9 matches found
CVE-2024-24972
Buffer Copy without Checking Size of Input CWE-120 in the Controller 6000 and Controller 7000 diagnostic web interface allows an authorised and authenticated operator to reboot the Controller, causing a Denial of Service. Gallagher recommend the diagnostic web page is not enabled default is off...
CVE-2024-24972
Buffer Copy without Checking Size of Input CWE-120 in the Controller 6000 and Controller 7000 diagnostic web interface allows an authorised and authenticated operator to reboot the Controller, causing a Denial of Service. Gallagher recommend the diagnostic web page is not enabled default is off...
Netskope Security Vulnerability
Netskope is a threat protection gateway for cloud environments from US-based Netskope. A security vulnerability exists in Netskope Client R100 and prior versions, which stems from a Windows ServiceController call to user control code that does not validate the privileges associated with the user...
Elevation of privilege vulnerabilities in multiple Huawei products
Huawei eCNS280TD is a core network device for the wireless broadband trunking system from Huawei China. Huawei ESE620X vESS is a virtual enterprise service controller from Huawei China. An elevation of privilege vulnerability exists in several Huawei products. The vulnerability stems from the fac...
Huawei eCNS280_TD and ESE620X vESS licensing issue vulnerability
Huawei eCNS280TD is a core network device for the wireless broadband trunking system of Huawei China. Huawei ESE620X vESS is a virtual enterprise service controller of Huawei China. Huawei eCNS280TD and ESE620X vESS are vulnerable to an authorization issue that vulnerability stems from file acces...
Huawei ESE620X vESS 缓冲区错误漏洞
Huawei ESE620X vESS is a virtual enterprise service controller that provides voice, video, trunk communications, and industry-related services.Huawei ESE620X vESS is vulnerable to a buffer overflow vulnerability that could be exploited by a local attacker to submit a special request that could...
Huawei ESE620X vESS 缓冲区错误漏洞
Huawei ESE620X vESS is a virtual enterprise service controller from Huawei, China. A security vulnerability exists in ESE620X vESS, which is caused by an out-of-bounds read in a function that handles internal messages. An attacker could use this vulnerability to send a constructed exception messa...
PT-2021-2711 · Microsoft · Windows Services/Controller +1
Name of the Vulnerable Software and Affected Versions: Windows Services and Controller affected versions not specified Description: The issue is related to insecure privilege management in the Windows operating system, specifically affecting the Services and Controller application. It allows an...
CFME: Dangerous send in ServiceController
The xbutton method in the ServiceController vmdb/app/controllers/servicecontroller.rb in Red Hat CloudForms 3.0 Management Engine 5.2 allows remote attackers to execute arbitrary methods via unspecified vectors...