Ruijie AP180 Series Operating System Command Injection Vulnerability

The Ruijie AP180 Series is a series of panel-type wireless access points produced by the Chinese company Ruijie. Previous versions of the Ruijie AP180 Series, including those with model number 11.94B1P8, had a vulnerability related to operating system command injection. This vulnerability stems...

NetApp ONTAP Information Disclosure Vulnerability

NetApp ONTAP is a proprietary operating system from Network Appliance NetApp, Inc. It is used for storage disk arrays. An information disclosure vulnerability exists in NetApp ONTAP 9 versions 9.12.1P8, 9.13.1P4 and 9.13.1P5, which stems from the presence of a sensitive information disclosure...

Hackers are implanting multiple backdoors at industrial targets in Japan

Cybersecurity researchers on Tuesday disclosed details of a sophisticated campaign that deploys malicious backdoors for the purpose of exfiltrating information from a number of industry sectors located in Japan. Dubbed "A41APT" by Kaspersky researchers, the findings delve into a new slew of attac...

SQL injection vulnerability in ESPCMS P8 frontend Me***.php file

ESPCMS is an enterprise website management system built on LAMP development. A SQL injection vulnerability exists in the ESPCMS P8 frontend Me.php file. An attacker can use this vulnerability to obtain sensitive information from the database...

Elevation of Privilege Vulnerability in Multiple Huawei Phones (CNVD-2016-11303)

Huawei Mate 8, Mate S, P8 are smartphones from Huawei. A security vulnerability in the form of missing parameter checking exists in several Huawei phones. The vulnerability is exploited on the premise that an attacker obtains Graphic or Camera permissions and induces the user to install a malicio...

CVE-2016-8279

The video driver in Huawei Mate S smartphones with software CRR-TL00 before CRR-TL00C01B362, CRR-UL20 before CRR-UL20C00B362, CRR-CL00 before CRR-CL00C92B362, and CRR-CL20 before CRR-CL20C92B362; P8 smartphones with software GRA-TL00 before GRA-TL00C01B366, GRA-UL00 before GRA-UL00C00B366, GRA-UL...

SUSE-SU-2016:1568-1 Security update for ntp

ntp was updated to version 4.2.8p8 to fix 17 security issues. These security issues were fixed: - CVE-2016-4956: Broadcast interleave bsc982068. - CVE-2016-2518: Crafted addpeer with hmode 7 causes array wraparound with MATCHASSOC bsc977457. - CVE-2016-2519: ctlgetitem return value not always...

NTP.org ntpd Denial of Service Vulnerability

ntpd Network Time Protocol daemon is an operating system daemon. A denial of service vulnerability exists in versions of NTP.org ntpd prior to 4.2.8p8, which can be exploited by remote attackers to cause a denial of service by sending specially crafted packets...