CVE-2020-28418

HP advisory HPSBGN03722 rev.1 details a vulnerability in HP Support Assistant involving a weak ACL and DLL loading that could permit an attacker to execute arbitrary code. The advisory cites a patch released on March 10, 2021 that updates HP Support Assistant clients on the weekly update scan for...

CVE-2020-3048

CVE-2021-3048 affects PAN-OS devices where external dynamic lists (EDLs) contain invalid URLs. The issue causes the Device Server daemon (devsrvr) to stop responding, leading to failed commits and configuration changes; if the device restarts, a DoS condition may occur and traffic processing can ...

CVE-2014-1687

Huawei AR router SSH module DoS vulnerability (CVE-2014-1687): when subjected to a large volume of malformed SSH authentication packets, legitimate users may be unable to log in via SSH due to resource exhaustion. This vulnerability is documented in HWPSIRT-2013-1255 and linked CVE-2014-1687. Aff...

CVE-2014-1689

Huawei eSight System is affected by CVE-2014-1689: an image-upload vulnerability where the server fails to validate uploaded device images, enabling attackers to upload malicious code. This information comes from Huawei HWPSIRT advisory HW-323611 (HWPSIRT-2013-1257).

CVE-2014-1688

CVE-2014-1688 is associated with Huawei CloudEngine switches. The Huawei HWPSIRT advisory and the NASL plugin describe a security bypass in the HWTACACS authorization module caused by a failure of access control. An authenticated attacker can exploit this to execute commands with higher‑level per...

CVE-2010-0102

CVE-2010-0102 entry is linked to DCE/RPC-based evasion techniques. Connected advisories describe two evasion vectors: (1) using invalid NDR values to bypass IDS/IPS detection, and (2) sending fragmented DCE/RPC requests (including over CIFS) that may evade detection or carry unsafe traffic. The d...

CVE-2016-10279

CVE-2016-10279 is listed in the Android May 2017 bulletin as a High‑severity vulnerability affecting Qualcomm components, with affected devices Pixel and Pixel XL. The entry indicates the patch is internal to Qualcomm and not publicly available, and no public exploit details are provided in the c...

CVE-2018-13917

CVE-2018-13917 is listed within the Qualcomm components section of the 2019-03-01/03-05 Android bulletin as a High-severity issue affecting the WIN NSS Host. The connected document confirms the CVE entry appears in the Qualcomm closed-source components table (CVE-2018-13917, QC-CR#2251019, Refere...

CVE-2017-17768

CVE-2017-17768 is listed in the Qualcomm section as affecting the LK bootloader with a High severity (QC-CR#2127172). The connected Android security bulletin entry confirms this CVE without providing explicit root-cause or mitigation details within the document. No additional exploit specifics or...

CVE-2021-0846

Technical details for CVE-2021-0846 are not publicly available in the provided documents. No affected products, root cause, or impact are specified. Monitor for updates.

CVE-2021-1978

CVE-2021-1978 is listed in the 2021-08 Android bulletin under Qualcomm closed‑source components, with High severity in the WLAN area (QC-CR#2859124). The connected data confirms affected component as WLAN in Qualcomm components; no explicit root cause, impact details, exploit info, or remediation...

CVE-2021-27666

CVE-2021-27666 is referenced in the TencentOS Server 3 advisory (TSSA-2022:0125) as a kernel issue: a possible buffer overflow in ESP transformation. The Nessus plugin notes TencentOS Server 3 versions prior to the tested release are affected and packages are available to fix the vulnerabilities,...

CVE-2019-13609

Citrix CVE-2019-13609 is a CRLF injection vulnerability in Citrix License Server for Windows and VPX. It could allow an unauthenticated attacker to bypass authentication and cause a malicious website to read or modify license server data on an existing session. Affected products include License S...

CVE-2018-3546

CVE-2018-3546 is addressed in Slackware’s SSA-2018-240-01 by upgrading the Slackware 14.2 kernel to 4.4.153 to mitigate Foreshadow (L1 Terminal Fault) and Foreshadow-NG. The Slackware changelog and NSS plugin indicate updated packages for both x86_64 and i386, including kernel and related modules...

CVE-2021-22297

CVE-2021-22297 affects curl/libcurl with multiple advisories listing vulnerable 7.1.1–7.78.0 and related curl variants. The described issue is due to STARTTLS handling that can enable a MITM to inject data over TLS handshakes (noted in PTSecurity PT-2021-4653; Slackware SSA-2021-146-01 references...

CVE-2018-36464

Technical details for CVE-2018-36464 are not provided in the available documents. The Connected Huawei advisory discusses L1TF-related CVEs (e.g., CVE-2018-3646) but does not reveal specifics for 2018-36464. Monitor for updates.

CVE-1234-1234

Technical details for CVE-1234-1234 are not publicly available in the provided documents. No affected products, root cause, impact, or remediation are stated. Monitor for updates as the entry remains reserved.

CVE-2019-16447

Adobe Illustrator prior to version 24.0 is affected by CVE-2019-16447 as part of APSB19-36. The issue is described as Binary Planting potentially leading to Local Code Execution. The linked advisories indicate this affects Windows and macOS deployments, alongside other vulnerabilities in the same...

CVE-2021-40747

CVE-2021-40747 appears in multiple advisories as a NULL pointer dereference in Adobe Illustrator . Public sources indicate affected versions include Illustrator 2022 up to 25.4.1 (and earlier builds), with the issue addressed in the 25.4.2 update referenced by APSB21-98. Other connected findings ...

CVE-2021-40718

Adobe Illustrator is affected by CVE-2021-40718 (Out-of-bounds Read) on Windows/macOS prior to version 25.4.2, potentially causing memory leaks. The issue is part of multiple vulnerabilities addressed in APSB21-98; Adobe recommends updating to Illustrator 25.4.2 or later to mitigate. Other linked...