EUVD-2018-21779

Angry IP Scanner for Linux 3.5.3 contains a denial of service vulnerability that allows local attackers to crash the application by supplying malformed input to the port selection field. Attackers can craft a malicious string containing buffer overflow patterns and paste it into the Preferences...

CVE-2018-25262

Angry IP Scanner for Linux 3.5.3 contains a denial-of-service vulnerability that crashes the application when a malformed input is supplied in the port selection field. The issue can be triggered by pasting a string containing buffer overflow patterns into the Preferences Ports tab. The CVE notes...

CVE-2018-25262 Angry IP Scanner for Linux 3.5.3 Denial of Service

Angry IP Scanner for Linux 3.5.3 contains a denial of service vulnerability that allows local attackers to crash the application by supplying malformed input to the port selection field. Attackers can craft a malicious string containing buffer overflow patterns and paste it into the Preferences...

Angry IP Scanner 缓冲区错误漏洞

Angry IP Scanner is an open-source network tool developed by Angry IP Scanner that allows for quick scanning of IP addresses and port information. The Angry IP Scanner for Linux version 3.5.3 contains a buffer error vulnerability. This vulnerability stems from a denial-of-service vulnerability in...

CVE-2019-25570

RealTerm Serial Terminal 2.0.0.70 is affected by a local denial-of-service vulnerability in the Port field: inserting up to 1000 characters and triggering Open crashes the application. Details from CVE-2019-25570 describe a local attack that crashes RealTerm by pasting a long buffer into the Port...

CVE-2019-25570

RealTerm Serial Terminal 2.0.0.70 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Port field. Attackers can paste a buffer of 1000 characters into the Port input field and click the open button to trigg...

GHSA-4C65-9GQF-4W8H Cybersecurity AI (CAI) vulnerable to Command Injection in run_ssh_command_with_credentials Agent tool

Summary A command injection vulnerability is present in the function tool runsshcommandwithcredentials available to AI agents. Details This is the source code of the function tool runsshcommandwithcredentials code: python @functiontool def runsshcommandwithcredentials host: str, username: str,...

DEBIAN-CVE-2022-50647

In the Linux kernel, the following vulnerability has been resolved: RISC-V: Make port I/O string accessors actually work Fix port I/O string accessors such as insb', outsb', etc. which use the physical PCI port I/O address rather than the corresponding memory mapping to get at the requested...

UBUNTU-CVE-2022-50647

In the Linux kernel, the following vulnerability has been resolved: RISC-V: Make port I/O string accessors actually work Fix port I/O string accessors such as insb', outsb', etc. which use the physical PCI port I/O address rather than the corresponding memory mapping to get at the requested...

CVE-2022-50647 RISC-V: Make port I/O string accessors actually work

In the Linux kernel, the following vulnerability has been resolved: RISC-V: Make port I/O string accessors actually work Fix port I/O string accessors such as insb', outsb', etc. which use the physical PCI port I/O address rather than the corresponding memory mapping to get at the requested...

PT-2025-49627

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-rc2-00283-g10d4879f9ef0-dirty Description The Linux kernel had an issue where port I/O string accessors, such as insb and outsb, did not function correctly. These accessors used the physical PCI port I/O...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a port I/O string accessor that is not working properly, which could lead to memory access errors...

GHSA-3CH2-JXXC-V4XF @akoskm/create-mcp-server-stdio is vulnerable to MCP Server Command Injection through `exec` API

Command Injection in MCP Server The MCP Server at https://github.com/akoskm/create-mcp-server-stdio is written in a way that is vulnerable to command injection vulnerability attacks as part of some of its MCP Server tool definition and implementation. Vulnerable tool The MCP Server exposes the to...

CVE-2025-30034

CVE-2025-30034 affects Siemens SIMATIC RTLS Locating Manager (all versions

CVE-2025-30034

A vulnerability has been identified in SIMATIC RTLS Locating Manager All versions V3.3. Affected devices do not properly validate input sent to its listening port on the local loopback interface. This could allow an unauthenticated local attacker to cause a denial of service condition...

Cross-site Scripting (XSS)

Overview webssh is a Web based ssh client Affected versions of this package are vulnerable to Cross-site Scripting XSS via the Login Page when user-supplied input in the hostname or port parameters is not properly sanitised. An attacker can inject and execute arbitrary JavaScript code in the...

CVE-2022-42455

ASUS EC Tool driver aka d.sys 1beb15c90dcf7a5234ed077833a0a3e900969b60be1d04fcebce0a9f8994bdbb, as signed by ASUS and shipped with multiple ASUS software products, contains multiple IOCTL handlers that provide raw read and write access to port I/O and MSRs via unprivileged IOCTL calls. Local user...

CVE-2017-8193

The FusionSphere OpenStack V100R006C00SPC102NFV has a command injection vulnerability. Due to the insufficient input validation on one port, an authenticated, local attacker may exploit the vulnerability to gain root privileges by sending message with malicious commands...

CVE-2017-2718

FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port. An attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands...