Lucene search
K

469 matches found

Veracode
Veracode
added 2019/01/15 9:7 a.m.13 views

Denial Of Service (DoS)

github.com/openshift/origin is vulnerable to denial of service DoS attacks. These attacks can be triggered by invalid JSON data. The invalid JSON data causes origin to panic and cause a nil pointer dereference causing the master process to crash...

4CVSS5.8AI score0.01952EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2018/11/27 4:29 p.m.26 views

CVE-2018-19609

ShowDoc 2.4.1 allows remote attackers to obtain sensitive information by navigating with a modified pageid, as demonstrated by reading note content, or discovering a username in the JSON data at a diff URL...

6.5CVSS6.3AI score0.01197EPSS
Exploits1References1
Prion
Prion
added 2018/11/27 4:29 p.m.19 views

Code injection

ShowDoc 2.4.1 allows remote attackers to obtain sensitive information by navigating with a modified pageid, as demonstrated by reading note content, or discovering a username in the JSON data at a diff URL...

4CVSS6.2AI score0.01197EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/11/27 4:0 p.m.22 views

CVE-2018-19609

ShowDoc 2.4.1 allows remote attackers to obtain sensitive information by navigating with a modified pageid, as demonstrated by reading note content, or discovering a username in the JSON data at a diff URL...

6.3AI score0.01197EPSS
Exploits1References1
NVD
NVD
added 2018/10/24 10:29 p.m.24 views

CVE-2018-18638

A command injection vulnerability in the setup API in the Neato Botvac Connected 2.2.0 allows network attackers to execute arbitrary commands via shell metacharacters in the ntp field within JSON data to the /robot/initialize endpoint...

9.3CVSS8.6AI score0.02832EPSS
Exploits1References1
Prion
Prion
added 2018/10/24 10:29 p.m.16 views

Command injection

A command injection vulnerability in the setup API in the Neato Botvac Connected 2.2.0 allows network attackers to execute arbitrary commands via shell metacharacters in the ntp field within JSON data to the /robot/initialize endpoint...

9.3CVSS8.5AI score0.02832EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/10/24 10:0 p.m.17 views

CVE-2018-18638

A command injection vulnerability in the setup API in the Neato Botvac Connected 2.2.0 allows network attackers to execute arbitrary commands via shell metacharacters in the ntp field within JSON data to the /robot/initialize endpoint...

8.6AI score0.02832EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/14 12:0 a.m.2 views

TP-Link TL-WR886N Denial of Service Vulnerability (CNVD-2019-07048)

The TP-Link TL-WR886N is a wireless router product from China P&L TP-LINK. A security vulnerability exists in TP-Link TL-WR886N version 6.0 2.3.4 and 7.0 1.1.0. An attacker can exploit the vulnerability by sending a request with long JSON data to cause the router service to crash...

6.5CVSS6.5AI score0.0104EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/14 12:0 a.m.1 views

TP-Link TL-WR886N Denial of Service Vulnerability (CNVD-2019-07050)

The TP-Link TL-WR886N is a wireless router product from China P&L TP-LINK. A security vulnerability exists in TP-Link TL-WR886N version 6.0 2.3.4 and 7.0 1.1.0. An attacker can exploit the vulnerability by sending a request with long JSON data to cause the router service to crash...

6.5CVSS6.5AI score0.0104EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/14 12:0 a.m.1 views

TP-Link TL-WR886N Denial of Service Vulnerability (CNVD-2019-07044)

The TP-Link TL-WR886N is a wireless router product from China P&L TP-LINK. A security vulnerability exists in TP-Link TL-WR886N version 6.0 2.3.4 and 7.0 1.1.0. An attacker can exploit the vulnerability by sending a request with long JSON data to cause the router service to crash...

6.5CVSS6.5AI score0.0104EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/14 12:0 a.m.1 views

TP-Link TL-WR886N Denial of Service Vulnerability (CNVD-2019-07040)

The TP-Link TL-WR886N is a wireless router product from China P&L TP-LINK. A security vulnerability exists in TP-Link TL-WR886N version 6.0 2.3.4 and 7.0 1.1.0. An attacker can exploit the vulnerability by sending a request with long JSON data to cause the router service to crash...

6.5CVSS6.5AI score0.0104EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/14 12:0 a.m.2 views

TP-Link TL-WR886N Denial of Service Vulnerability (CNVD-2019-07043)

The TP-Link TL-WR886N is a wireless router product from China P&L TP-LINK. A security vulnerability exists in TP-Link TL-WR886N version 6.0 2.3.4 and 7.0 1.1.0. An attacker can exploit the vulnerability by sending a request with long JSON data to cause the router service to crash...

6.5CVSS6.5AI score0.0104EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/14 12:0 a.m.2 views

TP-Link TL-WR886N Denial of Service Vulnerability (CNVD-2019-07037)

The TP-Link TL-WR886N is a wireless router product from China P&L TP-LINK. A security vulnerability exists in TP-Link TL-WR886N version 6.0 2.3.4 and 7.0 1.1.0. An attacker can exploit the vulnerability by sending a request with long JSON data to cause the router service to crash...

6.5CVSS6.5AI score0.0104EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/14 12:0 a.m.2 views

TP-Link TL-WR886N Denial of Service Vulnerability

The TP-Link TL-WR886N is a wireless router product from China P&L TP-LINK. A security vulnerability exists in TP-Link TL-WR886N version 6.0 2.3.4 and 7.0 1.1.0. An attacker can exploit the vulnerability by sending a request with long JSON data to cause the router service to crash...

6.5CVSS6.5AI score0.0104EPSS
Exploits1References1
OSV
OSV
added 2018/09/13 6:29 p.m.4 views

CVE-2018-17011

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services e.g., inetd, HTTP, DNS, and UPnP via long JSON data for hostsinfo para sun...

6.5CVSS5.8AI score0.0104EPSS
Exploits1References1
OSV
OSV
added 2018/09/13 6:29 p.m.3 views

CVE-2018-17016

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services e.g., inetd, HTTP, DNS, and UPnP via long JSON data for reboottimer name...

6.5CVSS5.8AI score0.0104EPSS
Exploits1References1
NVD
NVD
added 2018/09/13 6:29 p.m.15 views

CVE-2018-17018

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services e.g., inetd, HTTP, DNS, and UPnP via long JSON data for timeswitch name...

6.5CVSS6.6AI score0.0104EPSS
Exploits1References1
NVD
NVD
added 2018/09/13 6:29 p.m.18 views

CVE-2018-17015

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services e.g., inetd, HTTP, DNS, and UPnP via long JSON data for ddns phddns username...

6.5CVSS6.6AI score0.0104EPSS
Exploits1References1
NVD
NVD
added 2018/09/13 6:29 p.m.12 views

CVE-2018-17010

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services e.g., inetd, HTTP, DNS, and UPnP via long JSON data for wireless wlanhost2g bandwidth...

6.5CVSS6.6AI score0.0104EPSS
Exploits1References1
NVD
NVD
added 2018/09/13 6:29 p.m.18 views

CVE-2018-17013

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services e.g., inetd, HTTP, DNS, and UPnP via long JSON data for protocol wan wanrate...

6.5CVSS6.6AI score0.0104EPSS
Exploits1References1
Rows per page
Query Builder