CVE-2024-2188 Cross-Site Scripting vulnerability in TP-Link Archer AX50

Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...

Denial of service

An issue in the com.oneed.dvr.service.DownloadFirmwareService component of IMOU GO v1.0.11 allows attackers to force the download of arbitrary files...

CVE-2023-47353

IMOU GO v1.0.11 is affected by CVE-2023-47353 due to the com.oneed.dvr.service.DownloadFirmwareService component, which allows an attacker to force the download of arbitrary files. The CVE notes network exposure with low attack complexity, requiring user interaction, and impact on confidentiality...

CVE-2023-27102

Libde265 v1.0.11 was discovered to contain a segmentation violation via the function decodercontext::processslicesegmentheader at decctx.cc...

DEBIAN-CVE-2023-27102

Libde265 v1.0.11 was discovered to contain a segmentation violation via the function decodercontext::processslicesegmentheader at decctx.cc...

Design/Logic Flaw

Libde265 v1.0.11 was discovered to contain a segmentation violation via the function decodercontext::processslicesegmentheader at decctx.cc...

CVE-2023-27103

Libde265 v1.0.11 was discovered to contain a heap buffer overflow via the function derivecollocatedmotionvectors at motion.cc...