GE STXPBS116 RSTi Slice PROFIBUS V1 Slave Network Interface Detection

Binary data 755563.prm...

Schneider Electric Quantum 140NOE771 Network Interface Module Fwupgrade Password Weakness

Binary data 720235.prm...

GE STXPBS924 RSTi Slice PROFIBUS V1 Slave Network Interface Detection

Binary data 755567.prm...

Privilege Escalation

The libvirt library is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. libvirt invokes the PolicyKit pkcheck utility to handle authorization. A race...

Moderate: Red Hat Bug Fix Advisory: containernetworking-plugins bug fix and enhancement update

An updated containernetworking-plugins package that fixes several bugs and adds various enhancements is now available for Red Hat Enterprise Linux 7 Extras. The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interface...

DHCP Server 2.5.2 - Denial of Service (PoC)

Exploit Title: DHCP Server 2.5.2 - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2019-04-16 Vendor Homepage: http://www.dhcpserver.de/cms/ Software Link: http://www.dhcpserver.de/cms/wp-content/plugins/download-attachments Tested Version: 2.5.2 Tested on: Windows 7 x32...

March 12, 2019—KB4489878 (Monthly Rollup)

March 12, 2019—KB4489878 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4486565 released February 19, 2019 and addresses the following issues: Addresses an issue that may prevent the Event Viewer from showing some event...

September 20, 2018—KB4457139 (Preview of Monthly Rollup)

September 20, 2018—KB4457139 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4457144 released September 11, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Address...

November 27, 2018—KB4467108 (Preview of Monthly Rollup)

November 27, 2018—KB4467108 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4467107 released November 13, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addresses...

Product update: Virtuozzo 7.0 Update 9 Hotfix 1 (7.0.9-539)

The Hotfix 1 for for Virtuozzo 7.0.9 provides stability and usability bug fixes. Vulnerability id: PSBM-92228 Provided updated packages for Object Storage S3. Vulnerability id: PSBM-92227 A few unused role names were shown and could be assigned on the network interface settings screen in Virtuozz...

The vulnerability of Siemens Sinumerik programmable logic controllers lies in their exception handling errors, which allow attackers to trigger a service failure of the embedded network interface or execute arbitrary code within the context of the network interface.

The vulnerability of Siemens Sinumerik programmable logic controllers is related to an exception handling error. Exploiting this vulnerability can allow an attacker to cause a failure in the embedded network interface controller or enable the execution of arbitrary code within the network interfa...

Cross-site Scripting (XSS)

foreman is vulnerable to cross-site scripting. A remote authenticated attacker is able to inject arbitrary web script or HTML via the network interface device identifier in the host interface form...

January 8, 2019—KB4480970 (Monthly Rollup)

January 8, 2019—KB4480970 Monthly Rollup Improvements and fixes This security update addresses the following issues: Provides protections against an additional subclass of speculative execution side-channel vulnerability known as Speculative Store Bypass CVE-2018-3639 for AMD-based computers. The...

Buffer overflow

An issue was discovered in several Bosch Smart Home cameras 360 degree indoor camera and Eyes outdoor camera with firmware before 6.52.4. A malicious client could potentially succeed in the unauthorized execution of code on the device via the network interface, because there is a buffer overflow ...

CVE-2018-20299

The CVE affects Bosch Smart Home cameras (360° indoor and Eyes outdoor) with firmware prior to 6.52.4. A buffer overflow in the web server’s RCP+ parser allows a remote attacker over the network to potentially achieve unauthorized code execution on the device. The vulnerability has a network atta...

Input validation

Out-of-bounds array access in dhdrxframe in drivers/net/wireless/bcmdhd4358/dhdlinux.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker who has obtained code execution on the Wi-Fi chip to cause invalid accesses to operating system memory due to...

Input validation

An issue was discovered in several Bosch IP cameras for firmware versions 6.32 and higher. A malicious client could potentially succeed in the unauthorized execution of code on the device via the network interface...

CVE-2018-19036

An issue was discovered in several Bosch IP cameras for firmware versions 6.32 and higher. A malicious client could potentially succeed in the unauthorized execution of code on the device via the network interface...

CVE-2018-14852

Out-of-bounds array access in dhdrxframe in drivers/net/wireless/bcmdhd4358/dhdlinux.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker who has obtained code execution on the Wi-Fi chip to cause invalid accesses to operating system memory due to...

December 11, 2018—KB4471330 (Monthly Rollup)

December 11, 2018—KB4471330 Monthly Rollup Note: Because of minimal operations during the holidays and upcoming Western new year, there won’t be any preview releases for the month of December 2018. Monthly servicing will resume with the January 2019 security releases. Improvements and fixes This...