mySCADA myPRO 授权问题漏洞

mySCADA myPRO is a professional HMI/SCADA system designed primarily for the visualization and control of industrial processes. An authorization issue vulnerability exists in mySCADA myPRO Manager, which can be exploited by an attacker to submit a special request for unauthorized access to resourc...

Linux Kernel eBPF Local Elevation of Privilege Vulnerability

Linux Kernel is an open source operating system. A security vulnerability exists in the Linux Kernel eBPF processing, which can be exploited by a local attacker to submit a special request that can elevate privileges...

FRRouting FRR Code Issue Vulnerability

FRRouting FRR is a suite of software that implements and manages various IPV4 and IPV6 routing protocols. A security vulnerability exists in FRRouting FRR, which stems from bgpnlriparseflowspec in bgpd/bgpflowspec.c, which handles special requests and causes null pointer dereferences...

Schneider Electric IGSS Data Server Integer Overflow Vulnerability

Schneider Electric IGSS Data Server is a data server for the interactive graphical Scada system from Schneider Electric France. An integer overflow vulnerability exists in Schneider Electric IGSS Data Server, which could be exploited by an attacker to submit special requests that could crash the...

Zyxel CloudCNM SecuManager Hardcoding Vulnerability

Zyxel ZyXEL CloudCNM SecuManager is a set of network management software from Zyxel, Taiwan, China. Zyxel CloudCNM SecuManager ejabberd has a hard-coded vulnerability that can be exploited by remote attackers to submit special requests for unauthorized access to the application system...

Microsoft Exchange Server 代码问题漏洞

Microsoft Exchange Server is a popular mail service program developed by Microsoft. Microsoft Exchange Server is vulnerable to an elevation of privilege vulnerability, which can be exploited by remote attackers to submit special requests that can obtain sensitive information or elevate privileges...

Rocket.Chat Authorization Issues Vulnerability (CNVD-2022-70584)

Rocket.Chat is a popular, highly customizable chat platform developed on JavaScript. Rocket.Chat suffers from a security vulnerability when using cas for login, which can be exploited by remote attackers to submit a special request that can bypass two-factor authentication and gain unauthorized...

Secheron SEPCOS Control and Protection Relay Elevation of Privilege Vulnerability

Secheron SEPCOS Control and Protection Relay is a relay from Secheron. Control and protect your DC panels and contact lines from short circuits and other electrical faults, and benefit from enhanced communication capabilities.An elevation of privilege vulnerability exists in the Secheron SEPCOS...

Bosch Ethernet switch PRA-ES8P2S Web service elevation of privilege vulnerability

Bosch Ethernet switch PRA-ES8P2S is a switch from Bosch, Germany.Bosch Ethernet switch PRA-ES8P2S Web service elevation of privilege vulnerability can be exploited by remote attackers to submit special requests that can elevate privileges to execute arbitrary commands in root context...

H3C Magic R100 Buffer Overflow Vulnerability (CNVD-2022-50705)

H3C Magic R100 is a router from H3C. H3C Magic R100 is vulnerable to a buffer overflow vulnerability, which can be exploited by remote attackers to submit special requests that can crash an application or execute arbitrary code in the application context...

H3C Magic R100 Buffer Overflow Vulnerability (CNVD-2022-50706)

H3C Magic R100 is a router from H3C. H3C Magic R100 is vulnerable to a buffer overflow vulnerability, which can be exploited by remote attackers to submit special requests that can crash an application or execute arbitrary code in the application context...

Google Android Elevation of Privilege Vulnerability (CNVD-2022-28910)

Google Android is a Linux-based open-source operating system from the US company Google. Google Android has security vulnerabilities that can be exploited by attackers to submit special requests that can execute arbitrary code in the application context and elevate privileges...

Tenda AX1806 Stack Overflow Vulnerability

Tenda AX1806 is a WiFi6 wireless router from Tenda, a Chinese company. Tenda AX1806 is vulnerable to a stack overflow vulnerability, which allows remote attackers to submit special requests that could crash an application or execute arbitrary code in application context...

TP-Link TL-WR886N Stack Overflow Vulnerability (CNVD-2022-20081)

TP-Link TL-WR886N is a wireless router from China Pulian Company.TP-Link TL-WR886N /cloudconfig/clouddevice/info is vulnerable to stack overflow, which can be exploited by remote attackers to submit special requests that can crash the application or execute arbitrary code in the application...

TP-Link TL-WR886N Stack Overflow Vulnerability (CNVD-2022-21168)

The TP-Link TL-WR886N is a wireless router from China P&L. A stack overflow vulnerability exists in the TP-Link TL-WR886N /cloudconfig/routerpost/checkregverifycode, which can be exploited by a remote attacker to submit a special request that can crash the application or can be used to execute...

Aternity SteelCentral AppInternals目录遍历漏洞

Aternity SteelCentral AppInternals is a monitoring modern automation solution from Aternity, Inc. A directory traversal vulnerability exists in Aternity SteelCentral AppInternals, which can be exploited by remote attackers to submit special requests that can write in the application context syste...

TP-Link TL-WR886N Stack Overflow Vulnerability (CNVD-2022-20080)

The TP-Link TL-WR886N is a wireless router from China P&L. A stack overflow vulnerability exists in the TP-Link TL-WR886N /cloudconfig/routerpost/getregverifycode, which can be exploited by a remote attacker to submit a special request that can crash an application or can be used to execute...

Google Android Elevation of Privilege Vulnerability (CNVD-2022-16341)

Google Android is a Linux-based open-source operating system from the US company Google. Google Android elevation of privilege vulnerability can be exploited by attackers to submit special requests that can elevate privileges...

Command Execution Vulnerability in Opmantek Open-AudIT

Opmantek Open-AudIT is a network auditing program based on PHP, bash shell and VB language. Opmantek Open-AudIT suffers from a command execution vulnerability that can be exploited by a remote attacker to submit a special request and execute a command...

Google Android 权限许可和访问控制问题漏洞

Google Android is a Linux-based open-source operating system from the US company Google. Google Android elevation of privilege vulnerability can be exploited by attackers to submit special requests that can elevate privileges...