15 matches found
Apache Solr: Unauthorized bypass of certain "predefined permission" rules in the RuleBasedAuthorizationPlugin
Deployments of Apache Solr 5.3.0 through 9.10.0 that rely on Solr's "Rule Based Authorization Plugin" are vulnerable to allowing unauthorized access to certain Solr APIs, due to insufficiently strict input validation in those components. Only deployments that meet all of the following criteria ar...
EUVD-2020-7243
Malware in sbrugna...
EUVD-2016-9349
Malware in sbrugna...
CVE-2022-20248
In Settings, there is a possible way to connect to an open network bypassing DISALLOWCONFIGWIFI restriction due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
Omron CS/CJ Series Missing Authentication For Critical Function (CVE-2022-45794)
Omron CS/CJ series programmable logic controllers are missing authentication for the file system. This could allow an attacker to access the file system via memory card or EM file memory and obtain all available sensitive information. This plugin only works with Tenable.ot. Please visit...
CVE-2022-20248
In Settings, there is a possible way to connect to an open network bypassing DISALLOWCONFIGWIFI restriction due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2022-20248
In Settings, there is a possible way to connect to an open network bypassing DISALLOWCONFIGWIFI restriction due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
Buffer overflow
In ACCEL-PPP an implementation of PPTP/PPPoE/L2TP/SSTP, there is a buffer overflow when receiving an l2tp control packet ith an AVP which type is a string and no hidden flags, length set to less than 6. If your application is used in open networks or there are untrusted nodes in the network it is...
CVE-2020-15173 Heap buffer overflow in ACCEL-PPP
In ACCEL-PPP an implementation of PPTP/PPPoE/L2TP/SSTP, there is a buffer overflow when receiving an l2tp control packet ith an AVP which type is a string and no hidden flags, length set to less than 6. If your application is used in open networks or there are untrusted nodes in the network it is...
CVE-2020-15158
In libIEC61850 before version 1.4.3, when a message with COTP message length field with value 4 is received an integer underflow will happen leading to heap buffer overflow. This can cause an application crash or on some platforms even the execution of remote code. If your application is used in...
CVE-2020-15158
In libIEC61850 before version 1.4.3, when a message with COTP message length field with value 4 is received an integer underflow will happen leading to heap buffer overflow. This can cause an application crash or on some platforms even the execution of remote code. If your application is used in...
Heap overflow
In libIEC61850 before version 1.4.3, when a message with COTP message length field with value 4 is received an integer underflow will happen leading to heap buffer overflow. This can cause an application crash or on some platforms even the execution of remote code. If your application is used in...
CVE-2020-15158 Heap buffer overflow in libIEC61850
In libIEC61850 before version 1.4.3, when a message with COTP message length field with value 4 is received an integer underflow will happen leading to heap buffer overflow. This can cause an application crash or on some platforms even the execution of remote code. If your application is used in...
Targeted WPA2-Enterprise Evil Twin Attacks: eaphammer
Targeted WPA2-Enterprise Evil Twin Attacks EAPHammer is a toolkit for performing targeted evil twin attacks against WPA2-Enterprise networks. It is designed to be used in full scope wireless assessments and red team engagements. As such, focus is placed on providing an easy-to-use interface that...
CVE-2016-8501
Security WiFi bypass in Yandex Browser from version 15.10 to 15.12 allows remote attacker to sniff traffic in open or WEP-protected wi-fi networks despite of special security mechanism is enabled...