Lucene search
K

94 matches found

ATTACKERKB
ATTACKERKB
added 2024/07/09 6:15 p.m.3 views

CVE-2023-48194

Vulnerability in Tenda AC8v4 .V16.03.34.09 due to sscanf and the last digit of s8 being overwritten with \x0. After executing setclientqos, control over the gp register can be obtained...

9.8CVSS5.8AI score0.00816EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/04/12 3:9 p.m.25 views

CVE-2024-30388 Junos OS: QFX5000 Series and EX Series: Specific malformed LACP packets will cause flaps

An Improper Isolation or Compartmentalization vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS on QFX5000 Series and EX Series allows an unauthenticated, adjacent attacker to cause a Denial of Service DoS. If a specific malformed LACP packet is received by a QFX5000...

7.1CVSS6.7AI score0.00289EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/01/12 12:53 a.m.36 views

CVE-2024-21600 Junos OS: PTX Series: In an FTI scenario MPLS packets hitting reject next-hop will cause a host path wedge condition

An Improper Neutralization of Equivalent Special Elements vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on PTX Series allows a unauthenticated, adjacent attacker to cause a Denial of Service DoS. When MPLS packets are meant to be sent to a flexible tunnel interfac...

6.5CVSS6.6AI score0.00324EPSS
Exploits0References2
NVD
NVD
added 2022/10/18 3:15 a.m.24 views

CVE-2022-22226

In VxLAN scenarios on EX4300-MP, EX4600, QFX5000 Series devices an Uncontrolled Memory Allocation vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an unauthenticated adjacently located attacker sending specific packets to cause a Denial of Service DoS conditio...

6.5CVSS0.00305EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/10/18 2:46 a.m.34 views

CVE-2022-22226 Junos OS: EX4300-MP, EX4600, QFX5000 Series: In VxLAN scenarios specific packets processed cause a memory leak leading to a PFE crash

In VxLAN scenarios on EX4300-MP, EX4600, QFX5000 Series devices an Uncontrolled Memory Allocation vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an unauthenticated adjacently located attacker sending specific packets to cause a Denial of Service DoS conditio...

6.5CVSS6.7AI score0.00305EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/10/18 2:46 a.m.31 views

CVE-2022-22220 Junos OS and Junos OS Evolved: Due to a race condition the rpd process can crash upon receipt of a BGP update message containing flow spec route

A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in Routing Protocol Daemon rpd of Juniper Networks Junos OS, Junos OS Evolved allows a network-based unauthenticated attacker to cause a Denial of Service DoS. When a BGP flow route with redirect IP extended community is received, an...

5.9CVSS5.9AI score0.00444EPSS
Exploits0References1
NVD
NVD
added 2022/06/17 1:15 p.m.24 views

CVE-2020-36549

A vulnerability classified as critical was found in GE Voluson S8. Affected is the underlying Windows XP operating system. Missing patches might introduce an excessive attack surface. Access to the local network is required for this attack to succeed...

8.8CVSS0.00228EPSS
Exploits0References2
NVD
NVD
added 2022/06/17 1:15 p.m.20 views

CVE-2020-36547

A vulnerability was found in GE Voluson S8. It has been rated as critical. This issue affects the Service Browser which itroduces hard-coded credentials. Attacking locally is a requirement. It is recommended to change the configuration settings...

7.8CVSS0.00219EPSS
Exploits0References2
NVD
NVD
added 2022/06/17 1:15 p.m.24 views

CVE-2020-36548

A vulnerability classified as problematic has been found in GE Voluson S8. Affected is the file /uscgi-bin/users.cgi of the Service Browser. The manipulation leads to improper authentication and elevated access possibilities. It is possible to launch the attack on the local host...

7.8CVSS0.00221EPSS
Exploits0References2
Prion
Prion
added 2022/06/17 1:15 p.m.16 views

Hardcoded credentials

A vulnerability was found in GE Voluson S8. It has been rated as critical. This issue affects the Service Browser which itroduces hard-coded credentials. Attacking locally is a requirement. It is recommended to change the configuration settings...

