1047 matches found
Yodinfo Mini Mouse path traversal vulnerability
Yodinfo Mini Mouse is a mobile remote control application developed by Yodinfo in China. The version 9.2.0 of Yodinfo Mini Mouse contains a path traversal vulnerability. This vulnerability arises due to specially crafted HTTP requests that allow for path traversal, potentially leading to access t...
MiracleLinux 9 : thunderbird-102.5.0-2.el9.ML.1 (AXSA:2023-5045:06)
The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5045:06 advisory. Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen notification bypass CVE-2022-45404...
MiracleLinux 8 : firefox-102.5.0-1.el8.ML.1 (AXSA:2023-4657:01)
The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-4657:01 advisory. Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen notification bypass CVE-2022-45404...
CVE-2021-47786
Redragon Gaming Mouse driver contains a kernel-level vulnerability that allows attackers to trigger a denial of service by sending malformed IOCTL requests. Attackers can send a crafted 2000-byte buffer with specific byte patterns to the REDRAGONMOUSE device to crash the kernel driver...
CVE-2021-47789
Yenkee Hornet Gaming Mouse driver GM312Fltr.sys contains a buffer overrun vulnerability that allows attackers to crash the system by sending oversized input. Attackers can exploit the driver by sending a 2000-byte buffer through DeviceIoControl to trigger a kernel-level system crash...
CVE-2021-47844
Xmind 2020 contains a cross-site scripting vulnerability that allows attackers to inject malicious payloads into mind mapping files or custom headers. Attackers can craft malicious files with embedded JavaScript that execute system commands when opened, enabling remote code execution through mous...
CVE-2021-47792
Remote Mouse 4.002 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path in the RemoteMouseService to inject malicious executables and gain administrative access...
CVE-2021-47792
Remote Mouse 4.002 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path in the RemoteMouseService to inject malicious executables and gain administrative access...
CVE-2021-47786
Redragon Gaming Mouse driver contains a kernel-level vulnerability that allows attackers to trigger a denial of service by sending malformed IOCTL requests. Attackers can send a crafted 2000-byte buffer with specific byte patterns to the REDRAGONMOUSE device to crash the kernel driver...
RemoteMouse security vulnerability
Remote Mouse is a remote mouse application developed by the Remote Mouse company. Version 4.002 of Remote Mouse contains a security vulnerability. This vulnerability stems from the RemoteMouseService having a service path that is not enclosed in quotes, which may allow for the execution of...
Yenkee GM312Fltr.sys security vulnerability
Yenkee GM312Fltr.sys is a driver for mice developed by Yenkee Corporation. Yenkee GM312Fltr.sys contains a security vulnerability; this vulnerability stems from a buffer overflow issue, which may lead to system crashes...
Redragon Gaming Mouse driver security vulnerability
Redragon Gaming Mouse driver is a mouse driver software developed by the American company Redragon. The Redragon Gaming Mouse driver has a security vulnerability; this vulnerability stems from a kernel-level flaw that may lead to the sending of malformed IOCTL requests, potentially triggering a...
MiracleLinux 4 : spice-gtk-0.20-11.AXS4 (AXSA:2014-014:01)
The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2014-014:01 advisory. Client libraries for SPICE desktop servers. Security issues fixed with this release: CVE-2013-4324 spice-gtk 0.14, and possibly other versions, invokes the...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001078)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001078 advisory. Multiple stack-based buffer overflows in the magicmouserawevent function in drivers/hid/hid-magicmouse.c in the Magic Mouse HID driver in the Linux kernel through...
CVE-2021-47792 Remote Mouse 4.002 - Unquoted Service Path
Remote Mouse 4.002 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path in the RemoteMouseService to inject malicious executables and gain administrative access...
CVE-2021-47792
Remote Mouse 4.002 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path in the RemoteMouseService to inject malicious executables and gain administrative access...
CVE-2021-47792
CVE-2021-47792 affects Remote Mouse 4.002 with an unquoted service path in RemoteMouseService. This allows a local attacker to execute arbitrary code with elevated privileges due to path quoting issues. Impact is local code execution with administrator rights and high confidentiality/integrity/av...
CVE-2021-47792 Remote Mouse 4.002 - Unquoted Service Path
Remote Mouse 4.002 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path in the RemoteMouseService to inject malicious executables and gain administrative access...
CVE-2021-47789
Yenkee Hornet Gaming Mouse driver GM312Fltr.sys contains a buffer overrun vulnerability that allows attackers to crash the system by sending oversized input. Attackers can exploit the driver by sending a 2000-byte buffer through DeviceIoControl to trigger a kernel-level system crash...
CVE-2021-47789 Yenkee Hornet Gaming Mouse - 'GM312Fltr.sys' Denial of Service (PoC)
Yenkee Hornet Gaming Mouse driver GM312Fltr.sys contains a buffer overrun vulnerability that allows attackers to crash the system by sending oversized input. Attackers can exploit the driver by sending a 2000-byte buffer through DeviceIoControl to trigger a kernel-level system crash...