13 matches found
Netwrix Directory Manager 安全漏洞
Netwrix Directory Manager is a group and user management software from Netwrix. A security vulnerability exists in Netwrix Directory Manager v.11.0.0.0 and earlier and later v.11.1.25134.03, which originates from the insertion of sensitive information in sent data...
CVE-2024-41026
In the Linux kernel, the following vulnerability has been resolved: mmc: davincimmc: Prevent transmitted data size from exceeding sgm's length No check is done on the size of the data to be transmiited. This causes a kernel panic when this size exceeds the sgmiter's length. Limit the number of...
CVE-2024-41026 mmc: davinci_mmc: Prevent transmitted data size from exceeding sgm's length
In the Linux kernel, the following vulnerability has been resolved: mmc: davincimmc: Prevent transmitted data size from exceeding sgm's length No check is done on the size of the data to be transmiited. This causes a kernel panic when this size exceeds the sgmiter's length. Limit the number of...
CVE-2024-41026 mmc: davinci_mmc: Prevent transmitted data size from exceeding sgm's length
In the Linux kernel, the following vulnerability has been resolved: mmc: davincimmc: Prevent transmitted data size from exceeding sgm's length No check is done on the size of the data to be transmiited. This causes a kernel panic when this size exceeds the sgmiter's length. Limit the number of...
CVE-2024-38284
Transmitted data is logged between the device and the backend service. An attacker could use these logs to perform a replay attack to replicate calls...
CVE-2024-38284
CVE-2024-38284 affects Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600), with versions up to 3.1.171.9. The root cause is that transmitted data is logged between the device and the backend, enabling an attacker to perform a replay attack to replicate calls. In the ICS context, mitiga...
CVE-2020-10039
A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. An attacker in a privileged network position between a legitimate user and the web server might be able to conduct a Man-in-the-middle attack and gain read and write access to...
Huawei Myna Information Disclosure Vulnerability
Huawei Myna is a smart speaker from Chinese company Huawei Huawei. An information disclosure vulnerability exists in Huawei Myna, which stems from the speaker's mishandling of transmitted data when the smart speaker and the cloud are paired over Wi-Fi. An attacker could use the vulnerability to...
CVE-2014-8242
librsync before 1.0.0 uses a truncated MD4 checksum to match blocks, which makes it easier for remote attackers to modify transmitted data via a birthday attack...
CVE-2015-1601
Siemens SIMATIC STEP 7 TIA Portal 12 and 13 before 13 SP1 Upd1 allows man-in-the-middle attackers to obtain sensitive information or modify transmitted data via unspecified vectors...
Information disclosure
Siemens SIMATIC STEP 7 TIA Portal 12 and 13 before 13 SP1 Upd1 allows man-in-the-middle attackers to obtain sensitive information or modify transmitted data via unspecified vectors...
CVE-2015-1601
Siemens SIMATIC STEP 7 TIA Portal 12 and 13 before 13 SP1 Upd1 allows man-in-the-middle attackers to obtain sensitive information or modify transmitted data via unspecified vectors...
Information disclosure
The IAX2 channel driver chaniax2 in Asterisk before 20070504 does not properly null terminate data, which allows remote attackers to trigger loss of transmitted data, and possibly obtain sensitive information memory contents or cause a denial of service application crash, by sending a frame that...