4205 matches found
PT-2023-2000 · NetGear · Netgear Orbi Router Rbr750
Name of the Vulnerable Software and Affected Versions: Netgear Orbi Router RBR750 version 4.6.8.5 Description: A command execution issue exists in the hidden telnet service functionality. This can be exploited by sending a specially-crafted network request, potentially allowing an attacker to...
Security fix for the ALT Linux 10 package dotnet-bootstrap-3.1 version 3.1.32-alt1
3.1.32-alt1 built March 18, 2023 Vitaly Lipatov in task 316692 March 12, 2023 Vitaly Lipatov - .NET Core 3.1.32 and .NET Core SDK 3.1.426 releases - CVE-2022-41089: .NET Remote Code Execution Vulnerability - CVE-2022-41032: .NET Elevation of Privilege Vulnerability - CVE-2022-38013: .NET Denial o...
Adobe Dimension Out-of-Bounds Read Vulnerability (CNVD-2023-31291)
Adobe Dimension is the United States of America Odo than Adobe company is a set of 2D and 3D composite design tools. Adobe Dimension suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute code in the context of the current user...
Microsoft Excel Code Execution Vulnerability (CNVD-2023-53911)
Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A code execution vulnerability exists in Microsoft Excel, which can be exploited by an attacker to execute arbitrary code on a system...
CVE-2023-23150
SA-WR915ND router firmware v17.35.1 was discovered to be vulnerable to code execution...
Ghost Foundation node-sqlite3 code execution vulnerability
Talos Vulnerability Report TALOS-2022-1645 Ghost Foundation node-sqlite3 code execution vulnerability March 16, 2023 CVE Number CVE-2022-43441 SUMMARY A code execution vulnerability exists in the Statement Bindings functionality of Ghost Foundation node-sqlite3 5.1.1. A specially-crafted Javascri...
CVE-2023-23403 Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
...
CVE-2023-27399
A vulnerability has been identified in Tecnomatix Plant Simulation All versions V2201.0006. The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the...
NETGEAR Nighthawk WiFi6 Router Code Execution Vulnerability
The NETGEAR Nighthawk WiFi6 Router is a series of wireless routers from NETGEAR. The NETGEAR Nighthawk WiFi6 Router suffers from a code execution vulnerability that stems from the fact that the device contains a file sharing mechanism that can be exploited by an attacker to execute arbitrary code...
KB5023706: Windows 11 version 22H2 Security Update (March 2023)
The remote Windows host is missing security update 5023706. It is, therefore, affected by multiple vulnerabilities - An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptParameterDecryption routine. An...
CVE-2023-26076
creationtimestamp| type| source ---|---|--- 2023-03-13 17:23:33+00:00| seen| https://t.me/cibsecurity/59905 2023-03-16 18:07:00+00:00| seen| https://googleprojectzero.blogspot.com/2023/03/multiple-internet-to-baseband-remote-rce.html 2023-03-20 14:22:52+00:00| published-proof-of-concept|...
CVE-2023-24033
creationtimestamp| type| source ---|---|--- 2023-03-13 15:53:22+00:00| seen| https://t.me/cibsecurity/59888 2023-03-16 18:07:00+00:00| seen| https://googleprojectzero.blogspot.com/2023/03/multiple-internet-to-baseband-remote-rce.html 2023-03-17 15:00:08+00:00| seen| https://t.me/truesecator/4181...
PT-2023-21224 · Github · Github-Slug-Action
Name of the Vulnerable Software and Affected Versions: github-slug-action versions 4.0.0 through 4.4.1 Description: The github-slug-action uses the github.head ref parameter in an insecure way, allowing any user on GitHub to trigger the vulnerability by creating a pull request with a branch name...
SUSE-SU-2023:0692-1 Security update for xen
This update for xen fixes the following issues: - CVE-2022-27672: Fixed speculative execution vulnerability due to RAS being dynamically partitioned between non-idle threads bsc1208286. Bugfixes: - Fixed launch-xenstore error bsc1205792 - Fixed issues in VMX bsc1027519...
CVE-2021-33352
An issue in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via a phar file upload in the ticket message field...
Fortinet FortiAnalyzer 安全漏洞
Fortinet FortiAnalyzer is a set of centralized network security reporting solutions from the U.S. company Fiat Fortinet. The product is mainly used to collect network log data, and through the reporting suite of security events in the log, network traffic, Web content, etc. to analyze, report,...
Imperative 命令注入漏洞
Imperative is an open source command processing system from Zowe. Imperative has a security vulnerability that stems from the presence of a command execution vulnerability...
Security Bulletin: IBM WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On is vulnerable to remote code execution vulnerability (CVE-2023-23477)
Summary IBM WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On is vulnerable to remote code execution vulnerability CVE-2023-23477. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a securi...
Command Execution Vulnerability in Tianqing Hanma USG Firewall of Beijing Qixing Information Security Technology Co.
Tianqing Hanma USG Firewall is a new firewall series product launched by Qixing. There is a command execution vulnerability in Tianqing Hanma USG Firewall, which can be exploited by attackers to obtain server control privileges...
UBUNTU-CVE-2023-26035
ZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 are vulnerable to Unauthenticated Remote Code Execution via Missing Authorization. There are no permissions check on the...