Lucene search
K

1481 matches found

BDU FSTEC
BDU FSTEC
added 2022/04/05 12:0 a.m.7 views

The vulnerability of the DataTables table processing plugin, related to the lack of protection for website structure, allows attackers to compromise data integrity.

The vulnerability of the DataTables table processing plugin is related to incorrect handling of arrays in the input data. Exploiting this vulnerability allows an attacker to compromise the integrity of the data...

6.1CVSS5.9AI score0.01837EPSS
Exploits1References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/04/05 12:0 a.m.7 views

The vulnerability in the do_checksum function of the checksum.c component of the Pcap Tcpreplay editing and reproduction utility allows a hacker to cause a service failure.

The vulnerability of the dochecksum function in the checksum.c component of the Pcap Tcpreplay editing and reproduction utility involves copying buffers without checking the input data. Exploiting this vulnerability allows a malicious actor to cause service interruptions using a specially created...

7.1CVSS6.6AI score0.0066EPSS
Exploits1References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/03/30 12:0 a.m.4 views

Vulnerability of the Cluster component: The general system for managing MySQL Cluster databases, which allows attackers to gain privileged access

Vulnerability of the MySQL Cluster component: General database management system vulnerabilities in MySQL Cluster exist due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to gain privileged access remotely...

6.5CVSS6.4AI score0.02621EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2022/03/28 3:8 p.m.12 views

CVE-2021-44124

Hiby Music Hiby OS R3 Pro 1.5 and 1.6 is vulnerable to Directory Traversal. The HTTP Server does not have enough input data sanitization when shown data from SD Card, an attacker can navigate through the device's File System over HTTP...

7.7AI score0.01858EPSS
Exploits1References2
CNVD
CNVD
added 2022/03/25 12:0 a.m.23 views

Synology DiskStation Manager Injection Vulnerability (CNVD-2022-67835)

Synology DiskStation Manager DSM is an operating system for use on Network Storage Servers NAS from Synology Inc. of Taiwan, China. This operating system manages information such as data, files, photos, music, and more. An injection vulnerability exists in Synology DiskStation Manager, which...

6.5CVSS6AI score0.00597EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/03/23 12:0 a.m.5 views

The vulnerability of the software platform for developing and managing online stores Magento Commerce arises from insufficient validation of input data. This allows attackers to execute arbitrary code.

The vulnerability of the Magento Commerce software platform for developing and managing online stores exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code...

9.1CVSS7.7AI score0.02407EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/03/16 12:0 a.m.4 views

The vulnerability of the Windows operating system arises from insufficient validation of input data, allowing attackers to trigger a service failure.

The vulnerability of the Windows operating system exists due to insufficient checking of input data. Exploiting this vulnerability can allow a perpetrator to cause service failures...

5.5CVSS6.6AI score0.0061EPSS
Exploits0References3
CNVD
CNVD
added 2022/03/14 12:0 a.m.21 views

Aternity SteelCentral AppInternals Remote Code Execution Vulnerability

Aternity SteelCentral AppInternals is a monitoring modern automation solution from Aternity, Inc. A remote code execution vulnerability exists in Aternity SteelCentral AppInternals, which stems from a failure of a network system or product to properly filter specific elements of external input da...

9.8CVSS3.3AI score0.01961EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/03/11 12:0 a.m.5 views

The vulnerability of the embedded software of NETGEAR routers such as D3600, D6000, D6100, D6220, D6400, D7800, D8500, DGN2200Bv4, DGN2200v4, R6250, R6300v2, R6400, R6400v2, R6700, R6700v3, R6900, R6900P, R7000, R7000P, R7100LG, R7300, R7900, R7900P, R8000, R8000P, R8300, R8500, WNDR3400v3, WNR3500Lv2, and XR500 lies in the absence of measures for cleaning input data. This allows a malicious actor to execute arbitrary commands.

The vulnerability of the embedded software of NETGEAR routers such as D3600, D6000, D6100, D6220, D6400, D7800, D8500, DGN2200Bv4, DGN2200v4, R6250, R6300v2, R6400, R6400v2, R6700, R6700v3, R6900, R6900P, R7000, R7000P, R7100LG, R7300, R7900, R7900P, R8000, R8000P, R8300, R8500, WNDR3400v3,...

7.7CVSS7.1AI score0.00569EPSS
Exploits0References3Affected Software30
BDU FSTEC
BDU FSTEC
added 2022/03/05 12:0 a.m.8 views

The vulnerability of the embedded software of NETGEAR EX6120, EX6130, EX7000, EX7500, EX3700, EX3800, RBR850, RBS850, and RBK852 lies in the lack of measures for cleaning input data, allowing attackers to execute arbitrary commands.

The vulnerability of the embedded software of NETGEAR EX6120, EX6130, EX7000, EX7500, EX3700, EX3800, RBR850, RBS850, and RBK852 lies in the lack of measures for cleaning incoming data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

8.4CVSS7.1AI score0.00631EPSS
Exploits0References3Affected Software9
BDU FSTEC
BDU FSTEC
added 2022/03/04 12:0 a.m.8 views

The vulnerability of the built-in software of NETGEAR routers such as RBR20, RBR40, RBR50, RBS20, RBS40, RBR50, RBK20, RBK40, and RBK50 lies in the lack of measures for cleaning input data. This allows a hacker to execute arbitrary commands.

