Lucene search
K

3858 matches found

OSV
OSV
added 2024/09/23 3:52 p.m.5 views

USN-7007-3 linux-lowlatency, linux-lowlatency-hwe-5.15 vulnerabilities

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 Chenyuan Yang discovered that the USB Gadget subsystem in...

9.8CVSS6.8AI score0.02701EPSS
Exploits4References220
OSV
OSV
added 2024/09/23 9:59 a.m.3 views

USN-7007-2 linux-ibm-5.15, linux-oracle-5.15 vulnerabilities

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 Chenyuan Yang discovered that the USB Gadget subsystem in...

9.8CVSS6.5AI score0.02701EPSS
Exploits4References220
CNVD
CNVD
added 2024/09/23 12:0 a.m.2 views

TOTOLINK T10 Command Injection Vulnerability

TOTOLINK T10 is a wireless network system router from China's Gion Electronics TOTOLINK. The TOTOLINK T10 suffers from a command injection vulnerability that stems from the parameter command in the file /cgi-bin/cstecgi.cgi that can lead to operating system command injection. No details of the...

8.8CVSS6.7AI score0.04035EPSS
Exploits1References1
CNVD
CNVD
added 2024/09/20 12:0 a.m.10 views

TOTOLINK AC1200 T8 setWiFiAclRules function buffer overflow vulnerability

The TOTOLINK AC1200 T8 is a dual-band full gigabit router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK AC1200 T8 setWiFiAclRules function. The vulnerability stems from the desc parameter of the setWiFiAclRules function failing to correctly validat...

9.8CVSS8.1AI score0.01247EPSS
Exploits1References1
CNVD
CNVD
added 2024/09/18 12:0 a.m.2 views

Command Execution Vulnerability in the Management Server of itC Center of Guangdong Paulan Electronics Company Limited (CNVD-2024-41827)

Ltd. is a high-tech enterprise integrating R&D, design, production, sales and service of audio-visual system overall solution products. There is a command execution vulnerability in the itC center management server of Guangdong Paulan Electronics Co., Ltd. that can be exploited by an attacker to...

7.6AI score
Exploits0
CNVD
CNVD
added 2024/09/18 12:0 a.m.7 views

Unauthorized Access Vulnerability in Founder Xiangyu-Work Platform of Beijing Beifang Founder Electronics Co.

Beijing Founder Electronics Co., Ltd Founder Electronics is a leading enterprise providing technologies, products and services in the field of cross-media information and communication, with its main business covering the fields of printing, media, publishing, big data and character libraries. An...

6.6AI score
Exploits0
CNVD
CNVD
added 2024/09/17 12:0 a.m.2 views

Information leakage vulnerability in the management server of itC center of Guangdong Paulan Electronics Co.(CNVD-2024-41835)

Ltd. is a high-tech enterprise integrating R&D, design, production, sales and service of audio-visual system overall solution products. There is an information leakage vulnerability in the management server of itC Center of Guangdong Paulan Electronics Co., Ltd. which can be exploited by attacker...

6.6AI score
Exploits0
CNVD
CNVD
added 2024/09/17 12:0 a.m.1 views

Information leakage vulnerability in the management server of itC center of Guangdong Paulan Electronics Co.(CNVD-2024-41833)

Ltd. is a high-tech enterprise integrating R&D, design, production, sales and service of audio-visual system overall solution products. There is an information leakage vulnerability in the management server of itC Center of Guangdong Paulan Electronics Co., Ltd. which can be exploited by attacker...

6.6AI score
Exploits0
OSV
OSV
added 2024/09/13 9:38 a.m.10 views

USN-7007-1 linux, linux-aws, linux-aws-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-ibm, linux-intel-iotg, linux-intel-iotg-5.15, linux-kvm, linux-nvidia, linux-oracle, linux-raspi vulnerabilities

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 Chenyuan Yang discovered that the USB Gadget subsystem in...

