63 matches found
EUVD-2020-24449
Malware in sbrugna...
EUVD-2017-15724
Malware in sbrugna...
EUVD-2016-7296
Malware in sbrugna...
EUVD-2017-15671
Malware in sbrugna...
EUVD-2015-6286
Malware in sbrugna...
EUVD-2017-12918
Malware in sbrugna...
EUVD-2017-12948
Malware in sbrugna...
EUVD-2017-15784
Malware in sbrugna...
EUVD-2017-15722
Malware in sbrugna...
Cisco IP Phones 6800, 7800, and 8800 Series with Multiplatform Firmware Cross-Site Scripting (CVE-2019-16008)
A vulnerability in the web-based GUI of Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based interface of an affected system. The vulnerability is due to...
Cisco Firepower Management Center Software Configuration Information Disclosure Vulnerabilities
According to its self-reported version, Cisco FTD Software is affected by multiple vulnerabilities as referenced in the cisco-sa-fmc-infodisc-Ft2WVmNU advisory. Multiple information disclosure vulnerabilities exist in the web-based GUI of Cisco Firepower Management Center FMC. An authenticated,...
CVE-2019-16008
Cisco IP Phone 6800/7800/8800 Series with Multiplatform Firmware expose a cross-site scripting (XSS) vulnerability in the web‑based GUI due to insufficient input validation. An authenticated, remote attacker could entice a user to click a crafted link, allowing arbitrary script execution or acces...
Cisco IP Phone 6800, 7800 and 8800 Series Cross-Site Scripting Vulnerability
The Cisco IP Phone 6800, 7800, and 8800 Series are all IP phone families. A cross-site scripting vulnerability exists in the web-based GUI in the Cisco IP Phone 6800, 7800, and 8800 Series using Multiplatform Firmware Release prior to 11.31, which stems from the GUI failing to adequately validate...
Cisco IOS XE Software, Catalyst, and NGWC GUI Privilege Escalation (cisco-sa-20170927-ngwc)
According to its self-reported version, Cisco IOS XE Software is affected by a privilege escalation vulnerability in the web-based Wireless Controller GUI for Cisco 5760 Wireless LAN Controllers, Cisco Catalyst 4500E Supervisor Engine 8-E Wireless Switches, and Cisco New Generation Wireless...
Command injection
A Command Injection vulnerability exists in the web-based GUI of the 1st Gen PelcoSarix Enhanced Camera that could allow a remote attacker to execute arbitrary commands...
Improper access control
A Permissions, Privileges, and Access Control vulnerability exists in the web-based GUI of the 1st Gen Pelco Sarix Enhanced Camera that could allow a remote attacker to delete an arbitrary file...
CVE-2018-7826
The CVE-2018-7826 entry concerns a Command Injection vulnerability in the web-based GUI of the Schneider Electric 1st Gen Pelco Sarix Enhanced Camera . Connected sources describe the root cause as insufficient input validation during construction of executable commands in the web interface, enabl...
CVE-2018-7816
A Permissions, Privileges, and Access Control vulnerability exists in the web-based GUI of the 1st Gen Pelco Sarix Enhanced Camera that could allow a remote attacker to delete an arbitrary file...
CVE-2018-7816
Technical details about CVE-2018-7816 are not provided in the connected documents. The available sources reiterate a permissions/privilege issue in the web GUI of the 1st Gen Pelco Sarix Enhanced Camera without specifics on affected versions or exploitability. Monitor for updates.
Buffer overflow
A buffer overflow vulnerability exist in the web-based GUI of Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow an unauthenticated, remote attacker to execute arbitrary code...