18 matches found
EUVD-2022-46624
Malicious code in bioql PyPI...
EUVD-2021-8127
Malicious code in bioql PyPI...
EUVD-2023-32579
Malicious code in bioql PyPI...
EUVD-2024-28331
Malicious code in bioql PyPI...
CVE-2025-52951 Junos OS: IPv6 firewall filter fails to match payload-protocol
A Protection Mechanism Failure vulnerability in kernel filter processing of Juniper Networks Junos OS allows an attacker sending IPv6 traffic destined to the device to effectively bypass any firewall filtering configured on the interface. Due to an issue with Junos OS kernel filter processing, th...
CVE-2021-20712
Improper access control vulnerability in NEC Aterm WG2600HS firmware Ver1.5.1 and earlier, and Aterm WX3000HP firmware Ver1.1.2 and earlier allows a device connected to the LAN side to be accessed from the WAN side due to the defect in the IPv6 firewall function...
CVE-2024-30410
An Incorrect Behavior Order in the routing engine RE of Juniper Networks Junos OS on EX4300 Series allows traffic intended to the device to reach the RE instead of being discarded when the discard term is set in loopback lo0 interface. The intended function is that the lo0 firewall filter takes...
PT-2024-2940 · Juniper Networks · Junos
Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS versions prior to 20.4R3-S10 Juniper Networks Junos OS versions from 21.2 before 21.2R3-S7 Juniper Networks Junos OS versions from 21.4 before 21.4R3-S6 Description: The issue is related to an incorrect behavior orde...
CVE-2023-28961
An Improper Handling of Unexpected Data Type vulnerability in IPv6 firewall filter processing of Juniper Networks Junos OS on the ACX Series devices will prevent a firewall filter with the term 'from next-header ah' from being properly installed in the packet forwarding engine PFE. There is no...
Design/Logic Flaw
An Improper Handling of Unexpected Data Type vulnerability in IPv6 firewall filter processing of Juniper Networks Junos OS on the ACX Series devices will prevent a firewall filter with the term 'from next-header ah' from being properly installed in the packet forwarding engine PFE. There is no...
PT-2023-22054 · Juniper Networks · Junos
Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS on ACX Series versions prior to 20.2R3-S7 Juniper Networks Junos OS on ACX Series version 20.4 versions prior to 20.4R3-S4 Juniper Networks Junos OS on ACX Series version 21.1 versions prior to 21.1R3-S3 Juniper...
CVE-2023-28961 Junos OS: ACX Series: IPv6 firewall filter is not installed in PFE when "from next-header ah" is used
An Improper Handling of Unexpected Data Type vulnerability in IPv6 firewall filter processing of Juniper Networks Junos OS on the ACX Series devices will prevent a firewall filter with the term 'from next-header ah' from being properly installed in the packet forwarding engine PFE. There is no...
D-Link DIR-1935 操作系统命令注入漏洞
The D-Link DIR-1935 is a wireless router from China-based AUO D-Link. The D-Link DIR-1935 suffers from an operating system command injection vulnerability that originates when parsing sub-elements within an IPv6FirewallRule element, where the process does not properly validate before executing a...
CVE-2022-43628
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...
PT-2022-5541 · D Link · D-Link Dir-1935
Name of the Vulnerable Software and Affected Versions: D-Link DIR-1935 version 1.03 Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations. Although authentication is required to exploit this, the existing authentication mechanism can be...
Virtuozzo Hybrid Infrastructure 5.0 (5.0.0-137)
In this release, Virtuozzo Hybrid Infrastructure provides a wide range of new features that enhance service providers' interoperability and help expand their services. The improvements cover compute services, object storage, security, and monitoring. Additionally, this release delivers stability...
Improper access control
Improper access control vulnerability in NEC Aterm WG2600HS firmware Ver1.5.1 and earlier, and Aterm WX3000HP firmware Ver1.1.2 and earlier allows a device connected to the LAN side to be accessed from the WAN side due to the defect in the IPv6 firewall function...
FiberHome HG6245D Disclosure / Bypass / Privilege Escalation / DoS
Hello, Please find a text-only version below sent to security mailing lists. The complete version on "Multiple vulnerabilities found in FiberHome HG6245D routers" is posted here: https://pierrekim.github.io/blog/2021-01-12-fiberhome-ont-0day-vulnerabilities.html === text-version of the advisory =...