CVE-2023-53464 scsi: iscsi_tcp: Check that sock is valid before iscsi_set_param()

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: Check that sock is valid before iscsisetparam The validity of sock should be checked before assignment to avoid incorrect values. Commit 57569c37f0ad "scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling...

Tenda FH1202 安全漏洞

Tenda FH1202 is a dual-band wireless router from Tenda that supports 2.4GHz and 5GHz bands with a total transmission rate of 1200Mbps. The Tenda FH1202 suffers from a buffer overflow vulnerability that originates from the adslPwd parameter of the formWanParameterSetting method failing to correctl...

Command injection

TOTOlink A7100RUV7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the org parameter at setting/delStaticDhcpRules...

Command injection

TOTOlink A7100RU V7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the rsabits parameter in the setting/delStaticDhcpRules function...

CVE-2022-46634

TOTOlink A7100RU V7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the wscDisabled parameter in the setting/setWiFiWpsCfg function...

CVE-2022-36571

Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the mask parameter at /goform/WanParameterSetting...

Tenda AX1803 WanParameterSetting function command injection vulnerability

Tenda AX1803 is a dual-band gigabit WIFI6 router from Tenda China.Tenda AX1803 v1.0.0.12890 version of the command injection vulnerability, which stems from the WanParameterSetting function fails to properly filter the construct command special characters, commands, etc.. An attacker could exploi...

CVE-2022-34596

Tenda AX1803 v1.0.0.12890 was discovered to contain a command injection vulnerability via the function WanParameterSetting...

CVE-2022-34597

Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability via the function WanParameterSetting...

CVE-2022-24144

Tenda AX3 v16.03.12.10CN was discovered to contain a command injection vulnerability in the function WanParameterSetting. This vulnerability allows attackers to execute arbitrary commands via the gateway, dns1, and dns2 parameters...

Tenda AC9 Command Injection Vulnerability

Tenda AC9 is a wireless router from Tenda, a Chinese company. An operating system command injection vulnerability exists in the /goform/WanParameterSetting function in the Tenda AC9. The vulnerability arises when the network system or product fails to properly filter special characters, commands,...

CVE-2019-5072

An exploitable command injection vulnerability exists in the /goform/WanParameterSetting functionality of Tenda AC9 Router AC1200 Smart Dual-Band Gigabit WiFi Route AC9V1.0 Firmware V15.03.05.16multiTRU. A specially crafted HTTP POST request can cause a command injection in the DNS2 post...

CVE-2019-5071

An exploitable command injection vulnerability exists in the /goform/WanParameterSetting functionality of Tenda AC9 Router AC1200 Smart Dual-Band Gigabit WiFi Route AC9V1.0 Firmware V15.03.05.16multiTRU. A specially crafted HTTP POST request can cause a command injection in the DNS1 post...

Yokogawa Powercert PC parameter setting tool Detection (Windows SMB Login)

Detects the installed version of Yokogawa Powercert PC parameter setting tool for Windows. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

WEG SuperDrive G2 12.0.0 - Insecure File Permissions

Exploit for windows platform in category local exploits WEG SuperDrive G2 v12.0.0 Insecure File Permissions Vendor: WEG Group Product web page: http://www.weg.net Affected version: SuperDrive G2 v12.0.0 Build 20150930-J1.8.060-NB8.0.2 SuperDrive v7.0.0 Summary: SuperDrive is a Windows graph tool...

WEG SuperDrive G2 12.0.0 - Insecure File Permissions

WEG SuperDrive G2 12.0.0 - Insecure File Permissions WEG SuperDrive G2 v12.0.0 Insecure File Permissions Vendor: WEG Group Product web page: http://www.weg.net Affected version: SuperDrive G2 v12.0.0 Build 20150930-J1.8.060-NB8.0.2 SuperDrive v7.0.0 Summary: SuperDrive is a Windows graph tool for...

Fedora 18 : dracut-024-5.git20121019.fc18 (2012-16448)

fixed ifup exit code - fixed default 'rd.auto' parameter setting - only 'warn' not 'error', if we don't strip the initramfs - do not overwrite ifcfg from anaconda - ssh-client module fixes - strip binaries in the initramfs by default now - fixes for systemd and crypto - new dracut kernel command...

Bo-Blog 2.0.3 background plug horse execute arbitrary commands vulnerability-vulnerability warning-the black bar safety net

| Article source: &&www.slenk.net Article author: lone water around the city Today analyzed under the Bo-Blog 2.0.3 of the code, The event is by this version of the Flyh4t big cow release of a known injection vulnerability. Into the backend crunching for half a day, and looked under the code,...