TP-Link Omada Switches 安全漏洞

TP-Link Omada switches are a series of switches produced by TP-Link, a Chinese company. The TP-Link Omada switches have security vulnerabilities. These vulnerabilities stem from insufficient validation of the web interface, which may lead to out-of-bound memory access when processing specially...

CVE-2025-20342 Cisco Integrated Management Controller Virtual Keyboard Video Monitor (vKVM) Stored Cross-Site Scripting Vulnerability

A vulnerability in the Virtual Keyboard Video Monitor vKVM connection handling of Cisco Integrated Management Controller IMC could allow an authenticated, remote attacker with low privileges to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability is...

Cisco Firepower Management Center 安全漏洞

Cisco Firepower Management Center FMC is a new generation of firewall management center software from Cisco. A cross-site scripting vulnerability exists in Cisco Firepower Management Center, which arises from insufficient validation of user-supplied input in the web management interface, and can ...

Cisco Firepower Management Center 安全漏洞

Cisco Firepower Management Center FMC is a new generation of firewall management center software from Cisco. A cross-site scripting vulnerability exists in Cisco Firepower Management Center, which arises from insufficient validation of user-supplied input in the web management interface, and can ...

ZTE MC801A 安全漏洞

The ZTE MC801A/MC801A1 are both a 5g indoor WiFi router from China's ZTE ZTE. The ZTE MC801A and MC801A1 suffer from a buffer overflow vulnerability, which stems from insufficient validation of web interface parameters and can be exploited by attackers to conduct denial of service attacks...

Cisco Firepower Management Center 跨站脚本漏洞

Cisco Firepower Management Center FMC is a new generation of firewall management center software from Cisco. Cisco Firepower Management Center FMC suffers from a cross-site scripting vulnerability that originates from insufficient validation of user-supplied input in the web management interface,...

CVE-2023-20189

Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code with root privileges on an affected device. These vulnerabilities are due t...

PT-2021-4664 · Cisco · Cisco Ata 190 Series Analog Telephone Adapter

Name of the Vulnerable Software and Affected Versions: Cisco ATA 190 Series Analog Telephone Adapter Software affected versions not specified Description: The issue is related to multiple vulnerabilities in the Cisco ATA 190 Series Analog Telephone Adapter Software. These vulnerabilities could...

IBM QRadar SIEM 跨站脚本漏洞

IBM QRadar SIEM is an IBM USA solution that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. A cross-site...

NETGEAR SRR60 and SRS60 Cross-Site Scripting Vulnerability

The NETGEAR SRR60 and NETGEAR SRS60 are both wireless routers from NETGEAR. A cross-site scripting vulnerability exists in the NETGEAR SRR60 prior to version 2.2.1.210 and the SRS60 prior to version 2.2.1.210, which stems from a lack of proper validation of client-side data by the WEB application...

Cisco SPA100 Series Analog Telephone Adapters Remote Code Execution Vulnerability (CNVD-2019-39613)

The Cisco SPA100 Series Analog Telephone Adapters ATAs are an SPA100 series analog telephone adapter. A remote code execution vulnerability exists in the Cisco SPA100 Series Analog Telephone Adapters that stems from not properly validating user input submitted to the web-based management interfac...

CVE-2019-15251

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

CVE-2017-13994

A Cross-site Scripting issue was discovered in LOYTEC LVIS-3ME versions prior to 6.2.0. The web interface lacks proper web request validation, which could allow XSS attacks to occur if an authenticated user of the web interface is tricked into clicking a malicious link...

Cisco Security Agent Management Center Code Execution

Added: 03/17/2011 CVE: CVE-2011-0364 BID: 65436 OSVDB: 70884 Background Cisco Security Agent Management Center is the server component of Cisco's Security Agent endpoint IPS solution. It is responsible for collecting event log information from endpoints and distributing rules updates. Problem The...