With the Rise of AI, Cisco Sounds an Urgent Alarm About the Risks of Aging Tech

Generative AI is making it even easier for attackers to exploit old and often forgotten network equipment. Replacing it takes investment, but Cisco is making the case that it’s worth it...

EUVD-2017-8419

Malware in sbrugna...

EUVD-2024-28123

Malicious code in bioql PyPI...

Cisco IOS XR 资源管理错误漏洞

Cisco IOS XR is a set of operating systems developed by the American company Cisco Cisco for its network equipment. Cisco IOS XR suffers from a Resource Management Error vulnerability that arises from uncontrolled resource consumption by an application, which can be exploited by an attacker to...

CVE-2022-25756

A vulnerability has been identified in SCALANCE X302-7 EEC 230V, SCALANCE X302-7 EEC 230V, coated, SCALANCE X302-7 EEC 24V, SCALANCE X302-7 EEC 24V, coated, SCALANCE X302-7 EEC 2x 230V, SCALANCE X302-7 EEC 2x 230V, coated, SCALANCE X302-7 EEC 2x 24V, SCALANCE X302-7 EEC 2x 24V, coated, SCALANCE...

Information Disclosure Vulnerability in Riptide NBR108G-P Gateway

Ruijie Networks is a specialized network vendor with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products, storage, and more. An information disclosure vulnerability exists in the Ruijie NBR108G-P gateway, whic...

Confluence XHR requests have the wrong content type

h3. Problem Watching or Stop watching a Confluence page and other operations see below list of identified endpoints will generate a request like the one below copied as curl from HAR capture for convenience: code:java curl 'https://confluence/rest/api/user/watch/content/9999999' \ -X 'DELETE' \ -...

Riptide EG2000UE suffers from information disclosure vulnerability (CNVD-2023-97847)

Beijing StarNet Ruijie Network Technology Co., Ltd. is a professional network manufacturer with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products, storage and so on. An information leakage vulnerability exis...

China's Stealthy Hackers Infiltrate U.S. and Guam Critical Infrastructure Undetected

A stealthy China-based group managed to establish a persistent foothold into critical infrastructure organizations in the U.S. and Guam without being detected, Microsoft and the "Five Eyes" nations said on Wednesday. The tech giant's threat intelligence team is tracking the activity, which includ...

File Download Vulnerability in EWEB Network Management System of Beijing StarNet Ruijie Network Technology Co.

Ruijie Networks is a specialized network vendor with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products and storage. A file download vulnerability exists in the EWEB network management system of Beijing StarN...

多款Schneider Electric产品数据伪造问题漏洞

The Schneider Electric APC Smart-UPS SMC Series, among others, is a product of Schneider Electric, a French company. The Schneider Electric APC Smart-UPS SMT Series is a line interactive power protection for servers, point-of-sale, routers, switches, hubs and other network equipment. The Schneide...

Information Disclosure Vulnerability in TOTOLINK-N302RE

TOTOLINK is a brand held by Gion Electronics Shenzhen Co., Ltd, founded in 1999, is a high-tech foreign-funded enterprises, one of the global network equipment suppliers. An information disclosure vulnerability exists in TOTOLINK-N302RE, which can be exploited by attackers to obtain sensitive...

Command Execution Vulnerability in the WEB Management System of Ruijie EG2000 Series Easy Gateway

Beijing StarNet Ruijie Network Technology Co., Ltd. is a professional network manufacturer with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products, storage and so on. A command execution vulnerability exists ...

SQL Injection Vulnerability in Riptide NBR Routers

Ruijie Networks Co., Ltd. is a professional network manufacturer with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products, storage, and so on. A SQL injection vulnerability exists in Ruijie NBR routers, which...

Weak Password Vulnerability in AC Centralized Management Platform of AUO Electronic Equipment (Shanghai) Co.

AUO Electronic Equipment Shanghai Co., Ltd. is a company that mainly deals with network equipment, wireless equipment, switches and other items. A weak password vulnerability exists in the AC centralized management platform of AUO Electronic Devices Shanghai Ltd, which can be exploited by attacke...

Directory Traversal Vulnerability in Yulin Golden Point Cloud Software Technology Co.

Yulin Golden Point Cloud Software Technology Co., Ltd, business scope: artificial intelligence application software development; network and information security software development; software sales; information security equipment sales; network equipment sales; electronic product sales and so on...

Unauthorized Access Vulnerability in Tenda Roteador Multilaser 1200AC Devices

Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment. An unauthorized access vulnerability exists in the Tenda Roteador Multilaser 1200AC device, which can be exploited by attackers to...

Unauthorized Access Vulnerability in Wireless Signal Extender of Shenzhen Jixiang Tengda Technology Co.

Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment. Shenzhen Jixiang Tengda Technology Co., Ltd Wireless Signal Extender has an unauthorized access vulnerability that can be exploited b...

Riptide Networks Unified Internet Behavior Management Exploits Arbitrary File Download Vulnerability

Ruijie Networks is a specialized network vendor with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products, storage, and more. An arbitrary file download vulnerability exists in Ruijie Network's Unified Internet...

Denial of Service Vulnerability in Various AC Routers of Shenzhen Jixiang Tengda Technology Co. Ltd (CNVD-2021-41101)

Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment. Shenzhen Jixiang Tengda Technology Co., Ltd Various AC routers have denial-of-service vulnerabilities, which can be exploited by...