34 matches found
Malicious Package
Overview dws-dx is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
MAL-2026-280 Malicious code in dws-dx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1848d83c748ccd9cbb44be0e7d1b8e97b061b5f8f5214616639aea3339b6058b The package dws-dx was found to contain malicious code. Source: ghsa-malware 1e1aaa27dc21f4ca10b5c3d7ae20cf56d8ede985793d6dd4654d34b1716b3d7b Any...
EUVD-2026-3075
Malicious code in dws-dx npm...
Malicious code in dws-dx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1848d83c748ccd9cbb44be0e7d1b8e97b061b5f8f5214616639aea3339b6058b The package dws-dx was found to contain malicious code. Source: ghsa-malware 1e1aaa27dc21f4ca10b5c3d7ae20cf56d8ede985793d6dd4654d34b1716b3d7b Any...
EUVD-2007-5350
Malware in sbrugna...
CVE-2011-10012
NetOp now part of Impero Software Remote Control Client v9.5 is vulnerable to a stack-based buffer overflow when processing .dws configuration files. If a .dws file contains a string longer than 520 bytes, the application fails to perform proper bounds checking, allowing an attacker to execute...
CVE-2011-10012 NetOp Remote Control Client 9.5 .dws File Buffer Overflow
NetOp now part of Impero Software Remote Control Client v9.5 is vulnerable to a stack-based buffer overflow when processing .dws configuration files. If a .dws file contains a string longer than 520 bytes, the application fails to perform proper bounds checking, allowing an attacker to execute...
CVE-2024-33335
SQL Injection vulnerability in H3C technology company SeaSQL DWS V2.0 allows a remote attacker to execute arbitrary code via a crafted file...
The vulnerability of the set_ws_action function in the /dws/api/ section of the Tenda DAP-1520 router’s software allows a hacker to execute arbitrary code.
The vulnerability of the setwsaction function in the /dws/api/ endpoint of the Tenda DAP-1520 router’s software is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code by using the host parameter...
CVE-2025-2621
A vulnerability was found in D-Link DAP-1620 1.03 and classified as critical. This issue affects the function checkdwscookie of the file /storage. The manipulation of the argument uid leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the...
CVE-2025-2619
A vulnerability, which was classified as critical, was found in D-Link DAP-1620 1.03. This affects the function checkdwscookie of the file /storage of the component Cookie Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit h...
CVE-2025-1538
A vulnerability classified as critical was found in D-Link DAP-1320 1.00. Affected by this vulnerability is the function setwsaction of the file /dws/api/. The manipulation leads to heap-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and m...
D-Link DAP-1320 安全漏洞
The D-Link DAP-1320 is a wireless signal extender from China-based AUO D-Link. The D-Link DAP-1320 suffers from a stack buffer overflow vulnerability that originates from the function setwsaction in the file /dws/api/. An attacker can exploit this vulnerability to cause a program crash or even...
CVE-2024-33335
SQL Injection vulnerability in H3C technology company SeaSQL DWS V2.0 allows a remote attacker to execute arbitrary code via a crafted file...
CVE-2024-33335
SQL Injection vulnerability in H3C technology company SeaSQL DWS V2.0 allows a remote attacker to execute arbitrary code via a crafted file...
PT-2024-25209 · H3C · H3C Seasql Dws
Name of the Vulnerable Software and Affected Versions: H3C SeaSQL DWS version 2.0 Description: The issue allows a remote attacker to execute arbitrary code via a crafted file. This is a result of a SQL Injection vulnerability in the H3C SeaSQL DWS product. Recommendations: For H3C SeaSQL DWS...
H3C SeaSQL DWS SQL Injection Vulnerability
H3C SeaSQL DWS is a distributed analytic database from China's Xinhua San H3C. A SQL injection vulnerability exists in H3C SeaSQL DWS version v.2.0, which originates from a vulnerability that allows remote attackers to execute arbitrary code via a crafted file...
CVE-2024-33335
CVE-2024-33335 concerns a SQL Injection vulnerability in H3C SeaSQL DWS version 2.0 that could allow a remote attacker to execute arbitrary code via a crafted file. The Red Hat/NVD/CNNVD/CVE and PT-Security entries consistently identify SeaSQL DWS 2.0 as affected and describe the issue as SQL inj...
Authentication flaw
Dell EMC OpenManage Server Administrator OMSA version 9.5 Microsoft Windows installations with Distributed Web Server DWS enabled configuration contains an authentication bypass vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to gain admin access on t...
Netop Remote Control DWS File Stack Buffer Overflow
A buffer overflow vulnerability has been reported in Netop Remote Control. The vulnerability is due to insufficient bounds checking when handling a specially crafted command string within a DWS file. A remote attacker can exploit this issue by enticing a target user to open a specially crafted DW...