60 matches found
UBUNTU-CVE-2025-37935
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: fix SER panic with 4GB+ RAM If the mtkpollrx function detects the MTKRESETTING flag, it will jump to releasedesc and refill the high word of the SDP on the 4GB RFB. Subsequently, mtkrxclean will process ...
CVE-2025-37935 net: ethernet: mtk_eth_soc: fix SER panic with 4GB+ RAM
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: fix SER panic with 4GB+ RAM If the mtkpollrx function detects the MTKRESETTING flag, it will jump to releasedesc and refill the high word of the SDP on the 4GB RFB. Subsequently, mtkrxclean will process ...
AZL-53039 CVE-2024-49939 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: avoid to add interface to list twice when SER If SER L2 occurs during the WoWLAN resume flow, the add interface flow is triggered by ieee80211reconfig. However, due to rtw89wowresume return failure, it will cause the...
CVE-2024-49939 wifi: rtw89: avoid to add interface to list twice when SER
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: avoid to add interface to list twice when SER If SER L2 occurs during the WoWLAN resume flow, the add interface flow is triggered by ieee80211reconfig. However, due to rtw89wowresume return failure, it will cause the...
CVE-2024-49939 wifi: rtw89: avoid to add interface to list twice when SER
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: avoid to add interface to list twice when SER If SER L2 occurs during the WoWLAN resume flow, the add interface flow is triggered by ieee80211reconfig. However, due to rtw89wowresume return failure, it will cause the...
ser-info.it Improper Access Control vulnerability OBB-3844150
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
ser-rrc.org Cross Site Scripting vulnerability OBB-3780614
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
fuse-backend-rs (>=0.10.5 <=0.12.0), linux-loader (>=0.8.0 <=0.9.0) +6 more potentially affected by CVE-2023-41051 via vm-memory (>=0.10.0 <=0.11.0)
vm-memory CARGO version =0.10.0, =0.10.5, =0.8.0, =0.6.0, =0.8.0, =0.7.0, =0.4.0, =0.2.0, =1.5.1, =1.6.1 Source cves: CVE-2023-41051 Source advisory: OSV:GHSA-49HH-FPRX-M68G...
fuse-backend-rs (>=0.10.5 <=0.12.0), linux-loader (>=0.8.0 <=0.9.0) +6 more potentially affected by CVE-2023-41051 via vm-memory (>=0.10.0 <=0.11.0)
vm-memory CARGO version =0.10.0, =0.10.5, =0.8.0, =0.6.0, =0.8.0, =0.7.0, =0.4.0, =0.2.0, =1.5.1, =1.6.1 Source cves: CVE-2023-41051 Source advisory: OSV:RUSTSEC-2023-0056...
Tenda AC10 Buffer Error Vulnerability
Tenda AC10 is a wireless router from Tenda, China. Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC8 v4 V16.03.34.06, AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, AC5 V1.0 V15.03.06.28, AC9 V3.0 A security vulnerability exists in versions V15.03.06.42multi and AC10 v4.0 V16.03.10.13, which...
ser-buk.com Cross Site Scripting vulnerability OBB-3171546
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2020-28361
Kamailio (used in SER/Sippy Softswitch) up to version before 5.4.0 is affected by a header-smuggling bypass in the remove_hf function of the Kamailio textops module. The vulnerability can be exploited by a skilled attacker with valid credentials to bypass header-removal protections and disrupt in...
openSUSE Security Update : ffmpeg-4 (openSUSE-2020-24)
This update for ffmpeg-4 fixes the following issues : ffmpeg-4 was updated to version 4.0.5, fixes boo1133153 - CVE-2019-11339: The studio profile decoder in libavcodec/mpeg4videodec.c in FFmpeg 4.0 allowed remote attackers to cause a denial of service out-of-array access or possibly have...
Targeted Ransomware Attacks Hit Several Spanish Companies
Everis, one of the largest IT consulting companies in Spain, suffered a targeted ransomware attack on Monday, forcing the company to shut down all its computer systems until the issue gets resolved completely. Ransomware is a computer virus that encrypts files on an infected system until a ransom...
Fix the seraph.os.cookie from failing on Tomcat by upgrading atlassian-seraph
Once SER-117 has been fixed, incorporate the changes into JIRA see the linked issue for a full description of the problem. Note that this only affects Tomcat users; Resin and Orion do not appear to be affected. User Symptoms: Users have checked the "Remember my login on this computer" checkbox al...
SerWeb 0.9.4 (load_lang.php) Remote File Inclusion Exploit
No description provided by source. !/usr/bin/perl SerWeb 0.9.4- Remote FIle Inclusion This software, serweb, is a web interface for self-provisioning of users of SER SIP Server http://www.iptel.org/ser/ Url: http://ftp.iptel.org/pub/ser/0.9.6/contrib/serweb-0.9.4.tar.gz Exploit:...
serweb094-rfi.txt
!/usr/bin/perl SerWeb 0.9.4- Remote FIle Inclusion This software, serweb, is a web interface for self-provisioning of users of SER SIP Server http://www.iptel.org/ser/ Url: http://ftp.iptel.org/pub/ser/0.9.6/contrib/serweb-0.9.4.tar.gz Exploit:...
SerWeb 0.9.4 (load_lang.php) Remote File Inclusion Exploit
Exploit for unknown platform in category web applications ========================================================== SerWeb 0.9.4 loadlang.php Remote File Inclusion Exploit ========================================================== !/usr/bin/perl SerWeb 0.9.4- Remote FIle Inclusion This software,...
SIP Express Router Missing To in ACK DoS
The remote host is a SIP Express Router SER. The SER product has been found to contain a vulnerability where ACKs requests without a To header, when SER has been enabled to use the SL module, can be used to crash the product. SPDX-FileCopyrightText: 2003 Noam Rathaus Some text descriptions might ...
DSA-184 krb4 - buffer overflow
Bulletin has no description...