11 matches found
Broken Access Control - on NodeBB v3.6.7
Exploit Title: Broken Access Control - on NodeBB v3.6.7 Date: 22/2/2024 Exploit Author: Vibhor Sharma Vendor Homepage: https://nodebb.org/ Version: 3.6.7 Description: I identified a broken access control vulnerability in nodeBB v3.6.7, enabling attackers to access restricted information intended...
CVE-2022-43272
DCMTK v3.6.7 was discovered to contain a memory leak via the TASCAssociation object...
CVE-2022-43272
DCMTK v3.6.7 was discovered to contain a memory leak via the TASCAssociation object...
Memory corruption
DCMTK v3.6.7 was discovered to contain a memory leak via the TASCAssociation object...
CVE-2022-43272
DCMTK v3.6.7 was discovered to contain a memory leak via the TASCAssociation object...
CVE-2022-43272
DCMTK v3.6.7 was discovered to contain a memory leak via the TASCAssociation object...
CVE-2022-43272
DCMTK v3.6.7 was discovered to contain a memory leak via the TASCAssociation object...
CVE-2022-43272
CVE-2022-43272 affects DCMTK v3.6.7, with a memory leak in the single-process path related to T_ASC_Association (notably in ASC_receiveAssociation and parseUserInfo flows). The issue is a memory leak rather than an explicit remote code execution or crash in the presented docs, and exploitation de...
CVE-2022-40469
iKuai OS v3.6.7 was discovered to contain an authenticated remote code execution RCE vulnerability...
CVE-2022-40469
CVE-2022-40469 affects iKuai OS v3.6.7 and is described as an authenticated remote code execution (RCE) vulnerability. CVSS v3.1 base score 8.8 (HIGH): attack vector NETWORK, privileges required LOW, user interaction NONE, with impact on confidentiality, integrity, and availability. Public detail...
CVE-2022-40469
iKuai OS v3.6.7 was discovered to contain an authenticated remote code execution RCE vulnerability...