MAL-2025-153599 Malicious code in avomainah-fru-fada (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0a6b7e10cd42b04a9f59f2d469d299b3ba63308a26ac8b7cf3412cace6004b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

CVE-2023-43960

An issue in DLINK DPH-400SE FRU 2.2.15.8 allows a remote attacker to escalate privileges via the User Modify function in the Maintenance/Access function component...

CVE-2023-43960

CVE-2023-43960 affects the D-Link DPH-400SE FRU firmware 2.2.15.8. The issue allows a remote attacker to escalate privileges via the User Modify function in the Maintenance/Access component. The Red Hat advisory and other sources corroborate a privilege-escalation vulnerability in this device; ex...

PT-2023-29051 · D Link · Dlink Dph-400Se

Name of the Vulnerable Software and Affected Versions: DLINK DPH-400SE FRU version 2.2.15.8 Description: An issue in the software allows a remote attacker to escalate privileges via the User Modify function in the Maintenance/Access function component. Recommendations: For DLINK DPH-400SE FRU...

The vulnerabilities affect the implementations of the functions read_fru_area(), read_fru_area_section(), ipmi_spd_print_fru(), ipmi_get_session_info(), ipmi_get_channel_cipher_suites(), and get_lan_param_select(). These functions are used for managing and configuring devices that support IPMI through ipmitool. This allows a malicious individual to cause service interruptions or execute arbitrary code.

The vulnerability of the implementations of several functions such as readfruarea, readfruareasection, ipmispdprintfru, ipmigetsessioninfo, ipmigetchannelciphersuites, and getlanparamselect—utilities for managing and configuring devices that support IPMI—is due to buffer overflows. Exploiting thi...

ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c

A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution...

ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c

A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution...

ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c

A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution...