Command Execution Vulnerability in the RG-EG Easy Gateway Management System

RG-EG Easy Gateway Management System is a multi-service integrated gateway product launched by Ruijie Networks to solve the current network egress problems. A command execution vulnerability exists in the RG-EG Easy Gateway Management System, which can be exploited by an attacker to obtain root...

CGAL 输入验证错误漏洞

Libcgal is an open source C++ library that provides geometric algorithms for fast and reliable data processing. CGAL libcgal NefS2/SNCioparser.h in CGAL-5.1.1 SNCioparser::readsloop slh-incidentsface suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to achiev...

CVE-2020-28636

A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in NefS2/SNCioparser.h SNCioparser::readsloop slh-twin An attacker can provide malicious input to trigger this vulnerability...

CVE-2020-35628

A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in NefS2/SNCioparser.h SNCioparser::readsloop slh-incidentsface. An attacker can provide malicious input to trigger this vulnerability...

CVE-2020-35636

A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1 in NefS2/SNCioparser.h SNCioparser::readsface sfh-volume OOB read. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution...

CGAL 输入验证错误漏洞

Libcgal is an open source C++ library that provides geometric algorithms for fast and reliable data processing. CGAL libcgal NefS2/SNCioparser.h SNCioparser::readsloop slh-twin in CGAL-5.1.1 suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to achieve code...

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, an American company. A code execution vulnerability exists in Google Chrome Blink. A remote attacker can exploit this vulnerability to execute arbitrary code on a system or cause a denial of service condition...

CVE-2021-26857 Microsoft Exchange Server Remote Code Execution Vulnerability

...

Security fix for the ALT Linux 9 package dotnet-corefx-3.1 version 3.1.12-alt1

3.1.12-alt1 built March 1, 2021 Vitaly Lipatov in task 266709 Feb. 17, 2021 Vitaly Lipatov - .NET Core 3.1.12 - CVE-2021-1721: .NET Core Denial of Service Vulnerability - CVE-2021-24112: .NET 5 and .NET Core Remote Code Execution Vulnerability...

Command Execution Vulnerability in RG-NBR Series Routers

Ruijie Networks Co., Ltd. is a professional network manufacturer with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products and storage. A command execution vulnerability exists in RG-NBR series routers, which c...

CVE-2021-25281

An issue was discovered in through SaltStack Salt before 3002.5. salt-api does not honor eauth credentials for the wheelasync client. Thus, an attacker can remotely run any wheel modules on the master. Recent assessments: kevthehermit at February 26, 2021 5:08pm UTC reported: Vulnerability This...

Command Execution Vulnerability in ZXHN H168N at ZTE Corporation

ZTE Corporation is a leading global provider of integrated communications solutions. A command execution vulnerability exists in ZXHN H168N of ZTE Corporation, which can be exploited by an attacker to execute arbitrary commands...

Command Execution Vulnerability in Journal Manuscript Acquisition and Editing System of Beijing Magtech Technology Development Co.

Journal Manuscript Acquisition and Editing System is a new 3-generation journal manuscript remote processing platform developed by Beijing Magtech. A command execution vulnerability exists in the Journal Manuscript Acquisition and Editing System of Beijing Magtech Technology Development Co., Ltd...

CVE-2020-7846

Helpcom before v10.0 contains a file download and execution vulnerability caused by storing hardcoded cryptographic key. It finally leads to a file download and execution via access to crafted web page...

CVE-2020-7846

Helpcom before v10.0 contains a file download and execution vulnerability caused by storing hardcoded cryptographic key. It finally leads to a file download and execution via access to crafted web page...

Command Execution Vulnerability in XYCMS

XYCMS studio training structure source code is a training organization website source code developed in asp access. XYCMS has a command execution vulnerability that can be exploited by an attacker to gain control of the server...

Command Execution Vulnerability in HYBBS V2.3.2 Backend

HYBBS is a lightweight community forum program. A command execution vulnerability exists in the backend of HYBBS V2.3.2. An attacker can exploit this vulnerability to gain server privileges...

Code execution vulnerability in Ocean CMS (CNVD-2021-25368)

Ocean CMS, also known as SEACMS, is completely open source and free of charge, adaptive to computers, cell phones, tablets, APP multi-terminal, no encryption, more secure, it is your best station-building tool! Ocean CMS code execution vulnerabilities, attackers can use the vulnerability to obtai...

Command Execution Vulnerability in IG902H, an Edge Computing Gateway from ImagingHub

Beijing Yinghantong Network Technology Co., Ltd. is mainly engaged in technology development; technology promotion; technology transfer; technology consulting; technology service; computer technology training not for national enrollment; technology import and export; import and export of goods;...

Command Execution Vulnerability in Douxin of Shenzhen Renxin Technology Co.

Douxin is a WeChat open framework developed by Shenzhen Renxin Technology Co. A command execution vulnerability exists in Shenzhen RenWant Technology Limited Douxin, which can be exploited by an attacker to gain control of a web server...