41 matches found
Tenda AC15 操作系统命令注入漏洞
Tenda AC15 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in October 2015, which supports 802.11ac protocol with a theoretical transmission rate of 1900Mbps 600Mbps in 2.4GHz band and 1300Mbps in 5GHz band. Tenda AC15 suffers from a command injection vulnerabilit...
PT-2024-2496 · Tenda · Tenda Ac7
Name of the Vulnerable Software and Affected Versions: Tenda AC7 version 15.03.06.44 Description: A critical issue is present in the Tenda AC7 router's software, related to the function formWriteFacMac of the file /goform/WriteFacMac. The manipulation of the mac argument leads to os command...
SUSE CVE-2011-1493
Array index error in the roseparsenational function in net/rose/rosesubr.c in the Linux kernel before 2.6.39 allows remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact by composing FACNATIONALDIGIS data that specifies a large number of...
fac (>=0.5.2 <=0.5.3) potentially affected by CVE-2021-28037 via internment (=0.3.13)
internment CARGO version =0.3.13 is affected by a known vulnerability. The following packages have a transitive dependency on internment and may be impacted: - fac =0.5.2, =0.5.3 Source cves: CVE-2021-28037 Source advisory: OSV:GHSA-GPPW-3H6H-V6Q2...
fac (>=0.5.2 <=0.5.3) potentially affected by CVE-2020-35874 via internment (=0.3.13)
internment CARGO version =0.3.13 is affected by a known vulnerability. The following packages have a transitive dependency on internment and may be impacted: - fac =0.5.2, =0.5.3 Source cves: CVE-2020-35874 Source advisory: OSV:GHSA-96W3-P368-4H8C...
Binary Vulnerability in FWB, FAC Series Routers of Shenzhen Xunjie Communication Technology Co.
FWB, FAC series is a router from Shenzhen Xunjie Communication Technology Co., Ltd, including FWB201S, FWB505, FAC1203R, FWB201, FAC1900R, FWB200, FAC1200R and so on. A binary vulnerability exists in the FWB, FAC series routers of Shenzhen Xunjie Communication Technology Co. Ltd, which can be...
fac (>=0.5.2 <=0.5.3) potentially affected by CVE-2021-28037 via internment (=0.3.13)
internment CARGO version =0.3.13 is affected by a known vulnerability. The following packages have a transitive dependency on internment and may be impacted: - fac =0.5.2, =0.5.3 Source cves: CVE-2021-28037 Source advisory: OSV:RUSTSEC-2021-0036...
fac (>=0.5.2 <=0.5.3) potentially affected by CVE-2020-35874 via internment (=0.3.13)
internment CARGO version =0.3.13 is affected by a known vulnerability. The following packages have a transitive dependency on internment and may be impacted: - fac =0.5.2, =0.5.3 Source cves: CVE-2020-35874 Source advisory: OSV:RUSTSEC-2020-0017...
h-fac-novar.hsgwhs.usu.edu Improper Access Control vulnerability
Open Bug Bounty ID: OBB-1024106 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
CVE-2019-14239
CVE-2019-14239 affects NXP Kinetis KV1x, KV3x, and K8x devices where Flash Access Controls (FAC) can be defeated by a load instruction inside an execute-only region, exposing protected code into a CPU register. The core issue is a software IP protection bypass in FAC, enabling information exposur...
Design/Logic Flaw
On NXP Kinetis KV1x, Kinetis KV3x, and Kinetis K8x devices, Flash Access Controls FAC a software IP protection method for execute-only access can be defeated by observing CPU registers and the effect of code/instruction execution...
CVE-2019-14237
The CVE concerns NXP Kinetis KV1x, KV3x, and K8x devices where Flash Access Controls (FAC) execute-only protection can be defeated by observing CPU registers and the effects of code execution. The impact is the circumvention of execute-only protection as described; no specific remediation or patc...
Improper access control
FAC Guestbook 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/Gdb.mdb...
CVE-2007-2100
FAC Guestbook 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/Gdb.mdb...
CVE-2007-2101
FAC Guestbook 3.01 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/gbdb.mdb. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2007-2101
FAC Guestbook 3.01 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/gbdb.mdb. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2007-2100
FAC Guestbook 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/Gdb.mdb...
CVE-2007-2101
FAC Guestbook 3.01 has an improper access control flaw exposing data under the web root. The vulnerability allows remote attackers to download the database via a direct request to db/gbdb.mdb, enabling access to sensitive information. The issue is described as affecting FAC Guestbook 3.01 and ste...
CVE-2007-2100
CVE-2007-2100 affects FAC Guestbook 2.0. The vulnerability arises from insufficient access control, allowing remote attackers to directly access and download the database file db/Gdb.mdb from the web root. The published description indicates this could compromise confidentiality (complete impact)...
FAC GuestBook v2.0 remote database disclosure vulnerability
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ Security Vulnerability Resear...