EUVD-2022-6445

Malicious code in bioql PyPI...

CVE-2019-6288

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCUSHELL URI...

GO-2022-0509 KubeEdge DoS when signing the CSR from EdgeCore in github.com/kubeedge/kubeedge

KubeEdge DoS when signing the CSR from EdgeCore in github.com/kubeedge/kubeedge...

GHSA-X3PX-2P95-F6JR KubeEdge DoS when signing the CSR from EdgeCore

Impact EdgeCore may be susceptible to a DoS attack on CloudHub if an attacker was to send a well-crafted HTTP request to /edge.crt. If an attacker can send a well-crafted HTTP request to CloudHub, and that request has a very large body, that request could crash the HTTP service through a memory...

KubeEdge DoS when signing the CSR from EdgeCore

Impact EdgeCore may be susceptible to a DoS attack on CloudHub if an attacker was to send a well-crafted HTTP request to /edge.crt. If an attacker can send a well-crafted HTTP request to CloudHub, and that request has a very large body, that request could crash the HTTP service through a memory...

CVE-2022-31075

CVE-2022-31075 affects KubeEdge EdgeCore when the CloudHub module is enabled. A maliciously crafted HTTP request to /edge.crt with a very large body can exhaust memory and crash the CloudHub HTTP service, leading to a denial of service. This vulnerability exists in versions prior to 1.11.1, 1.10....

CVE-2022-31075 KubeEdge DoS when signing the CSR from EdgeCore

KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge. Prior to versions 1.11.1, 1.10.2, and 1.9.4, EdgeCore may be susceptible to a DoS attack on CloudHub if an attacker was to send a well-crafted HTTP request to /edge.crt. I...

PT-2022-20510 · Kubeedge · Kubeedge

Name of the Vulnerable Software and Affected Versions: KubeEdge versions prior to 1.11.1 KubeEdge versions prior to 1.10.2 KubeEdge versions prior to 1.9.4 Description: EdgeCore may be susceptible to a DoS attack on CloudHub if an attacker sends a well-crafted HTTP request to "/edge.crt". If the...

Edgecore ECS2020 Command Injection (CVE-2019-6288)

A command injection vulnerability exists in Edgecore ECS2020. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

CVE-2019-6288

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCUSHELL URI...

CVE-2019-6288

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCUSHELL URI...

Command injection

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCUSHELL URI...

CVE-2019-6288

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCUSHELL URI...

CVE-2019-6288

CVE-2019-6288 affects Edgecore ECS2020 firmware (1.0.0.0). The vulnerability allows unauthenticated command injection via the HTTP header command1 to the /EXCU_SHELL URI, as described in multiple sources. This corresponds to a network-exposed impact with potential high-severity consequences; CVSS...

Edgecore ECS2020 命令注入漏洞

The Edgecore ECS2020 is a network smart switch solution from Edgecore China. A security vulnerability exists in the Edgecore ECS2020 version 1.0.0.0 firmware that originates from allowing unauthenticated commands to be injected into the /EXCUSHELL URI via the command1 HTTP header...

EdgeCore ES3526XA Manager Multiple Vulnerabilities

EdgeCore ES3526XA Manager is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

EdgeCore ES3526XA Manager Detection (HTTP)

HTTP based detection of an EdgeCore ES3526XA Manager. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EdgeCore ES3526XA Manager CSRF / Access Bypass / Weak Credentials

EdgeCore - Layer2+ Fast Ethernet Standalone Switch ES3526XA Manager - Multiple Vulnerabilities Also rebranded as: SMC TigerSwitch 10/100 SMC6128L2 Manager Object ID: 1.3.6.1.4.1.259.8.1.5 Switch Information Main Board: Number of Ports 26 Hardware Version R01 Management Software: Loader Version...

Accton-based switches (3com Dell SMC Foundry EdgeCore) - Backdoor Password

Accton-based switches 3com Dell SMC Foundry EdgeCore - Backdoor Password On the 15th of august 2009, at the HAR2009 conference, the existence of a backdoor password in Accton-based switches was revealed by Edwin Eefting, Erik Smit and Erwin Drent 12. Even though this is a 365-day exploit, it does...

Accton-based switches (3com, Dell, SMC, Foundry, EdgeCore) Backdoor

Exploit for windows platform in category remote exploits =================================================================== Accton-based switches 3com, Dell, SMC, Foundry, EdgeCore Backdoor =================================================================== On the 15th of august 2009, at the...