulnerability

In LibreNMS before 1.65.1, an authenticated attacker can achieve SQL Injection via the customoid.inc.php deviceid POST parameter to ajaxform.php...

CVE-2020-13129

Stashcat app (versions up to 3.9.1 on macOS/Windows/Android/iOS) is affected by a information-disclosure flaw where a GET request includes client_key and device_id in the query string, allowing an observer with access to web server logs to read sensitive data. CVSSv3.1 base score 7.2 ( HIGH ) wit...

ERROR_NO_DEVICE_ID is thrown while trying to load a driver using Veeam Agent Recovery Media

Challenge When performing a Bare Metal Recovery, storage or network devices are not visible in the system, and when attempting to load device drivers, the following error occurs: Failed to install driver from INF file Failed to install driver. Error code: ERRORNODEVICEID Solution Verify Correct...