7.2CVSS7.5AI score0.00219EPSS
Exploits0References2
Prion
Prion
added 2022/06/17 1:15 p.m.25 views

Design/Logic Flaw

A vulnerability classified as critical was found in GE Voluson S8. Affected is the underlying Windows XP operating system. Missing patches might introduce an excessive attack surface. Access to the local network is required for this attack to succeed...

7.2CVSS7.5AI score0.00228EPSS
Exploits0References2
Prion
Prion
added 2022/06/17 1:15 p.m.18 views

Authentication flaw

A vulnerability classified as problematic has been found in GE Voluson S8. Affected is the file /uscgi-bin/users.cgi of the Service Browser. The manipulation leads to improper authentication and elevated access possibilities. It is possible to launch the attack on the local host...

7.2CVSS7.7AI score0.00221EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/06/17 1:10 p.m.7 views

CVE-2020-36549 GE Voluson S8 Windows Operating System Patches privileges management

A vulnerability classified as critical was found in GE Voluson S8. Affected is the underlying Windows XP operating system. Missing patches might introduce an excessive attack surface. Access to the local network is required for this attack to succeed...

8.8CVSS8.6AI score0.00228EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/17 1:10 p.m.19 views

CVE-2020-36549 GE Voluson S8 Windows Operating System Patches privileges management

A vulnerability classified as critical was found in GE Voluson S8. Affected is the underlying Windows XP operating system. Missing patches might introduce an excessive attack surface. Access to the local network is required for this attack to succeed...

8.8CVSS8.6AI score0.00228EPSS
Exploits0References2
CVE
CVE
added 2022/06/17 1:10 p.m.55 views

CVE-2020-36549

CVE-2020-36549 affects GE Voluson S8 running on Windows XP. The documented issue is a privilege-management–related vulnerability that requires local network access and may allow a total impact on confidentiality, integrity, and availability. Several sources note missing patches may increase the a...

8.8CVSS7.8AI score0.00228EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/06/17 1:10 p.m.5 views

CVE-2020-36548 GE Voluson S8 Service Browser users.cgi improper authentication

A vulnerability classified as problematic has been found in GE Voluson S8. Affected is the file /uscgi-bin/users.cgi of the Service Browser. The manipulation leads to improper authentication and elevated access possibilities. It is possible to launch the attack on the local host...

5.9CVSS7AI score0.00221EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/17 1:10 p.m.21 views

CVE-2020-36548 GE Voluson S8 Service Browser users.cgi improper authentication

A vulnerability classified as problematic has been found in GE Voluson S8. Affected is the file /uscgi-bin/users.cgi of the Service Browser. The manipulation leads to improper authentication and elevated access possibilities. It is possible to launch the attack on the local host...

5.9CVSS7.8AI score0.00221EPSS
Exploits0References2
CVE
CVE
added 2022/06/17 1:10 p.m.59 views

CVE-2020-36548

CVE-2020-36548 affects GE Voluson S8, specifically the Service Browser component /uscgi-bin/users.cgi. The root cause is improper/authentication bypass allowing elevated access from a local attacker, with attack described as local and capable of compromising confidentiality, integrity, and availa...

7.8CVSS6.7AI score0.00221EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/06/17 1:10 p.m.23 views

CVE-2020-36547 GE Voluson S8 Service Browser hard-coded credentials

A vulnerability was found in GE Voluson S8. It has been rated as critical. This issue affects the Service Browser which itroduces hard-coded credentials. Attacking locally is a requirement. It is recommended to change the configuration settings...

5.9CVSS7.6AI score0.00219EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/06/17 1:10 p.m.4 views

CVE-2020-36547 GE Voluson S8 Service Browser hard-coded credentials

A vulnerability was found in GE Voluson S8. It has been rated as critical. This issue affects the Service Browser which itroduces hard-coded credentials. Attacking locally is a requirement. It is recommended to change the configuration settings...

5.9CVSS6.8AI score0.00219EPSS
Exploits0References2
Rows per page
Query Builder