CVE-2022-27373

Shanghai Feixun Data Communication Technology Co., Ltd router fir302b A2 was discovered to contain a remote command execution RCE vulnerability via the Ping function...

PT-2022-18401 · Shanghai Feixun Data Communication Technology Co. · Fir302B

Name of the Vulnerable Software and Affected Versions: Shanghai Feixun Data Communication Technology Co., Ltd router fir302b version A2 Description: The issue is related to a remote command execution vulnerability via the Ping function. This allows for potential unauthorized access and control...

phicomm Feixun fir302b A2 操作系统命令注入漏洞

The PHICOMM Feixun fir302b A2 is a router from China's Feixun PHICOMM. The Feixun fir302b A2 suffers from an operating system command injection vulnerability that stems from the discovery of a Remote Command Execution RCE vulnerability via the Ping function...

[SECURITY] Fedora 35 Update: golang-github-j-keck-arping-1.0.1-4.fc35

Arping is a native Go library to ping a host per arp datagram, or query a host mac address...

Fedora: Security Advisory for golang-github-j-keck-arping (FEDORA-2022-fae3ecee19)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CLSA-2022-1656958687 Fixed CVE-2022-31813 in httpd-39.module_el8.4.0+2066+54659116.1.tuxcare.els8

ELS-190: Fix undefined reference to PROXYSHOULDPING100CONTINUE in approxycreatehdrbrgd that occured in httpd-2.4.37-CVE-2022-31813.patch...

[SECURITY] Fedora 36 Update: golang-github-j-keck-arping-1.0.2-3.fc36

Arping is a native Go library to ping a host per arp datagram, or query a host mac address...

CVE-2022-23718

PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code execution. An attacker capable of achieving a sophisticated man-in-the-middle position, or to compromise Ping Identity web servers, could deliver malicious code that would be executed as SYSTEM by the...

CVE-2022-23718

PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code execution. An attacker capable of achieving a sophisticated man-in-the-middle position, or to compromise Ping Identity web servers, could deliver malicious code that would be executed as SYSTEM by the...

Remote code execution

PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code execution. An attacker capable of achieving a sophisticated man-in-the-middle position, or to compromise Ping Identity web servers, could deliver malicious code that would be executed as SYSTEM by the...

Ping Identity Windows PingId 安全漏洞

Ping Identity Windows PingId is a software from Ping Identity USA that provides security for applications. A security vulnerability exists in Ping Identity Windows PingId versions prior to 2.8 that stems from the possibility that an IT administrator could incorrectly deploy administrator-privileg...

Ping Identity Windows PingId 访问控制错误漏洞

Ping Identity Windows PingId is a software from Ping Identity, Inc. that provides security for applications. An access control error vulnerability exists in Ping Identity Windows PingId versions prior to 2.8, which stems from a failure to validly validate local Java service communication used to...

Ping Identity Windows PingId 授权问题漏洞

Ping Identity Windows PingId is a software from Ping Identity USA that provides security for applications. A security vulnerability exists in Ping Identity Windows PingId versions prior to 2.8 that stems from an inability to properly set the permissions of a Windows registry entry used to store...

Ping Identity Windows PingId 安全漏洞

Ping Identity Windows PingId is a software from Ping Identity USA that provides security for applications. A security vulnerability exists in Ping Identity Windows PingId versions prior to 2.8 that stems from the use of known vulnerable components that could lead to remote code execution...

Wire Cross-Site Scripting Vulnerability (CNVD-2022-65920)

Wire is a chat software from the German company Wire. The software supports Web, WindowsiOS, Android, and OS X platforms, has group functionality, can make voice calls, send photos, and its original greeting method, PING. Wire has a cross-site scripting vulnerability that stems from insufficient...

Malicious Package

Overview @techops-ui/ping-authentication is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable i...

@bizdoc/ping-one (>=0.0.1 <=0.1.2) potentially affected by unknown CVE via pingone-angular-sdk (=0.0.1-security)

pingone-angular-sdk NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on pingone-angular-sdk and may be impacted: - @bizdoc/ping-one =0.0.1, =0.1.2 Source cves: unknown CVE Source advisory: OSV:MAL-2022-5339...

MAL-2022-5335 Malicious code in ping-on-pr (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c3207a9a6ac9717095c2d6763f67b2f2c915a109c1c32ebb48e28a68753aa11d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in ping-on-pr (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c3207a9a6ac9717095c2d6763f67b2f2c915a109c1c32ebb48e28a68753aa11d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2022-30023

Tenda ONT GPON AC1200 Dual band WiFi HG9 v1.0.1 is vulnerable to Command Injection via the Ping function...