EUVD-2026-4674

Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.195037 fail to include the X-Content-Type-Options: nosniff response header on web management interfaces. As a result, browsers that perform MIME sniffing may incorrectly interpret attacker-influenced responses as executable...

EUVD-2009-2340

Malware in sbrugna...

CISA Releases First Secure by Design Alert

Today, CISA published guidance on How Software Manufacturers Can Shield Web Management Interfaces From Malicious Cyber Activity as a part of a new Secure by Design SbD Alert series. This SbD Alert urges software manufacturers to proactively prevent the exploitation of vulnerabilities in web...

PT-2022-1784 · Cisco · Cisco Telepresence Video Communication Server +1

Name of the Vulnerable Software and Affected Versions: Cisco Expressway Series affected versions not specified Cisco TelePresence Video Communication Server VCS affected versions not specified Description: The issue is related to multiple vulnerabilities in the API and web-based management...

The vulnerability in the web interface for managing microprogrammed software routers of Cisco Small Business models RV016, RV042, RV042G, RV082, RV320, and RV325 allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the web-based management interfaces for Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 lies in insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause service failures...

The vulnerability in the web interface for managing microprogrammed software routers of Cisco Small Business models RV016, RV042, RV042G, RV082, RV320, and RV325 allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the web-based management interfaces for Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 lies in insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause service failures...

The vulnerability in the web interface for managing microprogrammed wireless router software of Cisco RV110W, Cisco RV130, Cisco RV130W, and Cisco RV215W allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the web-based management interfaces for microprogramming software of Cisco RV110W, Cisco RV130, Cisco RV130W, and Cisco RV215W is caused by buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause a service failure...

The vulnerability in the web-based management interfaces of Cisco RV110W Wireless-N VPN Firewalls, Cisco RV130W Wireless-N Multifunction VPN Routers, and Cisco RV215W Wireless-N VPN Routers allows a attacker to access a list of devices connected to the network.

The vulnerability in the web-based management interfaces of Cisco RV110W Wireless-N VPN Firewalls, Cisco RV130W Wireless-N Multifunction VPN Routers, and Cisco RV215W Wireless-N VPN Routers is related to authentication process errors. Exploiting this vulnerability can allow an attacker to gain...

CVE-2001-0270

Marconi ASX-1000 ASX switches allow remote attackers to cause a denial of service in the telnet and web management interfaces via a malformed packet with the SYN-FIN and More Fragments attributes set...