9.8CVSS6.5AI score0.02701EPSS
Exploits4References220
CNVD
CNVD
added 2024/09/12 12:0 a.m.3 views

File Upload Vulnerability in Founder Mobile Editorial of Beijing Beifang Founder Electronics Co.

Beijing Founder Electronics Co., Ltd. is a leading provider of technology, products and services in the field of cross-media information communication. A file upload vulnerability exists in Founder Mobile Editorial of Beijing Founder Electronics Co., Ltd, which can be exploited by attackers to...

6.9AI score
Exploits0
CNVD
CNVD
added 2024/09/06 12:0 a.m.3 views

SQL Injection Vulnerability in Founder Unbridled All-Media News Gathering and Editing System of Beijing Beifang Founder Electronics Co. Ltd (CNVD-2024-40569)

Beijing Founder Electronics Co., Ltd. is a leading provider of technology, products and services in the field of cross-media information communication. A SQL injection vulnerability exists in the Founder Unlimited Media News Collection System of Beijing Founder Electronics Co., Ltd, which can be...

7.5AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2024/09/05 12:0 a.m.5 views

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.7AI score0.00424EPSS
Exploits0References1
CISA
CISA
added 2024/09/03 12:0 p.m.6 views

CISA Releases One Industrial Control Systems Advisory

CISA released one Industrial Control Systems ICS advisory on September 3, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-247-01 LOYTEC Electronics LINX Series CISA encourages users and administrators to revie...

7AI score
Exploits0References1
ICS
ICS
added 2024/09/03 6:0 a.m.50 views

LOYTEC Electronics LINX Series

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION : Exploitable remotely/low attack complexity/public exploits are available Vendor : LOYTEC electronics GmbH Equipment : LINX series Vulnerabilities : Cleartext Transmission of Sensitive Information, Missing Authentication for Critical Function,...

8.2CVSS8.8AI score0.07381EPSS
Exploits6References10
CNVD
CNVD
added 2024/08/30 12:0 a.m.3 views

TOTOLINK AC1200 Buffer Overflow Vulnerability

TOTOLINK AC1200 is a dual-band Wi-Fi router from China's Gion Electronics TOTOLINK. The TOTOLINK AC1200 suffers from a buffer overflow vulnerability that originates from the formWlEncrypt CGI handler in the boa program that fails to limit the length of the wlanssid field entered by the user. An...

9.8CVSS6.8AI score0.00662EPSS
Exploits1References1
OSV
OSV
added 2024/08/29 4:15 p.m.2 views

CVE-2024-8255

Delta Electronics DTN Soft version 2.0.1 and prior are vulnerable to an attacker achieving remote code execution through a deserialization of untrusted data vulnerability...

9.8CVSS6.4AI score0.00828EPSS
Exploits0References1
NVD
NVD
added 2024/08/29 4:15 p.m.26 views

CVE-2024-8255

Delta Electronics DTN Soft version 2.0.1 and prior are vulnerable to an attacker achieving remote code execution through a deserialization of untrusted data vulnerability...

9.8CVSS0.00828EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/29 3:18 p.m.15 views

CVE-2024-8255 Path Traversal in Ocean Data Systems Dream Report

Delta Electronics DTN Soft version 2.0.1 and prior are vulnerable to an attacker achieving remote code execution through a deserialization of untrusted data vulnerability...

8.4CVSS7.9AI score0.00828EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/29 3:18 p.m.30 views

CVE-2024-8255 Path Traversal in Ocean Data Systems Dream Report

Delta Electronics DTN Soft version 2.0.1 and prior are vulnerable to an attacker achieving remote code execution through a deserialization of untrusted data vulnerability...

8.4CVSS0.00828EPSS
Exploits0References1
CVE
CVE
added 2024/08/29 3:18 p.m.44 views

CVE-2024-8255

Delta Electronics DTN Soft (DTN Soft) versions 2.0.1 and earlier are affected by a deserialization of untrusted data vulnerability that can lead to remote code execution. The issue is documented in multiple sources: ZDI describes BIN file parsing deserialization exploitable with user interaction,...

9.8CVSS9.9AI score0.00828EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder