The vulnerability of the RTSP-based microprogramming software for IP cameras such as VPort P16-1MP-M12, VPort P16-1MP-M12-IR, and VPort P06-1MP-M12 allows a intruder to cause a service failure.

The vulnerability of the RTSP microprogramming software-based IP camera models VPort P16-1MP-M12, VPort P16-1MP-M12-IR, and VPort P06-1MP-M12 lies in the use of uncontrolled format strings. Exploiting this vulnerability could allow a malicious actor to cause service failure...

GSD-2022-1007118 tracing: Fix reading strings from synthetic events

tracing: Fix reading strings from synthetic events This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...

Huawei EulerOS: Security Advisory for unzip (EulerOS-SA-2022-2747)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for unzip (EulerOS-SA-2022-2782)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP9 : unzip (EulerOS-SA-2022-2782)

According to the versions of the unzip package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer dereference. Thi...

NewStart CGSL CORE 5.04 / MAIN 5.04 : openssl Multiple Vulnerabilities (NS-SA-2022-0076)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has openssl packages installed that are affected by multiple vulnerabilities: - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the string data and a field...

EulerOS 2.0 SP9 : unzip (EulerOS-SA-2022-2747)

According to the versions of the unzip package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer dereference. Thi...

PT-2022-5484 · Unknown · Vport P06-1Mp-M12 +1

Name of the Vulnerable Software and Affected Versions: VPort P16-1MP-M12, VPort P16-1MP-M12-IR, VPort P06-1MP-M12 affected versions not specified Description: The issue is related to the use of uncontrolled format strings in the RTSP service of the IP camera microprogram. Exploitation of this iss...

Democritus Project d8s-strings code execution vulnerability

Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. Democritus Project d8s-strings has a security vulnerability that stems from its inclusion of a potential code execution backdoor inserted by a third party. An attacker could...

CVE-2022-43303

The d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0...

CVE-2022-43303

The d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0...

PYSEC-2022-43088

The d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0...

PYSEC-2022-43129

The d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0...

PYSEC-2022-43129

The d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0...

Evilgophish - Evilginx2 + Gophish

Combination of evilginx2 and GoPhish. Credits Before I begin, I would like to say that I am in no way bashing Kuba Gretzky and his work. I thank him personally for releasing evilginx2 to the public. In fact, without his work this work would not exist. I must also thank Jordan Wright for...

Democritus Project 代码问题漏洞

Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. Democritus Project d8s-strings has a security vulnerability that stems from its inclusion of a potential code execution backdoor inserted by a third party. An attacker could...

PT-2022-26837 · D8S-Htm +1 · D8S-Htm +2

Name of the Vulnerable Software and Affected Versions: d8s-htm version 0.1.0 d8s-strings affected versions not specified democritus-uuids affected versions not specified Description: A potential code-execution backdoor was inserted by a third party into the d8s-strings for python, as distributed ...

CVE-2022-43303

CVE-2022-43303 affects the Python package d8s-strings distributed on PyPI, with a potential code-execution backdoor inserted by a third party, associated with the democritus-uuids package; the initial advisory notes the affected component as d8s-htm 0.1.0. Connected documents corroborate a malici...

CVE-2022-43303

The d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0...

PT-2022-37351 · Pypi · D8S-Htm +2

Name of the Vulnerable Software and Affected Versions: d8s-strings affected versions not specified d8s-htm version 0.1.0 Description: A potential code-execution backdoor was inserted by a third party into the d8s-strings package distributed on PyPI. Another affected package is democritus-uuids...