CVE-2021-33535

Weidmueller Industrial WLAN devices are affected by a format string vulnerability in the iw_console conio_writestr function. A specially crafted time server entry can cause a buffer overflow, enabling remote code execution. Attack requires authentication as a low-privilege user and the exploit pa...

CVE-2021-33535 WEIDMUELLER: WLAN devices affected by exploitable format string vulnerability

In Weidmueller Industrial WLAN devices in multiple versions an exploitable format string vulnerability exists in the iwconsole coniowritestr functionality. A specially crafted time server entry can cause an overflow of the time server buffer, resulting in remote code execution. An attacker can se...

Weidmueller Industrial WLAN 格式化字符串错误漏洞

Weidmueller Industrial WLAN devices is an industrial WIAN from Weidmueller, Germany. A Format String Error vulnerability exists in Weidmueller Industrial WLAN devices, which stems from a specially crafted time server entry that can lead to a time server buffer overflow that can be exploited by an...

iPhone Wi-Fi Crushed by Weird Network

FUD is spreading about a weirdly named personal network that a reverse engineer stumbled across and which he said “permanently” wrecked his iPhone’s Wi-Fi. TL;DR version: The twitching inflicted on his iPhone, which he demonstrated in the 4-second Tweet below, wasn’t permanent. As replies to the...

SUSE: Security Advisory (SUSE-SU-2018:3278-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated libpano13 packages fix a security vulnerability

Format string vulnerability in panoFileOutputNamesCreate in libpano13 2.9.20.rc2 and earlier can lead to read and write arbitrary memory values CVE-2021-20307...

MGASA-2021-0230 Updated libpano13 packages fix a security vulnerability

Format string vulnerability in panoFileOutputNamesCreate in libpano13 2.9.20.rc2 and earlier can lead to read and write arbitrary memory values CVE-2021-20307...

Security Bulletin: A format string vulnerability has been identified in IBM Spectrum Scale packaged in IBM ESS (CVE-2021-29740)

Summary A security vulnerability has been identified in all levels of IBM ESS that could allow an attacker to execute arbirtary code in IBM Spectrum Scale file system. A fix for this vulnerability is available. Vulnerability Details CVEID: CVE-2021-29740 DESCRIPTION: IBM Spectrum Scale 5.0.0...

Security Bulletin: A format string vulnerability has been identified in IBM Spectrum Scale packaged in IBM Elastic Storage System (CVE-2021-29740)

Summary A security vulnerability has been identified in all levels of IBM Elastic Storage System that could allow an attacker to execute arbirtary code in IBM Spectrum Scale file system. A fix for this vulnerability is available. Vulnerability Details CVEID: CVE-2021-29740 DESCRIPTION: IBM Spectr...

Security Bulletin: A format string security vulnerability has been identified in IBM Spectrum Scale (CVE-2021-29740)

Summary A security vulnerability has been identified in IBM Spectrum Scale file system that could allow an attacker to execute arbirtary code. A fix for this vulnerability is available. Vulnerability Details CVEID: CVE-2021-29740 DESCRIPTION: IBM Spectrum Scalefile system core component is affect...

CVE-2021-29740

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context of process memory, potentially escalating their system privileges and taking control over the...

CVE-2021-29740

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context of process memory, potentially escalating their system privileges and taking control over the...

CVE-2021-29740

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context of process memory, potentially escalating their system privileges and taking control over the...

CVE-2021-29740

CVE-2021-29740 affects IBM Spectrum Scale (5.0.0–5.0.5.6 and 5.1.0–5.1.0.3) and IBM Elastic Storage System variants, due to a format-string vulnerability in the system core component that could allow arbitrary code execution with root privileges. Remediation is to upgrade to recommended fixed lev...

openSUSE Security Update : mpv (openSUSE-2021-788)

This update for mpv fixes the following issues : - CVE-2021-30145: Fixed format string vulnerability allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file boo1186230 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

openSUSE: Security Advisory for mpv (openSUSE-SU-2021:0788-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for mpv (important)

openSUSE Security Update: Security update for mpv Announcement ID: openSUSE-SU-2021:0788-1 Rating: important References: 1186230 Cross-References: CVE-2021-30145 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for mpv fixes t...

DEBIAN-CVE-2021-30145

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

CVE-2021-30145

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

CVE-2021-30145

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...