EUVD-2021-12727

Malware in sbrugna...

CVE-2021-25847

Improper validation of the length field of LLDP-MED TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to controllable loop counter variable via a crafted lldp packet...

CVE-2021-25849

The CVE-2021-25849 entry describes a denial-of-service vulnerability in MOXA Camera VPort 06EC-2V Series (version 1.1) caused by an integer underflow in the userdisk/vport_lldpd component due to improper validation of the PortID TLV. The affected device is vulnerable to a crafted LLDP packet that...

CVE-2021-25846

CVE-2021-25846 affects Moxa Camera VPort 06EC-2V Series (version 1.1) via improper validation of the ChassisID TLV in the LLDP handling path (userdisk/vport_lldpd). A crafted LLDP packet can pass a negative value to memcpy, triggering a denial of service. The vulnerability is documented across mu...

CVE-2021-25846

Improper validation of the ChassisID TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows attackers to cause a denial of service due to a negative number passed to the memcpy function via a crafted lldp packet...

CVE-2021-25848

CVE-2021-25848 affects the Moxa Camera VPort 06EC-2V Series (version 1.1). The root cause is improper validation of the length field in the LLDP-MED TLV processed by userdisk/vport_lldpd, caused by using a fixed loop counter without validating the actual available length, allowing information dis...