11 matches found
Siemens SICAM GridEdge Resource Leakage Vulnerability
SICAM GridEdge enables your existing IEC61850 devices to have IoT functionality with just a few clicks.A resource leak vulnerability exists in Siemens SICAM GridEdge, which stems from the fact that the affected software discloses the password hash of another user upon request, which can be...
E.O. Would Strengthen Federal Cyber Requirements
The U.S. federal government is mulling changes to up its cybersecurity software game in the wake of the sprawling SolarWinds cyberattacks that came to light in December, including requiring data-breach notifications. In a draft executive order from President Joe Biden, software companies would be...
unicorn:fuzz_emu_arm64_arm: Index-out-of-bounds in tcg_constant_folding_aarch64
Detailed Report: https://oss-fuzz.com/testcase?key=5737151780356096 Project: unicorn Fuzzing Engine: libFuzzer Fuzz Target: fuzzemuarm64arm Job Type: libfuzzerubsanunicorn Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State: tcgconstantfoldingaarch64 tcggencodeaarch64...
kimageformats:kimgio_xcf_fuzzer: Use-of-uninitialized-value in comp_func_SourceOver_rgb64_avx2
Project: git://anongit.kde.org/kimageformats Detailed Report: https://oss-fuzz.com/testcase?key=5094974739185664 Project: kimageformats Fuzzing Engine: libFuzzer Fuzz Target: kimgioxcffuzzer Job Type: libfuzzermsankimageformats Platform Id: linux Crash Type: Use-of-uninitialized-value Crash...
Information Disclosure
php is vulnerable to information disclosure. An out-of-bounds read in the function base64decodexmlrpc in ext/xmlrpc/libxmlrpc/base64.c causes PHP to read memory outside of the allocated buffers...
CVE-2018-16671
CirCarLife before 4.3 is affected by CVE-2018-16671 due to improper authentication for /html/device-id, causing system software information disclosure. Affected component is the CirCarLife web interface; root cause is lack of authentication on the device-id endpoint, enabling an unauthenticated u...
CVE-2018-16671
An issue was discovered in CIRCONTROL CirCarLife before 4.3. There is system software information disclosure due to lack of authentication for /html/device-id...
WordPress Js-Multi-Hotel Plugin Multiple Vulnerabilities
The WordPress plugin SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...
TinyWebGallery 1.8.3 Remote Command Execution
» TinyWebGallery 1.8.3 Remote Command Execution » --- Date : 05- 01- 2012 » --- Author : Expl0!Ts -------- My Best t34m ----- "BaC , RoBert MilEs , Bl4ckID" » --- Software Link : http://www.tinywebgallery.com/dl.php?file=twglatest » --- Version: n/a » --- Category: php » --- Tested on: wind xp...
CVE-2011-0330
The Dell DellSystemLite.Scanner ActiveX control (DellSystemLite.ocx 1.0.0.0) is affected by multiple vulnerabilities. The primary issue is that the WMIAttributesOfInterest property is not properly restricted, allowing remote attackers to craft WQL statements and disclose information about install...
NetNote Server (<= 2.2 build 230) Crafted String DoS Exploit
No description provided by source. / NetNote Server v2.2 build 230, crafted string vulnerability. Poc included crash the server. Full disclosure and poc exploit by class101 at DFind.kd-team.com & n3ws at EFnet 13 november 2004 ------------------ WHAT IS NETNOTE ------------------ Homepage -...