CVE-2020-29018

A format string vulnerability in FortiWeb 6.3.0 through 6.3.5 may allow an authenticated, remote attacker to read the content of memory and retrieve sensitive data via the redir parameter...

Fortinet FortiWeb 格式化字符串错误漏洞

FortiWeb is a Web Application Firewall WAF that protects hosted web applications from attacks targeting known and unknown vulnerabilities. A format string vulnerability exists in FortiWeb 6.3.0 - 6.3.5. A remote attacker can exploit this vulnerability to read the contents of memory and retrieve...

FortiWeb is vulnerable to a Format string vulnerability

A format string vulnerability in FortiWeb may allow an authenticated, remote attacker to read the content of memory and retrieve sensitive data via the redir parameter...

Pivotal RabbitMQ 3.7.x < 3.7.21 / 3.8.x < 3.8.1 Denial of Service

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The 'X-Reason' HTTP Header can be...

pwntools

This repository is an offensive tool for binary exploitation. The primary vulnerability targeted by this tool is not explicitly stated in the provided context, but the tool is designed for binary exploitation, which suggests that it may be targeting a vulnerability that allows for code execution ...

(0Day) D-Link DCS-960L HNAP Cookie Format String Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DCS-960L Wi-Fi cameras. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the Cookie request header. The issue results fro...

(0Day) D-Link DCS-960L HNAP Login Cookie Format String Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DCS-960L Wi-Fi cameras. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of login action requests. The issue results from th...

CVE-2020-27523

Solstice-Pod up to 5.0.2 WEBRTC server mishandles the format-string specifiers %x; %p; %c and %s in the screenkey, displayname, browsername, and operationsystem parameter during the authentication process. This may crash the server and force Solstice-Pod to reboot, which leads to a denial of...

CVE-2020-27523

Solstice-Pod up to 5.0.2 WEBRTC server mishandles the format-string specifiers %x; %p; %c and %s in the screenkey, displayname, browsername, and operationsystem parameter during the authentication process. This may crash the server and force Solstice-Pod to reboot, which leads to a denial of...

Format string

Solstice-Pod up to 5.0.2 WEBRTC server mishandles the format-string specifiers %x; %p; %c and %s in the screenkey, displayname, browsername, and operationsystem parameter during the authentication process. This may crash the server and force Solstice-Pod to reboot, which leads to a denial of...

CVE-2020-27523

CVE-2020-27523 affects Solstice-Pod (up to 5.0.2) WEBRTC server. The vulnerability arises from mishandling format-string specifiers (%x; %p; %c; %s) in authentication parameters (screen_key, display_name, browser_name, operation_system), which can crash the server and trigger a reboot, resulting ...

CVE-2020-27524

On Audi A7 MMI 2014 vehicles, the Bluetooth stack in Audi A7 MMI Multiplayer with version N+RCNAUP0395 mishandles %x and %s format string specifiers in a device name. This may lead to memory content leaks and potentially crash the services...

Huawei EulerOS: Security Advisory for rsyslog (EulerOS-SA-2020-2394)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP2 : rsyslog (EulerOS-SA-2020-2394)

According to the version of the rsyslog packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The zmq3 input and output modules in rsyslog before 8.28.0 interpreted description fields as format strings, possibly allowing a format string...

EulerOS 2.0 SP2 : php (EulerOS-SA-2020-2384)

According to the versions of the php packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A use-after-free in onignewdeluxe in regext.c in Oniguruma 6.9.2 allows attackers to potentially cause information disclosure, denial of service, o...

openSUSE Security Update : tensorflow2 (openSUSE-2020-1766)

This update for tensorflow2 fixes the following issues : - updated to 2.1.2 with following fixes boo1177022 : - Fixes an undefined behavior causing a segfault in tf.rawops.Switch CVE-2020-15190 - Fixes three vulnerabilities in conversion to DLPack format CVE-2020-15191, CVE-2020-15192,...

Security update for tensorflow2 (moderate)

openSUSE Security Update: Security update for tensorflow2 Announcement ID: openSUSE-SU-2020:1766-1 Rating: moderate References: 1173314 1175099 1175789 1177022 Cross-References: CVE-2020-15190 CVE-2020-15191 CVE-2020-15192 CVE-2020-15193 CVE-2020-15194 CVE-2020-15195 CVE-2020-15202 CVE-2020-15203...

CVE-2020-27853

Wire before 2020-10-16 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a format string. This affects Wire AVS Audio, Video, and Signaling 5.3 through 6.x before 6.4, the Wire Secure Messenger application before 3.49.918 for Android, an...

CVE-2020-27853

Wire before 2020-10-16 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a format string. This affects Wire AVS Audio, Video, and Signaling 5.3 through 6.x before 6.4, the Wire Secure Messenger application before 3.49.918 for Android, an...

CVE-2020-27853

Wire before 2020-10-16 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a format string. This affects Wire AVS Audio, Video, and Signaling 5.3 through 6.x before 6.4, the Wire Secure Messenger application before 3.49.918 for Android, an...