134 matches found
CVE-2025-66631 CSLA .NET is vulnerable to Remote Code Execution via WcfProxy
CSLA .NET is a framework designed for the development of reusable, object-oriented business layers for applications. Versions 5.5.4 and below allow the use of WcfProxy. WcfProxy uses the now-obsolete NetDataContractSerializer NDCS and is vulnerable to remote code execution during deserialization...
Csla affected by Remote Code Execution via WcfProxy (NetDataContractSerializer)
Impact Versions of CSLA .NET prior to version 6 allow the use of WcfProxy. WcfProxy uses the NetDataContractSerializer NDCS which has known vulnerabilities that can allow remote execution of code during deserialization. NDCS itself is considered obsolete, and you should avoid using WcfProxy or...
EUVD-2018-5050
Malware in sbrugna...
EUVD-2019-0429
Malware in sbrugna...
EUVD-2021-14042
Malware in sbrugna...
EUVD-2020-6189
Malware in sbrugna...
EUVD-2018-20399
Malware in sbrugna...
EUVD-2021-32628
Malicious code in bioql PyPI...
EUVD-2023-37930
Malicious code in bioql PyPI...
CVE-2023-33778
Draytek Vigor Routers firmware versions below 3.9.6/4.2.4, Access Points firmware versions below v1.4.0, Switches firmware versions below 2.6.7, and Myvigor firmware versions below 2.3.2 were discovered to use hardcoded encryption keys which allows attackers to bind any affected device to their o...
CVE-2021-27240
This vulnerability allows local attackers to escalate privileges on affected installations of SolarWinds Patch Manager 2020.2.1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within th...
CVE-2020-12013
A specially crafted WCF client that interfaces to the may allow the execution of certain arbitrary SQL commands remotely. This affects: Mitsubishi Electric MC Works64 Version 4.02C 10.95.208.31 and earlier, all versions; Mitsubishi Electric MC Works32 Version 3.00A 9.50.255.02; ICONICS GenBroker6...
PT-2024-12304 · Amc2-2Wcf +1 · Amc2-2Wcf +1
Name of the Vulnerable Software and Affected Versions: AMC2-4WCF and AMC2-2WCF affected versions not specified Description: The issue is related to a firmware bug that may cause misinterpretation of data, allowing an adversary to grant access to the last authorized user. Recommendations: At the...
CVE-2024-28252
The CVE describes a resource exhaustion issue in CoreWCF NetFraming based services (NetTcpBinding, NetNamedPipeBinding, UnixDomainSocketBinding). When a client connects and sends no data, the service may wait indefinitely for a NetFraming handshake; if a session remains idle beyond the ReceiveTim...
CVE-2023-33778
Draytek Vigor Routers firmware versions below 3.9.6/4.2.4, Access Points firmware versions below v1.4.0, Switches firmware versions below 2.6.7, and Myvigor firmware versions below 2.3.2 were discovered to use hardcoded encryption keys which allows attackers to bind any affected device to their o...
CVE-2023-33778
Draytek Vigor Routers firmware versions below 3.9.6/4.2.4, Access Points firmware versions below v1.4.0, Switches firmware versions below 2.6.7, and Myvigor firmware versions below 2.3.2 were discovered to use hardcoded encryption keys which allows attackers to bind any affected device to their o...
January 11, 2022-KB5008882 Cumulative Update for .NET Framework 3.5 and 4.8 for Microsoft server operating system version 21H2
None None...
January 11, 2022-KB5008880 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 11
None None...
January 11, 2022-KB5008879 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10, version 1909
None None...
January 11, 2022-KB5008877 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server, version 2016
None None...