18 matches found
EUVD-2021-24319
Malware in sbrugna...
EUVD-2024-39646
Malicious code in bioql PyPI...
EUVD-2024-37883
Malicious code in bioql PyPI...
CVE-2024-42495
Credentials to access device configuration were transmitted using an unencrypted protocol. These credentials would allow read-only access to network configuration information and terminal configuration data...
CVE-2021-37840
aaPanel through 6.8.12 allows Cross-Site WebSocket Hijacking CSWH involving OS commands within WebSocket messages at a ws:// URL for /webssh the victim must have configured Terminal with at least one host. Successful exploitation depends on the browser used by a potential victim e.g., exploitatio...
CVE-2024-42495
Credentials to access device configuration were transmitted using an unencrypted protocol. These credentials would allow read-only access to network configuration information and terminal configuration data...
CVE-2024-39278
Credentials to access device configuration information stored unencrypted in flash memory. These credentials would allow read-only access to network configuration information and terminal configuration data...
CVE-2024-42495
Credentials to access device configuration were transmitted using an unencrypted protocol. These credentials would allow read-only access to network configuration information and terminal configuration data...
CVE-2024-39278
Credentials to access device configuration information stored unencrypted in flash memory. These credentials would allow read-only access to network configuration information and terminal configuration data...
CVE-2024-42495
CVE-2024-42495 affects Hughes WL3000 Fusion Software (versions prior to 2.7.0.10). The vulnerability arises from credentials used to access device configuration being transmitted via an unencrypted protocol, enabling read-only access to network configuration and terminal configuration data. NVD m...
PT-2024-29989 · Hughes Network Systems +1 · Wl3000 Fusion +1
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves credentials to access device configuration being transmitted using an unencrypted protocol. This allows read-only access to network...
PT-2024-28417 · Hughes Network Systems +1 · Wl3000 Fusion +1
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves credentials to access device configuration information being stored unencrypted in flash memory. These credentials allow read-only...
CVE-2018-1000021
GIT version 2.15.1 and earlier contains a Input Validation Error vulnerability in Client that can result in problems including messing up terminal configuration to RCE. This attack appear to be exploitable via The user must interact with a malicious git server, or have their traffic modified in a...
CVE-2018-1000021
GIT version 2.15.1 and earlier contains a Input Validation Error vulnerability in Client that can result in problems including messing up terminal configuration to RCE. This attack appear to be exploitable via The user must interact with a malicious git server, or have their traffic modified in a...
PT-2018-9212 · Git +2 · Git +2
Name of the Vulnerable Software and Affected Versions: git versions 2.15.1 and earlier Description: The issue is related to an Input Validation Error in the Client component, which can lead to problems including messing up terminal configuration and potentially allowing Remote Code Execution RCE...
CVE-2000-0212
InterAccess TelnetD Server 4.0 allows remote attackers to conduct a denial of service via malformed terminal client configuration information...
Pragma Systems InterAccess TelnetD Server 4.0 - Terminal Configuration
Pragma Systems InterAccess TelnetD Server 4.0 - Terminal Configuration source: https://www.securityfocus.com/bid/1001/info The Pragma Systems InterAccess TelnetID Server 4.0 can be crashed by sending invalid, unexpected characters in the client's terminal configuration settings. This causes...
Pragma Systems InterAccess TelnetD Server 4.0 - Terminal Configuration
source: https://www.securityfocus.com/bid/1001/info The Pragma Systems InterAccess TelnetID Server 4.0 can be crashed by sending invalid, unexpected characters in the client's terminal configuration settings. This causes telnetd.exe to GPF, and will cause the server to stop responding...