Lucene search
K

6323 matches found

CNVD
CNVD
added 2023/07/10 12:0 a.m.33 views

Milesight UR32L vtysh_ubus toolsh_excute.constprop.1 Functional Command Injection Vulnerability

The Milesight UR32L is a 4G industrial router from China's Milesight. The Milesight UR32L vtyshubus toolshexcute.constprop.1 feature suffers from a command injection vulnerability that can be exploited by an attacker to execute arbitrary commands on the system...

8.8CVSS8.2AI score0.0345EPSS
Exploits1References1
CNVD
CNVD
added 2023/07/10 12:0 a.m.23 views

Milesight UR32L set_qos function buffer overflow vulnerability (CNVD-2023-65482)

The Milesight UR32L is a 4G industrial router from China's Milesight. A buffer overflow vulnerability exists in the Milesight UR32L setqos function, which can be exploited by an attacker to cause a buffer overflow and execute arbitrary code on the system, or cause an application to crash...

7.2CVSS8.1AI score0.01318EPSS
Exploits1References1
CNVD
CNVD
added 2023/07/10 12:0 a.m.21 views

Milesight UR32L set_qos function buffer overflow vulnerability (CNVD-2023-65125)

The Milesight UR32L is a 4G industrial router from China's Milesight. A buffer overflow vulnerability exists in the Milesight UR32L setqos function, which can be exploited by an attacker to cause a buffer overflow and execute arbitrary code on the system, or cause an application to crash...

5.8CVSS8.1AI score0.01318EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2023/07/07 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-6206-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.4AI score0.00532EPSS
Exploits2References4
NVD
NVD
added 2023/07/06 3:15 a.m.16 views

CVE-2023-30668

Out-of-bounds Write in BuildOemSecureSimLockResponse of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code...

7.8CVSS7AI score0.0018EPSS
Exploits0References1
NVD
NVD
added 2023/07/06 3:15 a.m.12 views

CVE-2023-30649

Heap out of bound write vulnerability in RmtUimNeedApdu of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code...

7.8CVSS7.9AI score0.00191EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/06 2:51 a.m.10 views

CVE-2023-30669

Out-of-bounds Write in DoOemFactorySendFactoryTestResult of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code...

6.7CVSS7.3AI score0.0018EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/07/06 2:50 a.m.31 views

CVE-2023-30653

Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...

6.7CVSS8AI score0.0018EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/06 2:50 a.m.9 views

CVE-2023-30651

Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...

6.7CVSS7.4AI score0.00185EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/06 2:50 a.m.12 views

CVE-2023-30650

Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...

6.7CVSS7.4AI score0.00185EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/06 2:50 a.m.12 views

CVE-2023-30647

Heap out of bound write vulnerability in IpcRxUsimPhoneBookCapa of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code...

7.8CVSS7.5AI score0.00191EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/06 2:50 a.m.9 views

CVE-2023-30644

Stack out of bound write vulnerability in CdmaSmsParser of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code...

7.8CVSS7.5AI score0.00191EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/06 12:0 a.m.8 views

CVE-2020-22336

An issue was discovered in pdfcrack 0.17 thru 0.18, allows attackers to execute arbitrary code via a stack overflow in the MD5 function...

8.1AI score0.01097EPSS
Exploits1References2
Redos
Redos
added 2023/07/06 12:0 a.m.8 views

ROS-2-1895

2.1895 Vulnerability in Mozilla Firefox browser CVE-2021-29967 1. Vulnerability description: A vulnerability in the Mozilla Firefox browser that allows an attacker to execute arbitrary code on the target system.Identifier of the Information Security Threats Data Bank of the FSTEC of Russia : 2...

8.8CVSS9.2AI score0.01368EPSS
Exploits0
Redos
Redos
added 2023/07/06 12:0 a.m.7 views

ROS-2-1680

2.1680 Vulnerability in Mozilla Firefox browser CVE-2021-29967 1. Vulnerability description: Vulnerability in the Mozilla Firefox browser that allows an attacker to execute arbitrary code on the target system.Identifier of the Information Security Threats Data Bank of the FSTEC of Russia : 2...

8.8CVSS9.1AI score0.01368EPSS
Exploits0
NVD
NVD
added 2023/07/05 3:15 p.m.22 views

CVE-2023-35978

A vulnerability in ArubaOS could allow an unauthenticated remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the web-based management interface. A successful exploit could allow an attacker to execute arbitrary script code in a victim's browser in the context...

6.1CVSS6.5AI score0.00374EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/06/29 12:0 a.m.22 views

SUSE SLED12 / SLES12 Security Update : python-reportlab (SUSE-SU-2023:2688-1)

The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2688-1 advisory. - CVE-2023-33733: Fixed arbitrary code execution via supplying a crafted PDF file bsc1212065. Bug fixes: - Add...

7.8CVSS7.5AI score0.02253EPSS
Exploits6References5
CNVD
CNVD
added 2023/06/28 12:0 a.m.17 views

FeehiCMS Arbitrary File Upload Vulnerability (CNVD-2023-58819)

FeehiCMS is a Php-based CMS builder. FeehiCMS version 2.0.8 has an arbitrary file upload vulnerability that can be exploited by remote attackers to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component...

9.8CVSS8AI score0.01314EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/06/26 12:0 a.m.3 views

PT-2023-25496 · Ateme · Ateme Flamingo Xl

Name of the Vulnerable Software and Affected Versions: Ateme Flamingo XL version 3.6.20 Ateme Flamingo XS version 3.6.5 Description: The issue allows a remote authenticated attacker to execute arbitrary code and cause a denial of service via the session expiration function. Recommendations: For...

8.8CVSS8.1AI score0.0087EPSS
Exploits2References3
Github Security Blog
Github Security Blog
added 2023/06/20 3:31 p.m.24 views

Liufee CMS File Upload vulnerability

File Upload vulnerability in Liufee CMS, AKA Feehicms v.2.0.8 allows a remote attacker to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component...

9.8CVSS7.8AI score0.01314EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder