23 matches found
EUVD-2021-25053
Malware in sbrugna...
EUVD-2021-25051
Malware in sbrugna...
EUVD-2021-25052
Malware in sbrugna...
CVE-2021-38613
The assets/index.php Image Upload feature of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to upload any code to the target system and achieve remote code execution...
CVE-2021-38611
A command-injection vulnerability in the Image Upload function of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to execute arbitrary commands, as root, via shell metacharacters in the filename parameter to assets/index.php...
CVE-2021-38612
In NASCENT RemKon Device Manager 4.0.0.0, a Directory Traversal vulnerability in a log-reading function in maintenance/readLog.php allows an attacker to read any file via a specialized URL...
Nascent RemKon Device Manager Remote Code Execution (CVE-2021-38613; CVE-2021-38611)
A remote code execution vulnerability exists in Nascent RemKon Device Manager. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2021-38613
The assets/index.php Image Upload feature of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to upload any code to the target system and achieve remote code execution...
CVE-2021-38611
A command-injection vulnerability in the Image Upload function of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to execute arbitrary commands, as root, via shell metacharacters in the filename parameter to assets/index.php...
CVE-2021-38611
A command-injection vulnerability in the Image Upload function of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to execute arbitrary commands, as root, via shell metacharacters in the filename parameter to assets/index.php...
CVE-2021-38612
In NASCENT RemKon Device Manager 4.0.0.0, a Directory Traversal vulnerability in a log-reading function in maintenance/readLog.php allows an attacker to read any file via a specialized URL...
CVE-2021-38613
The assets/index.php Image Upload feature of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to upload any code to the target system and achieve remote code execution...
Directory traversal
In NASCENT RemKon Device Manager 4.0.0.0, a Directory Traversal vulnerability in a log-reading function in maintenance/readLog.php allows an attacker to read any file via a specialized URL...
Remote code execution
The assets/index.php Image Upload feature of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to upload any code to the target system and achieve remote code execution...
Command injection
A command-injection vulnerability in the Image Upload function of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to execute arbitrary commands, as root, via shell metacharacters in the filename parameter to assets/index.php...
CVE-2021-38613
The assets/index.php Image Upload feature of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to upload any code to the target system and achieve remote code execution...
CVE-2021-38613
The CVE-2021-38613 entry concerns NASCENT RemKon Device Manager 4.0.0.0, where the assets/index.php Image Upload feature allows an attacker to upload arbitrary code and achieve remote code execution. This is driven by the documented vulnerability in the image upload function, enabling network-bas...
CVE-2021-38612
In NASCENT RemKon Device Manager 4.0.0.0, a Directory Traversal vulnerability in a log-reading function in maintenance/readLog.php allows an attacker to read any file via a specialized URL...
CVE-2021-38612
The CVE-2021-38612 entry concerns NASCENT RemKon Device Manager version 4.0.0.0. A directory traversal flaw exists in the log-reading function at maintenance/readLog.php, enabling an attacker to read arbitrary files via a specially crafted URL. Public references (NVD, Red Hat, CVE listings, and r...
CVE-2021-38611
Summary: CVE-2021-38611 is a command-injection vulnerability in the NASCENT RemKon Device Manager 4.0.0.0 Image Upload feature. The flaw allows an attacker to execute arbitrary commands as root by supplying shell metacharacters in the filename parameter to assets/index.php. Multiple connected rec...