30 matches found
CVE-2026-28543
Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability...
EUVD-2026-9803
Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-28543
Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-28543
Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-28543
Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-28543
Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-28543
Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-28543
Technical details about CVE-2026-28543 are not publicly available in the provided documents. Monitor for updates from Huawei bulletins and relevant security advisories.
PT-2026-23423
Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2025-4635
A malicious user with administrative privileges in the web portal would be able to manipulate the Diagnostics module to obtain remote code execution on the local device as a low privileged user...
CVE-2025-4635
A malicious user with administrative privileges in the web portal would be able to manipulate the Diagnostics module to obtain remote code execution on the local device as a low privileged user...
CVE-2025-4635 Remote Code Execution
A malicious user with administrative privileges in the web portal would be able to manipulate the Diagnostics module to obtain remote code execution on the local device as a low privileged user...
CVE-2025-4635
CVE-2025-4635 affects the jct-aq Airpointer 2D device (diagnostics module) and is described as a remote code execution via manipulation of the Diagnostics module by a user with administrative privileges. The Red Hat and NVD entries corroborate that an attacker with high privileges in the web port...
jct-aq Airpointer 2D 输入验证错误漏洞
The jct-aq Airpointer 2D is a device for air quality monitoring from the Austrian company jct-aq. A security vulnerability exists in the jct-aq Airpointer 2D version 2.4.107-2, which stems from improper operation of the diagnostics module and could lead to remote code execution...
EUVD-2025-8862
Xorcom CompletePBX is vulnerable to a path traversal via the Diagnostics reporting module, which will allow reading of arbitrary files and additionally delete any retrieved file in place of the expected report. This issue affects CompletePBX: all versions up to and prior to 5.2.35...
PT-2025-13803
Name of the Vulnerable Software and Affected Versions Xorcom CompletePBX versions prior to 5.2.35 Description The issue affects the Diagnostics reporting module, allowing for path traversal. This enables the reading of arbitrary files and the deletion of any retrieved file in place of the expecte...
canTot
This is a Python-based CLI framework called "canTot" that is designed for CAN Bus hacking and exploitation. It is similar to an exploit framework but focused on known CAN Bus vulnerabilities or "fun CAN Bus hacks." The framework is made up of several modules, each with its own specific...
Oracle E-Business Suite 安全漏洞
Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management, and other functions. A security vulnerability exists in the Oracle...
Oracle Linux 6 : rsyslog / rsyslog7 (ELSA-2022-9783)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-9783 advisory. - Resolves CVE-2022-24903 Orabug: 34226447 rsyslog7 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...
CVE-2022-24903
Rsyslog is a rocket-fast system for log processing. Modules for TCP syslog reception have a potential heap buffer overflow when octet-counted framing is used. This can result in a segfault or some other malfunction. As of our understanding, this vulnerability can not be used for remote code...