CVE-2021-47894 Managed Switch Port Mapping Tool 2.85.2 - Denial of Service

Managed Switch Port Mapping Tool 2.85.2 contains a denial of service vulnerability that allows attackers to crash the application by creating an oversized buffer. Attackers can generate a 10,000-character buffer and paste it into the IP Address and SNMP Community Name fields to trigger the...

CVE-2021-47894 Managed Switch Port Mapping Tool 2.85.2 - Denial of Service

Managed Switch Port Mapping Tool 2.85.2 contains a denial of service vulnerability that allows attackers to crash the application by creating an oversized buffer. Attackers can generate a 10,000-character buffer and paste it into the IP Address and SNMP Community Name fields to trigger the...

CVE-2021-47894

CVE-2021-47894 affects Managed Switch Port Mapping Tool 2.85.2. A DoS allows an attacker to crash the application by pasting a 10,000-character buffer into the IP Address and SNMP Community Name fields, exploiting an oversized-buffer condition. The vulnerability impacts availability and is local ...

CVE-2021-22731

Weak Password Recovery Mechanism for Forgotten Password vulnerability exists on Modicon Managed Switch MCSESM and MCSESP V8.21 and prior which could cause an unauthorized password change through HTTP / HTTPS when basic user information is known by a remote attacker...

EUVD-2017-14272

Malware in sbrugna...

EUVD-2017-15106

Malware in sbrugna...

EUVD-2017-15104

Malware in sbrugna...

EUVD-2017-15108

Malware in sbrugna...

EUVD-2021-9866

Malicious code in bioql PyPI...

Planet FW-WGS-804HPT web_snmpv3_remote_engineId_add_post function buffer overflow vulnerability

Planet FW-WGS-804HPT is a wall mounted managed switch from Planet China. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the failure of the remoteip parameter in the websnmpv3remoteengineIdaddpost function to properly validate the length of the input dat...

Planet FW-WGS-804HPT web_acl_mgmt_Rules_Edit_postcontains function buffer overflow vulnerability

Planet FW-WGS-804HPT is a wall-mounted managed switch from China PLANET. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the failure of the byruleEditName parameter in the webaclmgmtRulesEditpostcontains function to correctly validate the length and size...

Planet FW-WGS-804HPT web_acl_mgmt_Rules_Apply_post Function Buffer Overflow Vulnerability

Planet FW-WGS-804HPT is a wall mounted managed switch from China PLANET. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the ruleNamekey parameter in the webaclmgmtRulesApplypost function that fails to correctly validate the length of the input data, whi...

Planet FW-WGS-804HPT web_radiusSrv_post function buffer overflow vulnerability

Planet FW-WGS-804HPT is a wall mounted managed switch from China PLANET. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the failure of the radIpkey parameter in the webradiusSrvpost function to correctly validate the length of the input data, which can ...

Planet FW-WGS-804HPT web_snmp_notifyv3_add_post function buffer overflow vulnerability

Planet FW-WGS-804HPT is a wall mounted managed switch from China PLANET. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the hostip parameter in the websnmpnotifyv3addpost function failing to correctly validate the length of the input data, which can be...

Mitsubishi Electric CC-Link IE TSN Industrial Managed Switch

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 5.1 ATTENTION : Exploitable remotely/low attack complexity Vendor : Mitsubishi Electric Equipment : CC-Link IE TSN Industrial Managed Switch Vulnerability : Allocation of Resources Without Limits or Throttling 2. RISK EVALUATION Successful exploitation of...

Moxa Industrial Managed Switch Cross-site Scripting (CVE-2015-6466)

Cross-site scripting XSS vulnerability in the Diagnosis Ping feature in the administrative web interface on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote attackers to inject arbitrary web script or HTML via an unspecified field. This plugin only works with Tenable.ot...

Moxa Industrial Managed Switch Improper Privilege Management (CVE-2015-6464)

The administrative web interface on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to bypass a read-only protection mechanism by using Firefox with a web- developer plugin. This plugin only works with Tenable.ot. Please visit...

Mitsubishi Electric Multiple Factory Automation Products (Update D)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: GOT2000 compatible HMI software, CC-Link IE TSN Industrial Managed Switch, MELSEC iQ-R Series OPC UA Server Module Vulnerabilities: Infinite Loop, OS Command Injection 2...

Mitsubishi Electric Multiple Factory Automation Products (Update B)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: GOT2000 compatible HMI software, CC-Link IE TSN Industrial Managed Switch, MELSEC iQ-R Series OPC UA Server Module Vulnerabilities: Infinite Loop, OS Command Injection 2...

ZyXEL GS1900 Access Control Error Vulnerability

Zyxel ZyXEL GS1900 is a managed switch from Zyxel Taiwan, China. An Access Control Error vulnerability exists in multiple Zyxel products, which stems from the product's TFTP client not adding privilege controls to the functions that can execute system commands. The vulnerability can be exploited ...