The vulnerability of the VPN component of the TOTOLINK A3002R router’s microprogramming software allows a perpetrator to carry out cross-site scripting attacks.

The vulnerability of the VPN component of the TOTOLINK A3002R router’s microprogramming software relates to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

Windows PPTP Protocol Use After Free (CVE-2022-21972)

A remote code execution vulnerability exists in Microsoft Windows VPN component. The vulnerability is due to improper handling of PPTP packets...

Unspecified Vulnerability in Google Android (CNVD-2021-30161)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA.Framework is an Android framework component.System is a system component.Broadcom Bluetooth is a Bluetooth component.Wi-Fi is a wireless Internet component.USB driver is a Universal Serial Bus USB...

Google Android Denial of Service Vulnerability (CNVD-2021-30160)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA.Framework is an Android framework component.System is a system component.Broadcom Bluetooth is a Bluetooth component.Wi-Fi is a wireless Internet component.USB driver is a Universal Serial Bus USB...

Code injection

The IKE implementation in the VPN component in Cisco ASA Software 9.1 before 9.15.1 allows remote attackers to cause a denial of service device reload via crafted UDP packets, aka Bug ID CSCul36176...

CVE-2014-3383

CVE-2014-3383 affects Cisco ASA Software 9.1 before 9.1(5.1). The IKE implementation in the VPN component can be triggered by crafted UDP packets, allowing a remote attacker to cause a denial of service (device reload). Affected description is supported by multiple sources in the provided connect...