The vulnerability of the embedded software of NETGEAR routers such as RBR20, RBR40, RBR50, RBS20, RBS40, RBR50, RBK20, RBK40, and RBK50 lies in the lack of measures for cleaning incoming data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

8.4CVSS7.1AI score0.00781EPSS
Exploits0References3Affected Software7
BDU FSTEC
BDU FSTEC
added 2022/02/25 12:0 a.m.6 views

The vulnerability of Windows operating systems arises from insufficient checking of input data, allowing attackers to disclose sensitive information that should be protected.

Vulnerabilities in Windows operating systems exist due to insufficient checking of input data. Exploiting these vulnerabilities can allow attackers to disclose protected information...

5.5CVSS7.4AI score0.0102EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/02/16 12:0 a.m.11 views

The vulnerability of the msp_info.htm file implementation in D-Link DI-7200G V2.E1 microprogrammable router software allows a hacker to execute arbitrary commands.

The vulnerability of the mspinfo.htm file implementation of the D-Link DI-7200G V2.E1 router microprogramming system is related to insufficient cleaning of input data during the processing of the cmd parameter. Exploiting this vulnerability allows an attacker to execute arbitrary commands remotel...

10CVSS8.1AI score0.03746EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/02/16 12:0 a.m.9 views

The vulnerability of the implementation of the SetWLanACLSettings() function in D-Link DIR-823-Pro wireless router software allows a hacker to execute arbitrary commands.

The vulnerability of the implementation of the SetWLanACLSettings function in D-Link DIR-823-Pro wireless router microprogramming software is related to insufficient cleaning of input data during the processing of the parameter wl0.0maclist. Exploiting this vulnerability allows a remote attacker ...

10CVSS8.1AI score0.03818EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2022/02/15 12:0 a.m.40 views

Apache Cassandra Code Injection Vulnerability

Apache Cassandra is a distributed Nosql database from the American Apache Apache Foundation. Apache Cassandra suffers from a code injection vulnerability that stems from a network system or product failing to properly filter specific elements of externally entered data during the construction of ...

9.1CVSS9.3AI score0.54889EPSS
Exploits7References1
CNVD
CNVD
added 2022/02/11 12:0 a.m.19 views

Gitea Cross-Site Scripting Vulnerability (CNVD-2022-11525)

A cross-site scripting vulnerability exists in Gitea, a Go-based lightweight git service developed by the Gitea community. The vulnerability stems from a mirror setting in the product wiki/issue link that does not effectively handle special characters in the input data. An attacker could execute...

6.1CVSS3AI score0.00777EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/01/26 12:0 a.m.5 views

Vulnerabilities of the built-in software on NETGEAR Wi-Fi routers such as R6700AX, R7800, R8900, R9000, RAX10, RAX120v1, RAX120v2, RAX70, RAX78, XR450, XR500, XR700, and the low-cost LTE modem LBR1020; vulnerabilities of the wireless signal amplifiers EX2700, WN3000RPv2, WN3000RPv3; and vulnerabilities of the Orbi Wi-Fi system LBR20—all related to the lack of measures to protect input data. These vulnerabilities allow attackers to execute arbitrary commands or gain unauthorized access to protected information.

The vulnerabilities of NETGEAR Wi-Fi routers such as R6700AX, R7800, R8900, R9000, RAX10, RAX120v1, RAX120v2, RAX70, RAX78, XR450, XR500, XR700, and the low-cost LTE modem LBR1020, as well as wireless signal amplifiers like EX2700, WN3000RPv2, WN3000RPv3, and the Orbi Wi-Fi system LBR20, are...

6.1CVSS7.6AI score0.00702EPSS
Exploits0References4Affected Software18
BDU FSTEC
BDU FSTEC
added 2022/01/25 12:0 a.m.6 views

The vulnerability of NETGEAR’s Wi-Fi routers—CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850—is related to insufficient cleaning of input data, allowing attackers to execute arbitrary commands.

The vulnerability of the built-in Wi-Fi router software of NETGEAR models CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850 lies in insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

9.6CVSS8AI score0.00985EPSS
Exploits0References3Affected Software8
BDU FSTEC
BDU FSTEC
added 2022/01/25 12:0 a.m.6 views

The vulnerability of NETGEAR Wi-Fi router software, including models RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, arises from insufficient cleaning of input data. This allows attackers to execute arbitrary commands.

The vulnerability of NETGEAR Wi-Fi router software, including models RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, is related to insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

8.4CVSS7.1AI score0.00631EPSS
Exploits0References3Affected Software6
BDU FSTEC
BDU FSTEC
added 2022/01/25 12:0 a.m.6 views

The vulnerability of NETGEAR’s Wi-Fi routers—CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850—is related to insufficient cleaning of input data, allowing attackers to execute arbitrary commands.

The vulnerability of the built-in Wi-Fi router software of NETGEAR models CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850 lies in insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

9.6CVSS8AI score0.00998EPSS
Exploits0References3Affected Software13
Rows per page
Query Builder