12 matches found
EUVD-2001-1414
Malware in sbrugna...
EUVD-2013-3567
Malware in sbrugna...
EUVD-2022-49524
Malicious code in bioql PyPI...
CVE-2022-46738
The affected product exposes multiple sensitive data fields of the affected product. An attacker can use the SNMP command to get device mac address and login as admin...
CVE-2024-55547
CVE-2024-55547 describes a command-injection vulnerability in NET-SNMP used by ORing IAP-420 via SNMP objects. Affected product is ORing IAP-420 (firmware up to 2.01e). Root cause: SNMP objects in NET-SNMP enable command execution; impact is manifested as remote command execution with high confid...
Buffer overflow in the qeth_snmp_command function in drivers/s390/net/qeth_core_main.c in the Linux kernel through 3.12.1 allows local users to cause a denial of service or possibly have unspecified other impact via an SNMP ioctl call with a length value that is incompatible with the command-buffer size.
...
CVE-2022-46738 CVE-2022-46738
The affected product exposes multiple sensitive data fields of the affected product. An attacker can use the SNMP command to get device mac address and login as admin...
CVE-2022-46738
CVE-2022-46738 affects Dataprobe iBoot-PDU FW prior to 1.43.03312023. The vulnerability is categorized as an OS command/credential issue tied to weak credentials that enables an attacker to use SNMP to retrieve the device MAC address and log in as the administrator, exposing sensitive information...
SUSE CVE-2013-6381
Buffer overflow in the qethsnmpcommand function in drivers/s390/net/qethcoremain.c in the Linux kernel through 3.12.1 allows local users to cause a denial of service or possibly have unspecified other impact via an SNMP ioctl call with a length value that is incompatible with the command-buffer...
CVE-2020-25565
In SapphireIMS 5.0, it is possible to use the hardcoded credential in clients username: sapphire, password: ims and gain access to the portal. Once the access is available, the attacker can inject malicious OS commands on “ping”, “traceroute” and “snmp” functions and execute code on the server...
CVE-2019-3925
Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to command injection via SNMP OID iso.3.6.1.4.1.3212.100.3.2.9.3. A remote, unauthenticated attacker can use this vulnerability to execute operating system commands as root...
ZDI-07-020: BMC Performance Manager SNMP Command Execution Vulnerability
ZDI-07-020: BMC Performance Manager SNMP Command Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-020.html April 18, 2007 -- CVE ID: CVE-2007-1972 -- Affected Vendor: BMC -- Affected Products: Performance Manager -- TippingPointTM IPS Customer Protection: TippingPoint IP...