EUVD-2020-16365

Malware in sbrugna...

CVE-2020-23621

The Java Remote Management Interface of all versions of SVI MS Management System was discovered to contain a vulnerability due to insecure deserialization of user-supplied content, which can allow attackers to execute arbitrary code via a crafted serialized Java object...

CVE-2024-35315

A vulnerability in the Desktop Client of Mitel MiCollab through 9.7.1.110, and MiVoice Business Solution Virtual Instance MiVB SVI 1.0.0.25, could allow an authenticated attacker to conduct a privilege escalation attack due to improper file validation. A successful exploit could allow an attacker...

CVE-2023-25525

NVIDIA Cumulus Linux contains a vulnerability in forwarding where a VxLAN-encapsulated IPv6 packet received on an SVI interface with DMAC/DIPv6 set to the link-local address of the SVI interface may be incorrectly forwarded. A successful exploit may lead to information disclosure...

CVE-2023-25525

NVIDIA Cumulus Linux contains a vulnerability in forwarding where a VxLAN-encapsulated IPv6 packet received on an SVI interface with DMAC/DIPv6 set to the link-local address of the SVI interface may be incorrectly forwarded. A successful exploit may lead to information disclosure...

PT-2023-20137 · Nvidia · Nvidia Cumulus Linux

Name of the Vulnerable Software and Affected Versions: NVIDIA Cumulus Linux affected versions not specified Description: The issue concerns the forwarding of VxLAN-encapsulated IPv6 packets in NVIDIA Cumulus Linux. When such a packet is received on an SVI interface with its DMAC/DIPv6 set to the...

Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service (CVE-2021-1523)

A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure ACI Mode could allow an unauthenticated, remote attacker to cause a queue wedge on a leaf switch, which could result in critical control plane traffic to the device being dropped. This could result in...

SVI MS Management System Code Issue Vulnerability

SVI MS Management System is an integrated management system. A security vulnerability exists in SVI MS Management System, which stems from insecure deserialization of user-supplied content. An attacker could exploit the vulnerability by crafting a serialized Java object that could execute arbitra...

Deserialization of untrusted data

The Java Remote Management Interface of all versions of SVI MS Management System was discovered to contain a vulnerability due to insecure deserialization of user-supplied content, which can allow attackers to execute arbitrary code via a crafted serialized Java object...

CVE-2020-23621

CVE-2020-23621 affects the SVI MS Management System via insecure deserialization in the Java Remote Management Interface across all versions, enabling arbitrary code execution through a crafted serialized Java object. The issue is rooted in how user-supplied content is deserialized. Documented im...

CVE-2020-23621

The Java Remote Management Interface of all versions of SVI MS Management System was discovered to contain a vulnerability due to insecure deserialization of user-supplied content, which can allow attackers to execute arbitrary code via a crafted serialized Java object...

Security Advisory 0057

Security Advisory 0057 PDF Date: December 16th, 2020 Version: 1.0 Revision | Date | Changes ---|---|--- 1.0 | December 16th, 2020 | Initial Release The CVE-ID tracking this issue: CVE-2020-26569 CVSSv3.1 Base Score: 5.9/10 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Description This advisory...

Buffer overflow

Buffer overflow in the Field Device Tool FDT Frame application in the HART Device Type Manager DTM library, as used in MACTek Bullet DTM 1.00.0, GE Vector DTM 1.00.0, GE SVi1000 Positioner DTM 1.00.0, GE SVI II AP Positioner DTM 2.00.1, and GE 12400 Level Transmitter DTM 1.00.0, allows remote...