Apache HTTP Server Input Validation Error Vulnerability (CNVD-2024-36395)

Apache HTTP Server is the United States Apache Apache Foundation of an open source web server . The server is fast, reliable and can be expanded through a simple API. An input validation error vulnerability exists in Apache HTTP Server version 2.4.58 and earlier versions, which can be exploited t...

Apache CloudStack 输入验证错误漏洞

Apache CloudStack is a suite of Infrastructure as a Service IaaS cloud computing platforms from the Apache Foundation in the United States. The platform is primarily used to deploy and manage large networks of virtual machines. Apache CloudStack suffers from an input validation error vulnerabilit...

Apache Traffic Server 输入验证错误漏洞

Apache Traffic Server ATS is the United States Apache Apache Foundation's set of scalable HTTP proxy and caching server. Apache Traffic Server suffers from an input validation error vulnerability that stems from continuation frame flooding in the HTTP/2 stack, which can be exploited by an attacke...

ABB多款产品 输入验证错误漏洞

ABB Symphony Plus S+ Operations and others are products of ABB.ABB Symphony Plus S+ Operations is a decentralized control system.ABB Platform Engineering Tools is a platform tool.ABB Symphony Plus S+ Analyst is a software for analyzing and optimizing the performance of industrial control systems...

IBM Db2 输入验证错误漏洞

IBM Db2 is a relational database management system from International Business Machines IBM. The system executes on UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM DB2 suffers from an input validation error vulnerability that stems from susceptibility to denial of service attacks with...

Tenda F1203 formSetCfm Method Buffer Overflow Vulnerability

The Tenda F1203 is a wireless router from Tenda, a Chinese company. A buffer overflow vulnerability exists in the Tenda F1203 version 2.0.1.6, which is caused by the funcpara1 parameter of the formSetCfm method of the /goform/setcfm file failing to correctly validate the length of the input data,...

Rockwell Automation PowerFlex 527 Input Validation Error Vulnerability (CNVD-2024-34873)

The Rockwell Automation PowerFlex 527 is an adjustable AC frequency converter from Rockwell Automation. The Rockwell Automation PowerFlex 527 has an input validation error vulnerability that can be exploited by an attacker to cause a denial of service...

WordPress Plugin Uncanny Toolkit for LearnDash 输入验证错误漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

Eclipse ThreadX NetX Duo 输入验证错误漏洞

Eclipse ThreadX NetX Duo is an IPv4 and IPv6 dual network stack for Eclipse ThreadX open source. A security vulnerability exists in Eclipse ThreadX NetX Duo versions prior to 6.4.0, which stems from a vulnerability that allows attackers to cause a buffer overflow via the function...

Rockwell Automation PowerFlex 525 安全漏洞

The Rockwell Automation PowerFlex 527 is an adjustable AC frequency converter from Rockwell Automation. The Rockwell Automation PowerFlex 527 has an input validation error vulnerability that can be exploited by an attacker to cause a denial of service...

Rockwell Automation PowerFlex 安全漏洞

The Rockwell Automation PowerFlex 527 is an adjustable AC frequency converter from Rockwell Automation. The Rockwell Automation PowerFlex 527 has an input validation error vulnerability that can be exploited by an attacker to cause CIP communication to be interrupted, requiring a manual restart...

Mitsubishi Electric MELSEC-Q and MELSEC-L Input Validation Error Vulnerability

The Mitsubishi Electric MELSEC-Q Series is a MELSEC-Q series of programmable logic controllers from Mitsubishi Electric Japan. The Mitsubishi Electric MELSEC-Q and MELSEC-L have an input validation error vulnerability that originates from an integer overflow or wrap-around vulnerability in the CP...

Mitsubishi Electric MELSEC-Q和MELSEC-L 输入验证错误漏洞

Mitsubishi Electric MELSEC-Q Series is a MELSEC-Q series programmable logic controller from Mitsubishi Electric, Japan.Mitsubishi MELSEC-L Series is a MELSEC-L series programmable logic controller from Mitsubishi, Japan. Mitsubishi MELSEC-L Series is a MELSEC-L series programmable logic controlle...

Mitsubishi Electric MELSEC-Q and MELSEC-L Input Validation Error Vulnerability

The Mitsubishi Electric MELSEC-Q Series is a MELSEC-Q series of programmable logic controllers from Mitsubishi Electric Japan. The Mitsubishi Electric MELSEC-Q and MELSEC-L have an input validation error vulnerability that originates from an integer overflow or wrap-around vulnerability in the CP...

Intel Converged Security and Management Engine Input Validation Error Vulnerability

Intel Converged Security and Management Engine CSME is a security management engine from Intel Corporation USA. An input validation error vulnerability exists in Intel Converged Security and Management Engine versions prior to 2328.5.5.0, which stems from the presence of an input validation error...

Apache DolphinScheduler Input Validation Error Vulnerability (CNVD-2024-39158)

Apache DolphinScheduler is a distributed DAG visualization-based workflow task scheduling system from the Apache Apache Foundation in the United States. An input validation error vulnerability exists in Apache DolphinScheduler versions prior to 3.2.1, which stems from the presence of incorrect...

ROS-2-1233

2.1233 Directory traversal in Apache Commons IO CVE-2021-29425 1. Vulnerability Description: The vulnerability allows a remote attacker to perform directory traversal attacks. The vulnerability exists due to an input validation error in the FileNameUtils.normalize method when processing directory...

ROS-2-1185

2.1185 Directory traversal in Apache Commons IO CVE-2021-29425 1. Vulnerability Description: The vulnerability allows a remote attacker to perform directory traversal attacks. The vulnerability exists due to an input validation error in the FileNameUtils.normalize method when processing directory...

Apache Tomcat 输入验证错误漏洞

Apache Tomcat is the United States Apache Apache Foundation of a lightweight Web application server. The program implements the Servlet and JavaServer Page JSP support. An input validation error vulnerability exists in Apache Tomcat, which can be exploited by an attacker to cause a denial of...

PHOENIX CONTACT CHARX SEC Input Validation Error Vulnerability

PHOENIX CONTACT CHARX SEC is a series of AC charge controllers from PHOENIX CONTACT, Germany. An input validation error vulnerability exists in PHOENIX CONTACT CHARX SEC-3000 versions prior to v1.5.1. The vulnerability stems from improper input validation, which allows an unauthenticated, remote...