138 matches found
CVE-2024-4583
A vulnerability classified as problematic was found in Faraday GM8181 and GM828x up to 20240429. Affected by this vulnerability is an unknown functionality of the component Request Handler. The manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been...
CVE-2024-4582
A vulnerability classified as critical has been found in Faraday GM8181 and GM828x up to 20240429. Affected is an unknown function of the component NTP Service. The manipulation of the argument ntpsrv leads to os command injection. It is possible to launch the attack remotely. The exploit has bee...
CVE-2024-4583
CVE-2024-4583 affects Faraday GM8181 and GM828x up to 20240429, with the vulnerability located in an unknown functionality of the Request Handler that leads to information disclosure. The issue is exploitable remotely, and the public exploit has been disclosed. Upgrading the affected component is...
CVE-2024-4583 Faraday GM8181/GM828x Request information disclosure
A vulnerability classified as problematic was found in Faraday GM8181 and GM828x up to 20240429. Affected by this vulnerability is an unknown functionality of the component Request Handler. The manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been...
CVE-2024-4583 Faraday GM8181/GM828x Request information disclosure
A vulnerability classified as problematic was found in Faraday GM8181 and GM828x up to 20240429. Affected by this vulnerability is an unknown functionality of the component Request Handler. The manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been...
CVE-2024-4582 Faraday GM8181/GM828x NTP Service os command injection
A vulnerability classified as critical has been found in Faraday GM8181 and GM828x up to 20240429. Affected is an unknown function of the component NTP Service. The manipulation of the argument ntpsrv leads to os command injection. It is possible to launch the attack remotely. The exploit has bee...
CVE-2024-4582 Faraday GM8181/GM828x NTP Service os command injection
A vulnerability classified as critical has been found in Faraday GM8181 and GM828x up to 20240429. Affected is an unknown function of the component NTP Service. The manipulation of the argument ntpsrv leads to os command injection. It is possible to launch the attack remotely. The exploit has bee...
CVE-2024-4582
The CVE-2024-4582 entry concerns Faraday GM8181 and GM828x devices, where an unknown function in the NTP Service is vulnerable to command injection via manipulation of the ntp_srv argument. This enables remote attack capability and, per the description, exploits have been disclosed publicly and u...
Faraday GM8181和Faraday GM828x 操作系统命令注入漏洞
The Faraday GM8181 and Faraday GM828x are both hardware devices from China-based Smartwon Technology Faraday. An operating system command injection vulnerability exists in the Faraday GM8181 and GM828x version 20240429 and earlier versions, which stems from the fact that incorrect manipulation of...
PT-2024-31804 · Faraday · Faraday Gm828X +1
Name of the Vulnerable Software and Affected Versions: Faraday GM8181 and GM828x up to 20240429 Description: A problematic issue has been found, affecting some unknown functionality of the file /command port.ini. This leads to information disclosure and can be exploited remotely. The issue has be...
Faraday GM8181和Faraday GM828x 安全漏洞
The Faraday GM8181 is a hardware device from China-based Smartwon Technology Faraday. A security vulnerability exists in Faraday GM8181 and GM828x version 20240429 and prior versions. An attacker can exploit the vulnerability to obtain sensitive information...
Faraday GM8181和Faraday GM828x 信息泄露漏洞
The Faraday GM8181 and Faraday GM828x are both hardware devices from China-based Smartwon Technology Faraday. An information disclosure vulnerability exists in the Faraday GM8181, GM828x, which stems from commandport.ini containing an unknown function that leads to information disclosure...
SADProtocol goes to Hollywood
.png Faraday’s researchers Javier Aguinaga and Octavio Gianatiempo have investigated on IP cameras and two high severity vulnerabilities. This research project began when Aguinaga's wife, a former Research leader at Faraday Security, informed him that their IP camera had stopped working. Although...
EmploLeaks - Finding Leaked Employees Info for the Win
Developed by Faraday security researchers, this cutting-edge tool utilizes the power of OpenSource Intelligence techniques. EmploLeaks extracts valuable insights by scouring various platforms, to compile a comprehensive list of employees associated with a given company and cross-reference these...
Faraday - Open Source Vulnerability Management Platform
Security has two difficult tasks: designing smart ways of getting new information, and keeping track of findings to improve remediation efforts. With Faraday, you may focus on discovering vulnerabilities while we help you with the rest. Just use it in your terminal and get your work organized on...
Faraday Community - Open Source Penetration Testing and Vulnerability Management Platform
Faraday was built from within the security community, to make vulnerability management easier and enhance our work. What IDEs are to programming,Faraday is to pentesting. Offensive security had two difficult tasks: designing smart ways of getting new information, and keeping track of findings to...
CVE-2022-27254 - PoC For Vulnerability In Honda's Remote Keyless System
PoC for vulnerability in Honda's Remote Keyless SystemCVE-2022-27254 Disclaimer: For educational purposes only. Kindly note that the discoverers for this vulnerability are Ayyappan Rajesh, a student at UMass Dartmouth and HackingIntoYourHeart. Others mentioned in this repository are credited for...
Exploit for Authentication Bypass by Capture-replay in Honda Civic_2018_Firmware
CVE-2022-27254 PoC for vulnerability in Honda's Remote Keyless...
NULL Pointer Dereference
Description There is a NULL Pointer Dereference in mrbvmexec vm.c:1929. This bug has been found on mruby lastest commit hash c2f7ed514dfa0fcae2e7e72d51f25be3d3d6d72c on Ubuntu 20.04 for x8664/amd64. Proof of Concept 1- Clone repo and build with ASAN using MRUBYCONFIG=buildconfig/clang-asan.rb rak...
in mruby/mruby
Description There is a NULL Pointer Dereference in aryconcat array.c:301. This bug has been found on mruby lastest commit hash ecb28f4bf463483cf914c799d086b0cfff997aee on Ubuntu 20.04 for x8664/amd64. Proof of Concept The crash is not reproducible in a debug build, so a release build config must ...