67 matches found
EUVD-2020-14371
Malware in sbrugna...
EUVD-2020-14367
Malware in sbrugna...
CVE-2020-21600
libde265 v1.0.4 contains a heap buffer overflow in the putweightedpredavg16fallback function, which can be exploited via a crafted a file...
CVE-2020-21603
libde265 v1.0.4 contains a heap buffer overflow in the putqpel00fallback16 function, which can be exploited via a crafted a file...
CVE-2024-51228
An issue in TOTOLINK-CX-A3002RU V1.0.4-B20171106.1512 and TOTOLINK-CX-N150RT V2.1.6-B20171121.1002 and TOTOLINK-CX-N300RT V2.1.6-B20170724.1420 and TOTOLINK-CX-N300RT V2.1.8-B20171113.1408 and TOTOLINK-CX-N300RT V2.1.8-B20191010.1107 and TOTOLINK-CX-N302RE V2.0.2-B20170511.1523 allows a remote...
CVE-2024-8888
CVE-2024-8888 affects CIRCUTOR Q-SMT, firmware v1.0.4. A token-based web authentication flaw allows token theft with no expiration, enabling unrestricted access to the web application from the network. Root cause: tokens lack expiration, enabling misuse via network captures or locally stored web ...
CVE-2024-8887
CVE-2024-8887 – CIRCUTOR Q-SMT (firmware 1.0.4) is a network-facing authentication-bypass vulnerability. An attacker with access to the device’s web service can bypass login controls and exercise the full web-level functionality, potentially causing a denial of service. The available sources cons...
Command injection
Command injection vulnerability in the homemng.htm endpoint in Juplink RX4-1500 Wifi router firmware versions V1.0.2, V1.0.3, V1.0.4, and V1.0.5 allows authenticated remote attackers to execute commands as root via specially crafted HTTP requests to the vulnerable endpoint...
Debian DSA-5346-1 : libde265 - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5346 advisory. Multiple security issues were discovered in libde265, an implementation of the H.265 video codec which may result in denial of service and potentially the executi...
GHSA-2X48-P6CQ-5XCW Path Traversal in github.com/go-sonic/sonic
An issue in the component /admin/backups/work-dir of Sonic v1.0.4 allows attackers to execute a directory traversal...
Path Traversal in github.com/go-sonic/sonic
An issue in the component /admin/backups/work-dir of Sonic v1.0.4 allows attackers to execute a directory traversal...
CVE-2022-46959
An issue in the component /admin/backups/work-dir of Sonic v1.0.4 allows attackers to execute a directory traversal...
CVE-2022-46959
An issue in the component /admin/backups/work-dir of Sonic v1.0.4 allows attackers to execute a directory traversal...
Directory traversal
An issue in the component /admin/backups/work-dir of Sonic v1.0.4 allows attackers to execute a directory traversal...
CVE-2020-21602
libde265 v1.0.4 contains a heap buffer overflow in the putweightedbipred16fallback function, which can be exploited via a crafted a file...
CVE-2020-21604
libde265 v1.0.4 contains a heap buffer overflow fault in the mmloadlepi64 function, which can be exploited via a crafted a file...
CVE-2020-21602
libde265 v1.0.4 contains a heap buffer overflow in the putweightedbipred16fallback function, which can be exploited via a crafted a file...
CVE-2020-21604
libde265 v1.0.4 contains a heap buffer overflow fault in the mmloadlepi64 function, which can be exploited via a crafted a file...
CVE-2020-21603
libde265 v1.0.4 contains a heap buffer overflow in the putqpel00fallback16 function, which can be exploited via a crafted a file...
CVE-2020-21599
libde265 v1.0.4 contains a heap buffer overflow in the de265image::availablezscan function, which can be exploited via a crafted a file...