14823 matches found
CVE-2024-11063
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...
CVE-2024-11062
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...
CVE-2024-11068 D-Link DSL6740C - Incorrect Use of Privileged APIs
The D-Link DSL6740C modem has an Incorrect Use of Privileged APIs vulnerability, allowing unauthenticated remote attackers to modify any user’s password by leveraging the API, thereby granting access to Web, SSH, and Telnet services using that user’s account...
CVE-2024-11065 D-Link DSL6740C - OS Command Injection
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...
CVE-2024-11065
The CVE-2024-11065 entry concerns the D-Link DSL6740C modem/router with an OS command injection vulnerability. According to connected sources, a remote attacker with administrator privileges can inject and execute arbitrary system commands via a specific functionality exposed by SSH and Telnet. C...
CVE-2024-11065 D-Link DSL6740C - OS Command Injection
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...
CVE-2024-11064
The CVE-2024-11064 entry concerns the D-Link DSL6740C modem with an OS Command Injection flaw. Public documents describe an issue in the firmware where a vulnerability in the SSH/Telnet functionality allows a remote attacker with administrator privileges to inject and execute arbitrary system com...
CVE-2024-11064 D-Link DSL6740C - OS Command Injection
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...
CVE-2024-11064 D-Link DSL6740C - OS Command Injection
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...
CVE-2024-11063 D-Link DSL6740C - OS Command Injection
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...
CVE-2024-11063 D-Link DSL6740C - OS Command Injection
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...
CVE-2024-11063
The CVE-2024-11063 entry concerns the D-Link DSL6740C modem, where an OS command injection flaw exists in a functionality exposed via SSH/Telnet. The vulnerability allows remote attackers with administrator privileges to inject and execute arbitrary system commands. According to the provided metr...
CVE-2024-11062 D-Link DSL6740C - OS Command Injection
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...
CVE-2024-11062
The CVE-2024-11062 entry concerns a OS command injection in the D-Link DSL6740C modem. The vulnerability allows remote attackers with administrator privileges to inject and execute arbitrary system commands via specific functions exposed by SSH and Telnet. Root cause per connected sources appears...
CVE-2024-11062 D-Link DSL6740C - OS Command Injection
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...
Path traversal, lead to arbitrary file write, lead to remote code execution
Description Anythingllm use multer library to handle http multi-part file upload. Anything llm use the following code to handle non-ascii file name file.originalname = Buffer.fromfile.originalname, "latin1".toString "utf8" ; This way of manipulating filename is will lead to path traversal. multer...
TortoiseSVN < 1.14.7 Weak PRNG Vulnerability
TortoiseSVN 1.14.6 contains a vulnerable version of Putty SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Palo Alto Advises Securing PAN-OS Interface Amid Potential RCE Threat Concerns
Palo Alto Networks on Friday issued an informational advisory urging customers to ensure that access to the PAN-OS management interface is secured because of a potential remote code execution vulnerability. "Palo Alto Networks is aware of a claim of a remote code execution vulnerability via the...
Incorrect Authorization
Overview ansible-core is an a radically simple IT automation system. It handles configuration management, application deployment, cloud provisioning, ad-hoc task execution, network automation, and multi-node orchestration. Ansible makes complex changes like zero-downtime rolling updates with load...
Hackers Claim Access to Nokia Internal Data, Selling for $20,000
Hackers claim to have breached Nokia through a third-party contractor, allegedly stealing SSH keys, source code, and internal…...