1637 matches found
CVE-2021-20067
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication...
CVE-2021-20067
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication...
Authentication flaw
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication...
CVE-2021-20067
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication...
Racoms 安全漏洞
The RACOM M!DGE is a cellular router designed for SCADA and telemetry mission-critical applications and is ideally suited for many different wireless applications. An information disclosure vulnerability exists in the RACOM M!DGE firmware version 4.4.40.105. An attacker can exploit the...
Nxlog Code Issue Vulnerability
Nxlog is a U.S. Nxlog company can support a variety of operating systems for log collection, log centralization software. A security vulnerability exists in NXLog Community Edition version 2.10.2150, which originates in the fileop module of the NXLog service that allows remote attackers to cause ...
CVE-2020-35488
The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service daemon crash via a crafted Syslog payload to the Syslog service. This attack requires a specific configuration. Also, the name of the directory created must use a Syslo...
CVE-2020-35488
The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service daemon crash via a crafted Syslog payload to the Syslog service. This attack requires a specific configuration. Also, the name of the directory created must use a Syslo...
Directory traversal
The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service daemon crash via a crafted Syslog payload to the Syslog service. This attack requires a specific configuration. Also, the name of the directory created must use a Syslo...
CVE-2020-35488
NXLog Community Edition 2.10.2150 is affected via the fileop module, where a crafted Syslog payload can cause a daemon crash (DoS) when the Syslog field is used to name a directory. Exploitation requires a specific configuration (CreateDir enabled and a Syslog-derived directory name), as shown by...
CVE-2020-35488
The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service daemon crash via a crafted Syslog payload to the Syslog service. This attack requires a specific configuration. Also, the name of the directory created must use a Syslo...
Nxlog 代码问题漏洞
Nxlog is a U.S. Nxlog company can support a variety of operating systems for log collection, log centralization software. A security vulnerability exists in NXLog Community Edition version 2.10.2150, which originates in the fileop module of the NXLog service that allows remote attackers to cause ...
nxlog 2.10.2150 - Denial of Service Exploit
Exploit Title: nxlog 2.10.2150 - DoS Poc Exploit Author: Guillaume PETIT Vendor Homepage: https://nxlog.co Software Link: https://nxlog.co/products/nxlog-community-edition/download Version: 2.10.2150 Tested on: Linux Debian 10 && Windows Server 2019 !/usr/bin/python3 import sys import time import...
Nxlog Community Edition 2.10.2150 Denial Of Service
Exploit Title: Nxlog Community Edition 2.10.2150 - DoS Poc Date: 15/12/2020 Exploit Author: Guillaume PETIT Vendor Homepage: https://nxlog.co Software Link: https://nxlog.co/products/nxlog-community-edition/download Version: 2.10.2150 Tested on: Linux Debian 10 && Windows Server 2019...
Nxlog Community Edition 2.10.2150 - DoS (Poc)
Exploit Title: Nxlog Community Edition 2.10.2150 - DoS Poc Date: 15/12/2020 Exploit Author: Guillaume PETIT Vendor Homepage: https://nxlog.co Software Link: https://nxlog.co/products/nxlog-community-edition/download Version: 2.10.2150 Tested on: Linux Debian 10 && Windows Server 2019 CVE:...
Exploit for Deserialization of Untrusted Data in Nxlog
I have found a vulnerability in product: nxlog-ce2.10.2150...
openSUSE Security Update : nsd (openSUSE-2020-2222)
This update for nsd fixes the following issues : nsd was updated to the new upstream release 4.3.4 FEATURES : - Merge PR 141: ZONEMD RR type. BUG FIXES : - Fix that symlink does not interfere with chown of pidfile boo1179191, CVE-2020-28935 - Fix 128: Fix that the invalid port number is logged fo...
Security update for nsd (moderate)
openSUSE Security Update: Security update for nsd Announcement ID: openSUSE-SU-2020:2222-1 Rating: moderate References: 1157331 1179191 Cross-References: CVE-2019-13207 CVE-2020-28935 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 openSUSE Backports SLE-15-SP2 openSUSE Backports...
SUSE SLES12 Security Update : glibc (SUSE-SU-2020:3024-1)
This update for glibc fixes the following issues : CVE-2020-10029: Fixed a stack corruption from range reduction of pseudo-zero bsc1165784 Use posixspawn on popen bsc1149332, bsc1176013 Correct locking and cancellation cleanup in syslog functions bsc1172085 Fixed concurrent changes on nscd aware...
Command injection
An issue was discovered on V-SOL V1600D V2.03.69 and V2.03.57, V1600D4L V1.01.49, V1600D-MINI V1.01.48, V1600G1 V2.0.7 and V1.9.7, and V1600G2 V1.1.4 OLT devices. Command injection can occur in "upload tftp syslog" and "upload tftp configuration" in the CLI via a crafted filename...