EUVD-2017-11849

Malware in sbrugna...

EUVD-2017-11850

Malware in sbrugna...

PT-2024-34420 · Unknown · Hopetree Izone Lts

Name of the Vulnerable Software and Affected Versions: hopetree izone lts version c011b48 Description: The issue is related to a server-side request forgery SSRF vulnerability in the active push function. This vulnerability occurs because the apps/tool/apis/bd push.py file does not securely filte...

[SECURITY] Fedora 41 Update: znc-push-2.0.0-10.20210311git4243934.fc41

ZNC Push is a module for ZNC that will send notifications to multiple push notification services, or SMS for any private message or channel highlight that matches a configurable set of conditions...

CVE-2017-2706

Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service...

CVE-2017-2707

Mate 9 smartphones with software MHA-AL00AC00B125 have a privilege escalation vulnerability in Push module. An attacker tricks a user to save a rich media into message on the smart phone, which could be exploited to cause the attacker to delete message or fake user to send message...

CVE-2017-2706

Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service...

Privilege escalation

Mate 9 smartphones with software MHA-AL00AC00B125 have a privilege escalation vulnerability in Push module. An attacker tricks a user to save a rich media into message on the smart phone, which could be exploited to cause the attacker to delete message or fake user to send message...

Directory traversal

Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service...

CVE-2017-2706

Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service...

CVE-2017-2707

CVE-2017-2707 pertains to Huawei Mate 9 devices with software MHA-AL00AC00B125, where a privilege-escalation flaw in the Push module can be triggered by a user-saving malicious rich-media in a message. The underlying issue enables an attacker to delete messages or impersonate the user to send mes...

CVE-2017-2706

CVE-2017-2706 affects Huawei Mate 9 (software MHA-AL00AC00B125) via a directory traversal vulnerability in the Push module. The root cause is that the decompression process does not verify the file name, allowing traversal to system directories and enabling an attacker to replace files and impact...

CVE-2017-2707

Mate 9 smartphones with software MHA-AL00AC00B125 have a privilege escalation vulnerability in Push module. An attacker tricks a user to save a rich media into message on the smart phone, which could be exploited to cause the attacker to delete message or fake user to send message...

Huawei Mate 9 Push module directory traversal vulnerability

Huawei Mate 9 is a smartphone from Chinese company Huawei.Push module is one of the message push modules. A directory traversal vulnerability exists in the Push module in Huawei Mate 9 version MHA-AL00AC00B125 due to the program not checking the file name when compressing the file. An attacker...

Huawei Mate 9 Push Module Privilege Vulnerability

Huawei Mate 9 is a smartphone from Chinese company Huawei.Push module is one of the message push modules. A privilege extraction vulnerability exists in the Push module in Huawei Mate 9 version MHA-AL00AC00B125. An attacker can exploit the vulnerability by tricking a user into saving a malicious...

Security Advisory - Privilege Escalation Vulnerability in Push Module of Huawei Smart Phone

There is a privilege escalation vulnerability in Push module of Huawei Smart Phone. An attacker tricks a user to save a rich media into message on the smart phone, which could be exploited to cause the attacker to delete message or fake user to send message. Vulnerability ID: HWPSIRT-2017-05070...

Security Advisory - Directory Traversal Vulnerability in Push Module of Huawei Smart Phone

There is a directory traversal vulnerability in Push module of Huawei Smart Phone. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service. Vulnerability ID:...