66 matches found
Aruba Networks ClearPass Policy Manager 6.7.x < 6.7.13-HF / 6.8.x < 6.8.5-HF / 6.9.x < 6.9.1 Multiple Vulnerabilities (ARUBA-PSA-2020-005)
The remote host is Aruba Networks HP Clearpass Policy Manager version 6.7.x prior to 6.7.13-HF, or 6.8.x prior to 6.8.5-HF, or 6.9.x 6.9.1. It is, therefore, vulnerable to multiple security vulnerabilities as described in the vendor advisory ARUBA-PSA-2020-005. C Tenable Network Security, Inc...
Command injection
The ClearPass Policy Manager WebUI administrative interface has an authenticated command remote execution. When the attacker is already authenticated to the administrative interface, they could then exploit the system, leading to remote command execution in the underlying operating system...
CVE-2020-7115
The ClearPass Policy Manager web interface is affected by a vulnerability that leads to authentication bypass. Upon successful bypass an attacker could then execute an exploit that would allow to remote command execution in the underlying operating system. Resolution: Fixed in 6.7.13-HF, 6.8.5-HF...
Siemens SIPLUS IM151 HF Detection
Binary data 750343.prm...
Siemens CM PtP RS232 HF Communications Adapter Detection
Binary data 750201.prm...
Siemens CM PtP RS422/485 HF Communications Adapter Detection
Binary data 750202.prm...
UBUNTU-CVE-2018-20361
An invalid memory address dereference was discovered in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
DEBIAN-CVE-2018-20361
An invalid memory address dereference was discovered in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
ALPINE-CVE-2018-20361
An invalid memory address dereference was discovered in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...
PT-2018-3075 · Audiocoding +1 · Faad2 +1
Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: The issue is related to an invalid memory address dereference in the hf assembly function, which can cause a segmentation fault and application crash, leading to denial of...
hf-data.no XSS vulnerability
Open Bug Bounty ID: OBB-684621 Description| Value ---|--- Affected Website:| hf-data.no Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
PT-2017-7731 · Talariax · Sendquick Entera +1
Name of the Vulnerable Software and Affected Versions: SendQuick Entera versions prior to 2HF16 Avera versions prior to 2HF16 Description: An issue was discovered that allows attackers to execute arbitrary system commands due to multiple Command Injection vulnerabilities. Recommendations: For...
Onkyo HF Player - BSD license, Exported components, External URLs vulnerabilities
HackApp vulnerability scanner discovered that application Onkyo HF Player published at the 'play' market has multiple vulnerabilities...
CVE-2015-3987
McAfee ePO Deep Command (Client Management and Gateway) 2.1/2.2 are affected by CVE-2015-3987 due to unquoted Windows search paths leading to local privilege elevation. The issue is rooted in unquoted path handling, enabling local users to gain privileges via unspecified vectors. A patched releas...
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The numerous vulnerabilities in the Debian GNU/Linux operating system’s hf package can be exploited, leading to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious actors...
Trend Micro InterScan Web Security Virtual Appliance Multiple Information Disclosure Vulnerabilities
Trend Micro InterScan Web Security Virtual Appliance is prone to multiple information disclosure vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
SOL14046 - FirePass input validation vulnerability
Vulnerability Recommended Actions To eliminate this vulnerability, upgrade to a version that is listed in the Versions known to be not vulnerable column in the previous table. F5 strongly recommends that you install HF-70-7 for FirePass 7.0.0 to address this vulnerability. Acknowledgements F5 wou...
SOL13463 - FirePass SQL injection vulnerability - CVE-2012-1777
Recommended action To eliminate this vulnerability, upgrade to a version that is listed in the Versions known to be not vulnerable column in the previous table. F5 strongly recommends installing FirePass HF-377712-1 to address this vulnerability. Supplemental Information CERT advisory regarding...
CVE-2008-2378
The CVE-2008-2378 issue concerns the hf HF kernel component (hfkernel) used by the hf package. The vulnerability is a local untrusted-search-path flaw that could allow privilege escalation via a Trojan horse killall executable found in a PATH directory, related to improper handling of the -k opti...
Debian DSA-1668-1 : hf - programming error
Steve Kemp discovered that hf, an amateur-radio protocol suite using a soundcard as a modem, insecurely tried to execute an external command which could lead to the elevation of privileges for local users. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package check...