PT-2022-6319 · Zyxel · Zyxel Nwa110Ax

Name of the Vulnerable Software and Affected Versions: Zyxel NWA110AX versions prior to 6.50ABTG.0C0 Description: The issue is related to an improper check for unusual conditions in the firmware, which could allow a LAN attacker to cause a temporary denial-of-service DoS by sending crafted VLAN...

CVE-2022-31780

Improper Input Validation vulnerability in HTTP/2 frame handling of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 9.1.2...

UBUNTU-CVE-2022-31780

Improper Input Validation vulnerability in HTTP/2 frame handling of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 9.1.2...

CVE-2022-2734

Improper Restriction of Rendered UI Layers or Frames in GitHub repository openemr/openemr prior to 7.0.0.1...

Rust-WebSocket 资源管理错误漏洞

Rust-WebSocket is a Rust-based WebSocket library. A resource management error vulnerability exists in Rust-WebSocket versions prior to 0.26.5, which stems from the fact that an untrusted websocket connection may cause an out-of-memory OOM process to abort on the client or server. The root cause o...

CVE-2021-22642

An attacker could use specially crafted invalid Modbus frames to crash the Ovarro TBox system...

CVE-2021-22642

An attacker could use specially crafted invalid Modbus frames to crash the Ovarro TBox system...

Code injection

An attacker could use specially crafted invalid Modbus frames to crash the Ovarro TBox system...

CVE-2021-22642 Ovarro TBox Uncontrolled Resource Consumption

An attacker could use specially crafted invalid Modbus frames to crash the Ovarro TBox system...

CVE-2021-22642

CVE-2021-22642 corresponds to an Ovarro TBox vulnerability in which a remote attacker can crash the device by sending specially crafted invalid Modbus frames. The issue affects multiple TBox RTU products (e.g., TBox LT2, TBox MS-CPU32, MS-CPU32-S2, RM2, TG2) and is described under ICSA-21-054-04 ...

CVE-2021-22642 Ovarro TBox Uncontrolled Resource Consumption

An attacker could use specially crafted invalid Modbus frames to crash the Ovarro TBox system...

PT-2022-9258 · Ovarro · Ovarro Tbox

Name of the Vulnerable Software and Affected Versions: Ovarro TBox affected versions not specified Description: An attacker could use specially crafted invalid Modbus frames to crash the Ovarro TBox system. Recommendations: At the moment, there is no information about a newer version that contain...

[SECURITY] Fedora 35 Update: golang-github-mdlayher-ethernet-0-0.5.20201109git0394541.fc35

The Golang package ethernet implements marshaling and unmarshaling of IEEE 802.3 Ethernet II frames and IEEE 802.1Q VLAN tags...

Malicious Package

Overview snei-frames is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

CVE-2018-18907

An issue was discovered on D-Link DIR-850L 1.21WW devices. A partially completed WPA handshake is sufficient for obtaining full access to the wireless network. A client can access the network by sending packets on Data Frames to the AP without encryption...

CVE-2018-18907

An issue was discovered on D-Link DIR-850L 1.21WW devices. A partially completed WPA handshake is sufficient for obtaining full access to the wireless network. A client can access the network by sending packets on Data Frames to the AP without encryption...

Code injection

An issue was discovered on D-Link DIR-850L 1.21WW devices. A partially completed WPA handshake is sufficient for obtaining full access to the wireless network. A client can access the network by sending packets on Data Frames to the AP without encryption...

D-Link DIR-850 授权问题漏洞

The D-Link DIR-850 is a wireless router from AUO D-Link of Taiwan, China. An authorization issue vulnerability exists in D-Link DIR-850L 1.21WW. An attacker can exploit this vulnerability to access the network by sending packets on data frames to the AP...

PT-2022-3534 · Schneider Electric · Conext Combox

Name of the Vulnerable Software and Affected Versions: Conext ComBox versions all Description: The issue is related to improper restriction of rendered UI layers or frames in the user interface, which could allow a remote adversary to affect data integrity by tricking the user into interacting wi...

FreeBSD 802.11 Network Subsystem Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of FreeBSD Kernel. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of 802.11 Wi-Fi beacon frames. The issue results from the lack of...