EUVD-2023-57520

Malicious code in bioql PyPI...

CVE-2022-39891

Heap overflow vulnerability in parsepce function in libsavsaudio.so in Editor Lite prior to version 4.0.41.3 allows attacker to get information...

org.opendaylight.detnet:detnet-karaf (=0.1.0), org.opendaylight.detnet:features-detnet (=0.1.0) +4 more potentially affected by CVE-2024-46943 via org.opendaylight.aaa:aaa-artifacts (=0.11.0)

org.opendaylight.aaa:aaa-artifacts MAVEN version =0.11.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.opendaylight.aaa:aaa-artifacts and may be impacted: - org.opendaylight.detnet:detnet-karaf =0.1.0 - org.opendaylight.detnet:features-detnet...

pce-hungary.hu Improper Access Control vulnerability OBB-3835407

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Deserialization of untrusted data

Unsafe deserialization of untrusted JSON allows execution of arbitrary code on affected releases of the Illumio PCE. Authentication to the API is required to exploit this vulnerability. The flaw exists within the networktraffic API endpoint. An attacker can leverage this vulnerability to execute...

Illumio PCE Code Issue Vulnerability

Illumio PCE is a computational engine from Illumio, Inc. Illumio PCE suffers from a security vulnerability that stems from the unsafe deserialization of untrusted JSON in the networktraffic API endpoint, which can be exploited by an attacker to execute code in the context of a user of the PCE...

CVE-2023-5183

Summary: CVE-2023-5183 describes an unsafe deserialization of untrusted JSON in Illumio PCE’s network_traffic API that can lead to remote code execution. An attacker must authenticate to exploit this vulnerability and can execute code with the PCE operating system user privileges. The vulnerabili...

CVE-2023-5183 Authenticated RCE due to unsafe JSON deserialization

Unsafe deserialization of untrusted JSON allows execution of arbitrary code on affected releases of the Illumio PCE. Authentication to the API is required to exploit this vulnerability. The flaw exists within the networktraffic API endpoint. An attacker can leverage this vulnerability to execute...

CVE-2023-5183 Authenticated RCE due to unsafe JSON deserialization

Unsafe deserialization of untrusted JSON allows execution of arbitrary code on affected releases of the Illumio PCE. Authentication to the API is required to exploit this vulnerability. The flaw exists within the networktraffic API endpoint. An attacker can leverage this vulnerability to execute...

PT-2023-31897 · Illumio · Illumio Pce

Name of the Vulnerable Software and Affected Versions: Illumio PCE affected versions not specified Description: The issue is related to unsafe deserialization of untrusted JSON, which allows execution of arbitrary code on affected releases of the Illumio PCE. To exploit this, authentication to th...

CVE-2022-39891

Heap overflow vulnerability in parsepce function in libsavsaudio.so in Editor Lite prior to version 4.0.41.3 allows attacker to get information...

CVE-2022-39891

Heap overflow vulnerability in parsepce function in libsavsaudio.so in Editor Lite prior to version 4.0.41.3 allows attacker to get information...

SAMSUNG Editor Lite 缓冲区错误漏洞

SAMSUNG Editor Lite is a video editor from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Editor Lite versions prior to 4.0.41.3, which is caused by a heap overflow in the parsepce function in libsavsaudio.so, which can be exploited by an attacker to obtain...

PT-2022-25084 · Unknown · Libsavsaudio.So +1

Name of the Vulnerable Software and Affected Versions: Editor Lite versions prior to 4.0.41.3 Description: A heap overflow vulnerability exists in the parse pce function in libsavsaudio.so of Editor Lite. This issue allows an attacker to obtain information. Recommendations: For versions prior to...

pce-co.com Cross Site Scripting vulnerability OBB-2434555

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

PCAUSA Rawether for Windows local privilege escalation

Rawether for Windows is a framework that facilitates communication between an application and the NDIS miniport driver. It’s produced by a company named Printing Communications Assoc., Inc. PCAUSA, which seems to be no longer operating. Company websites can be still reached through web.archive.or...

ASUS PCE-AC56 WLAN Card Utilities (PCAUSA Rawether Windows 10 x64) - Local Privilege Escalation

ASUS PCE-AC56 WLAN Card Utilities PCAUSA Rawether Windows 10 x64 - Local Privilege Escalation. Local exploit for Winx86-64 platform Rawether for Windows is a framework that facilitates communication between an application and the NDIS miniport driver. It’s produced by a company named Printing...

ASUS PCE-AC56 WLAN Card Utilities (PCAUSA Rawether Windows 10 x64) - Local Privilege Escalation Expl

Exploit for windows platform in category local exploits Rawether for Windows is a framework that facilitates communication between an application and the NDIS miniport driver. It’s produced by a company named Printing Communications Assoc., Inc. PCAUSA, which seems to be no longer operating...

PCAUSA Rawether (ASUS PCE-AC56 WLAN Card Utilities Windows 10 x64) - Local Privilege Escalation

Exploit Title: PCAUSA Rawether for Windows local privilege escalation Date: 2017-03-15 Exploit Author: ReWolf Vendor Homepage: original vendor website doesn't exist anymore Version: too many Tested on: Windows 10 x64 TH2, RS1 Rawether for Windows is a framework that facilitates communication...

Cisco IOS XR Software OSPF Link State Advertisement PCE Vulnerability (cisco-sa-20160104-iosxr)

A vulnerability in Open Shortest Path First OSPF Link State Advertisement LSA handling by Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a...