Design/Logic Flaw

A lack of exception handling in the Renault Easy Link Multimedia System Software Version 283C35519R allows attackers to cause a Denial of Service DoS via supplying crafted WMA files when connecting a device to the vehicle's USB plug and play feature...

CVE-2023-39801

A lack of exception handling in the Renault Easy Link Multimedia System Software Version 283C35519R allows attackers to cause a Denial of Service DoS via supplying crafted WMA files when connecting a device to the vehicle's USB plug and play feature...

CVE-2023-39801

A lack of exception handling in the Renault Easy Link Multimedia System Software Version 283C35519R allows attackers to cause a Denial of Service DoS via supplying crafted WMA files when connecting a device to the vehicle's USB plug and play feature...

The vulnerability of NETGEAR RAX30 network interface cards’ UPnP microprogramming service allows a hacker to execute arbitrary code.

The vulnerability of NETGEAR RAX30 microprogrammed software routing devices stems from the lack of measures taken to sanitize data at the management level. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PT-2023-27110 · Renault · Renault Easy Link Multimedia System

Name of the Vulnerable Software and Affected Versions: Renault Easy Link Multimedia System Software version 283C35519R Description: The issue is related to a lack of exception handling in the software, allowing attackers to cause a Denial of Service DoS by supplying crafted WMA files when...

CVE-2023-30146

Assmann Digitus Plug&View IP Camera HT-IP211HDP, version 2.000.022 allows unauthenticated attackers to download a copy of the camera's settings and the administrator credentials...

CVE-2023-30146

Assmann Digitus Plug&View IP Camera HT-IP211HDP, version 2.000.022 allows unauthenticated attackers to download a copy of the camera's settings and the administrator credentials...

CVE-2023-30146

Assmann Digitus Plug&View IP Camera HT-IP211HDP, version 2.000.022 allows unauthenticated attackers to download a copy of the camera's settings and the administrator credentials...

Command injection

Assmann Digitus Plug&View IP Camera HT-IP211HDP, version 2.000.022 allows unauthenticated attackers to download a copy of the camera's settings and the administrator credentials...

ASSMANN Electronic Digitus Plug&View IP Camera Security Breach

ASSMANN Electronic Digitus Plug&View IP Camera is a plug-and-play camera from ASSMANN Electronic. A security vulnerability exists in the ASSMANN Electronic Digitus Plug&View IP Camera that originates from allowing an unauthenticated attacker to download a copy of the camera settings and...

CVE-2023-30146

CVE-2023-30146 affects the Assmann Digitus Plug&View IP Camera HT-IP211HDP (firmware 2.000.022). The vulnerability allows unauthenticated remote retrieval of the device settings and administrator credentials via a backup/restore mechanism. Related evidence in public sources describes a plaintext-...

UBUNTU-CVE-2023-4132

A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user to crash the system, causing a denial of service condition...

Citrix Secure Access < 23.5.1.3 Privilege Escalation (CTX561480)

A privilege escalation vulnerability has been discovered in the Citrix Secure Access client for Windows which, if exploited, could allow an attacker with access to an endpoint with Standard User Account that has the vulnerable client installed to escalate their local privileges to that of NT...

GHSA-RCHX-RVH2-VX5J Credential leakage in Jenkins Plug-in for ServiceNow

A cross-site request forgery vulnerability exists in versions of the Jenkins Plug-in for ServiceNow DevOps prior to 1.38.1 that, if exploited successfully, could cause the unwanted exposure of sensitive information. To address this issue, apply the 1.38.1 version of the Jenkins plug-in for...

Cross site request forgery (csrf)

A cross-site request forgery vulnerability exists in versions of the Jenkins Plug-in for ServiceNow DevOps prior to 1.38.1 that, if exploited successfully, could cause the unwanted exposure of sensitive information. To address this issue, apply the 1.38.1 version of the Jenkins plug-in for...

Authorization

A missing authorization vulnerability exists in versions of the Jenkins Plug-in for ServiceNow DevOps prior to 1.38.1 that, if exploited successfully, could cause the unwanted exposure of sensitive information. To address this issue, apply the 1.38.1 version of the Jenkins plug-in for ServiceNow...

CVE-2023-3442 Missing Authorization in Jenkins plug-in for ServiceNow DevOps

A missing authorization vulnerability exists in versions of the Jenkins Plug-in for ServiceNow DevOps prior to 1.38.1 that, if exploited successfully, could cause the unwanted exposure of sensitive information. To address this issue, apply the 1.38.1 version of the Jenkins plug-in for ServiceNow...

CVE-2023-3414 Cross-Site Request Forgery (CSRF) in Jenkins Plug-in for ServiceNow DevOps

A cross-site request forgery vulnerability exists in versions of the Jenkins Plug-in for ServiceNow DevOps prior to 1.38.1 that, if exploited successfully, could cause the unwanted exposure of sensitive information. To address this issue, apply the 1.38.1 version of the Jenkins plug-in for...

CVE-2023-3414 Cross-Site Request Forgery (CSRF) in Jenkins Plug-in for ServiceNow DevOps

A cross-site request forgery vulnerability exists in versions of the Jenkins Plug-in for ServiceNow DevOps prior to 1.38.1 that, if exploited successfully, could cause the unwanted exposure of sensitive information. To address this issue, apply the 1.38.1 version of the Jenkins plug-in for...

PT-2023-24866 · Jenkins · Jenkins Plug-In For Servicenow Devops +1

Name of the Vulnerable Software and Affected Versions: Jenkins Plug-in for ServiceNow DevOps versions prior to 1.38.1 Description: A missing authorization issue exists that could lead to the unwanted exposure of sensitive information if exploited successfully. Recommendations: For versions prior ...