3858 matches found
USN-7007-3 linux-lowlatency, linux-lowlatency-hwe-5.15 vulnerabilities
Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 Chenyuan Yang discovered that the USB Gadget subsystem in...
USN-7007-2 linux-ibm-5.15, linux-oracle-5.15 vulnerabilities
Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 Chenyuan Yang discovered that the USB Gadget subsystem in...
TOTOLINK T10 Command Injection Vulnerability
TOTOLINK T10 is a wireless network system router from China's Gion Electronics TOTOLINK. The TOTOLINK T10 suffers from a command injection vulnerability that stems from the parameter command in the file /cgi-bin/cstecgi.cgi that can lead to operating system command injection. No details of the...
TOTOLINK AC1200 T8 setWiFiAclRules function buffer overflow vulnerability
The TOTOLINK AC1200 T8 is a dual-band full gigabit router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK AC1200 T8 setWiFiAclRules function. The vulnerability stems from the desc parameter of the setWiFiAclRules function failing to correctly validat...
Command Execution Vulnerability in the Management Server of itC Center of Guangdong Paulan Electronics Company Limited (CNVD-2024-41827)
Ltd. is a high-tech enterprise integrating R&D, design, production, sales and service of audio-visual system overall solution products. There is a command execution vulnerability in the itC center management server of Guangdong Paulan Electronics Co., Ltd. that can be exploited by an attacker to...
Unauthorized Access Vulnerability in Founder Xiangyu-Work Platform of Beijing Beifang Founder Electronics Co.
Beijing Founder Electronics Co., Ltd Founder Electronics is a leading enterprise providing technologies, products and services in the field of cross-media information and communication, with its main business covering the fields of printing, media, publishing, big data and character libraries. An...
Information leakage vulnerability in the management server of itC center of Guangdong Paulan Electronics Co.(CNVD-2024-41835)
Ltd. is a high-tech enterprise integrating R&D, design, production, sales and service of audio-visual system overall solution products. There is an information leakage vulnerability in the management server of itC Center of Guangdong Paulan Electronics Co., Ltd. which can be exploited by attacker...
Information leakage vulnerability in the management server of itC center of Guangdong Paulan Electronics Co.(CNVD-2024-41833)
Ltd. is a high-tech enterprise integrating R&D, design, production, sales and service of audio-visual system overall solution products. There is an information leakage vulnerability in the management server of itC Center of Guangdong Paulan Electronics Co., Ltd. which can be exploited by attacker...
USN-7007-1 linux, linux-aws, linux-aws-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-ibm, linux-intel-iotg, linux-intel-iotg-5.15, linux-kvm, linux-nvidia, linux-oracle, linux-raspi vulnerabilities
Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 Chenyuan Yang discovered that the USB Gadget subsystem in...
File Upload Vulnerability in Founder Mobile Editorial of Beijing Beifang Founder Electronics Co.
Beijing Founder Electronics Co., Ltd. is a leading provider of technology, products and services in the field of cross-media information communication. A file upload vulnerability exists in Founder Mobile Editorial of Beijing Founder Electronics Co., Ltd, which can be exploited by attackers to...
SQL Injection Vulnerability in Founder Unbridled All-Media News Gathering and Editing System of Beijing Beifang Founder Electronics Co. Ltd (CNVD-2024-40569)
Beijing Founder Electronics Co., Ltd. is a leading provider of technology, products and services in the field of cross-media information communication. A SQL injection vulnerability exists in the Founder Unlimited Media News Collection System of Beijing Founder Electronics Co., Ltd, which can be...
Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CISA Releases One Industrial Control Systems Advisory
CISA released one Industrial Control Systems ICS advisory on September 3, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-247-01 LOYTEC Electronics LINX Series CISA encourages users and administrators to revie...
LOYTEC Electronics LINX Series
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION : Exploitable remotely/low attack complexity/public exploits are available Vendor : LOYTEC electronics GmbH Equipment : LINX series Vulnerabilities : Cleartext Transmission of Sensitive Information, Missing Authentication for Critical Function,...
TOTOLINK AC1200 Buffer Overflow Vulnerability
TOTOLINK AC1200 is a dual-band Wi-Fi router from China's Gion Electronics TOTOLINK. The TOTOLINK AC1200 suffers from a buffer overflow vulnerability that originates from the formWlEncrypt CGI handler in the boa program that fails to limit the length of the wlanssid field entered by the user. An...
CVE-2024-8255
Delta Electronics DTN Soft version 2.0.1 and prior are vulnerable to an attacker achieving remote code execution through a deserialization of untrusted data vulnerability...
CVE-2024-8255
Delta Electronics DTN Soft version 2.0.1 and prior are vulnerable to an attacker achieving remote code execution through a deserialization of untrusted data vulnerability...
CVE-2024-8255 Path Traversal in Ocean Data Systems Dream Report
Delta Electronics DTN Soft version 2.0.1 and prior are vulnerable to an attacker achieving remote code execution through a deserialization of untrusted data vulnerability...
CVE-2024-8255 Path Traversal in Ocean Data Systems Dream Report
Delta Electronics DTN Soft version 2.0.1 and prior are vulnerable to an attacker achieving remote code execution through a deserialization of untrusted data vulnerability...
CVE-2024-8255
Delta Electronics DTN Soft (DTN Soft) versions 2.0.1 and earlier are affected by a deserialization of untrusted data vulnerability that can lead to remote code execution. The issue is documented in multiple sources: ZDI describes BIN file parsing deserialization exploitable with user interaction,...