47 matches found
CVE-2022-43675
An issue was discovered in NOKIA NFM-T R19.9. Reflected XSS in the Network Element Manager exists via /oms1350/pages/otn/cpbLogDisplay via the filename parameter, under /oms1350/pages/otn/connection/E2ERoutingDisplayWithOverLay via the id parameter, and under /oms1350/pages/otn/mainOtn via all...
Command injection
Brook is a cross-platform programmable network tool. The tproxy server is vulnerable to a drive-by command injection. An attacker may fool a victim into visiting a malicious web page which will trigger requests to the local tproxy service leading to remote code execution. A patch is available in...
CVE-2023-1764
Canon IJ Network Tool/Ver.4.7.5 and earlier supported OS: OS X 10.9.5-macOS 13,IJ Network Tool/Ver.4.7.3 and earlier supported OS: OS X 10.7.5-OS X 10.8 allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the communication of the software...
CVE-2023-1763
Canon IJ Network Tool/Ver.4.7.5 and earlier supported OS: OS X 10.9.5-macOS 13,IJ Network Tool/Ver.4.7.3 and earlier supported OS: OS X 10.7.5-OS X 10.8 allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the software...
Information disclosure
Canon IJ Network Tool/Ver.4.7.5 and earlier supported OS: OS X 10.9.5-macOS 13,IJ Network Tool/Ver.4.7.3 and earlier supported OS: OS X 10.7.5-OS X 10.8 allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the software...
Design/Logic Flaw
Canon IJ Network Tool/Ver.4.7.5 and earlier supported OS: OS X 10.9.5-macOS 13,IJ Network Tool/Ver.4.7.3 and earlier supported OS: OS X 10.7.5-OS X 10.8 allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the communication of the software...
Canon IJ Network Tool 加密问题漏洞
Canon IJ Network Tool is a network tool from Canon Japan. A vulnerability exists in Canon IJ Network Tool version 4.7.5 and earlier for OS X 10.9.5-macOS 13 operating systems, IJ Network Tool version 4.7.3 and earlier for OS X 10.7.5-OS X 10.8 operating systems due to a cryptographic issue. An...
CVE-2023-1763
Canon IJ Network Tool/Ver.4.7.5 and earlier supported OS: OS X 10.9.5-macOS 13,IJ Network Tool/Ver.4.7.3 and earlier supported OS: OS X 10.7.5-OS X 10.8 allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the software...
CVE-2023-1763
Canon IJ Network Tool/Ver.4.7.5 and earlier supported OS: OS X 10.9.5-macOS 13,IJ Network Tool/Ver.4.7.3 and earlier supported OS: OS X 10.7.5-OS X 10.8 allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the software...
CVE-2023-1764
Canon IJ Network Tool/Ver.4.7.5 and earlier supported OS: OS X 10.9.5-macOS 13,IJ Network Tool/Ver.4.7.3 and earlier supported OS: OS X 10.7.5-OS X 10.8 allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the communication of the software...
PT-2023-17223 · Canon · Canon Ij Network Tool +1
Name of the Vulnerable Software and Affected Versions: Canon IJ Network Tool versions 4.7.5 and earlier IJ Network Tool versions 4.7.3 and earlier Description: The issue allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the software...
CVE-2023-1764
Canon IJ Network Tool v4.7.5 and earlier (OS X 10.9.5–macOS 13) and v4.7.3 and earlier (OS X 10.7.5–OS X 10.8) can disclose the printer’s Wi‑Fi connection settings through its communications. The Root Cause involves a cryptographic/communication issue in the tool, enabling an attacker to obtain s...
CVE-2023-1763
CVE-2023-1763 concerns Canon IJ Network Tool, affected versions 4.7.5 and earlier (OS X 10.9.5–macOS 13) and 4.7.3 and earlier (OS X 10.7.5–OS X 10.8), where the software can disclose sensitive information about the printer’s Wi‑Fi connection setup. The CVE’s sources consistently describe an info...
PT-2023-17224 · Canon · Canon Ij Network Tool +1
Name of the Vulnerable Software and Affected Versions: Canon IJ Network Tool versions 4.7.5 and earlier IJ Network Tool versions 4.7.3 and earlier Description: The issue allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the communication of the...
CVE-2023-1764
Canon IJ Network Tool/Ver.4.7.5 and earlier supported OS: OS X 10.9.5-macOS 13,IJ Network Tool/Ver.4.7.3 and earlier supported OS: OS X 10.7.5-OS X 10.8 allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the communication of the software...
Realtek xPON RTL9601D SDK 代码问题漏洞
Realtek xPON RTL9601D SDK is an application chip from Realtek China. It is used for network communication. Realtek xPON RTL9601D SDK 1.9 suffers from a code issue vulnerability that originates from a plaintext storage password, which can be exploited by an attacker to potentially gain access to a...
Exploit for Improper Access Control in Elasticsearch
欢迎各位大佬提BUG,当前版本 AssetScanV1.3 周期 初版:2019年11月28日 V1.0初版编写完成 修改1:2019年12月02日 感谢Shadow·J反馈kali下文件导入异常 修改2:2019年12月03日 V1.1发布,新增ARP存活检测(回滚,测bug) 修改3:2019年12月04日 V1.2发布,修复漏洞脚本异常,修复weblogic脚本 修改4:2019年12月05日 V1.2修改,感谢sevck提供设计思路以及代码不规范问题 修改5:2019年12月05日 V1.2修改,修复IP数据处理异常 修改6:2019年12月19日...
tcpdump buffer overflow vulnerability (CNVD-2019-41915)
tcpdump is a set of sniffing tools from Tcpdump team running under command line. The tool is mainly used for packet analysis and network traffic capture etc. A buffer overflow vulnerability exists in tcpdump. The vulnerability stems from a failure of a network system or product to properly valida...
BlueGhost - A Network Tool Designed To Assist Blue Teams In Banning Attackers From Linux Servers
This tool utilizes various linux network tools and bash scripting to assist blue teams on defending debian and ubuntu based servers from malicious attackers. Scan/Ban shows connected IPs, scans IP addresses for open ports using nmap and whois search to gather reconnaissance on connected IPs, show...
DEBIAN-CVE-2014-8768
Multiple Integer underflows in the geonetprint function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allow remote attackers to cause a denial of service segmentation fault and crash via a crafted length value in a Geonet frame...