Moxa VPort Cameras Out-of-bounds Read (CVE-2021-25848)

Improper validation of the length field of LLDP-MED TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to using fixed loop counter variable without checking the actual available length via a crafted lldp packet. This plugin...

CVE-2022-4982

DBLTek GoIP-1 firmware versions up to and including GHSFVT-1.1-67-5 contain a local file inclusion vulnerability. The device's web server exposes handlers frame.html and frame.A100.html that accept a path parameter content or sidebar which is not properly validated or canonicalized. An attacker c...

GIGA WIFI Wave KM08-708H 安全漏洞

GIGA WIFI Wave KM08-708H is a wireless device from GIGA WIFI Wave. A security vulnerability exists in the GIGA WIFI Wave KM08-708H v1.1, which originates from a buffer overflow when the strcpy function is executed without checking the length of the string...

PT-2019-18568 · Systrome · Systrome Cumilon

Name of the Vulnerable Software and Affected Versions: Systrome Cumilon devices with firmware V1.1-R2.1 TRUNK-20181105.bin Description: A shell command injection issue occurs when editing the description of an ISP file due to improper validation of user input in the file network/isp/isp update...