D-Link DIR-878 <= 1.30B08 Multiple Command Injection Vulnerabilities

D-Link DIR-878 devices are prone to multiple command injection vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Remote code execution

Nautobot is a Network Source of Truth and Network Automation Platform. All users of Nautobot versions earlier than 1.5.7 are impacted by a remote code execution vulnerability. Nautobot did not properly sandbox Jinja2 template rendering. In Nautobot 1.5.7 has enabled sandboxed environments for the...

CVE-2021-37694

Summary (CVE-2021-37694): The issue affects the @asyncapi/java-spring-cloud-stream-template that generates a Spring Cloud Stream microservice. In versions before 0.7.0, an attacker who controls the AsyncAPI document could trigger arbitrary code injection during generation. The root cause is tied ...

Oracle: Security Advisory (ELSA-2009-1339)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...