EUVD-2025-27742

Malicious code in bioql PyPI...

EUVD-2025-25743

Malicious code in bioql PyPI...

CVE-2025-29515

Incorrect access control in the DELTfile.xgi endpoint of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to modify arbitrary settings within the device's XML database, including the administrator’s password...

CVE-2025-29514

Incorrect access control in the config.xgi function of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to download the configuration file via providing a crafted web request...

CVE-2025-29515

Incorrect access control in the DELTfile.xgi endpoint of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to modify arbitrary settings within the device's XML database, including the administrator’s password...

CVE-2025-29514

CVE-2025-29514 affects D-Link DSL-7740C (firmware DSL7740C.V6.TR069.20211230). The issue is an incorrect access control in the config.xgi function that could allow an attacker to download the device configuration by sending a crafted web request. CVSS v3.1 vector indicates Network access, Low att...

D-Link DSL-7740C 安全漏洞

The D-Link DSL-7740C is a modem from China AUO D-Link. A security vulnerability exists in the D-Link DSL-7740C DSL7740C.V6.TR069.20211230 version, which stems from improper access control of the config.xgi function, which could result in the downloading of configuration files...

CVE-2015-5466

Silicon Integrated Systems XGI WindowsXP Display Manager aka XGI VGA Driver Manager and VGA Display Manager 6.14.10.1090 allows local users to gain privileges via a crafted 0x96002404 IOCTL call...

CVE-2021-26709

D-Link DSL-320B-D1 devices through EU1.25 are prone to multiple Stack-Based Buffer Overflows that allow unauthenticated remote attackers to take over a device via the login.xgi user and pass parameters. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

PT-2021-2654 · D Link · D-Link Dsl-320B-D1

Name of the Vulnerable Software and Affected Versions: D-Link DSL-320B-D1 devices through EU 1.25 Description: The issue is related to a buffer overflow in the device's firmware, allowing a remote attacker to gain unauthorized access to the device with user login.xgi privileges. The vulnerability...

CVE-2015-5466

Silicon Integrated Systems XGI WindowsXP Display Manager aka XGI VGA Driver Manager and VGA Display Manager 6.14.10.1090 allows local users to gain privileges via a crafted 0x96002404 IOCTL call...

Code injection

Silicon Integrated Systems XGI WindowsXP Display Manager aka XGI VGA Driver Manager and VGA Display Manager 6.14.10.1090 allows local users to gain privileges via a crafted 0x96002404 IOCTL call...

CVE-2015-5466

CVE-2015-5466 affects Silicon Integrated Systems’ XGI VGA Display Manager (XGI VGA Display Manager) version 6.14.10.1090 on Windows XP SP3. A vulnerability in the xrvkp module allows an attacker to perform an arbitrary write (write-what-where) via IOCTL 0x96002404, enabling privilege escalation b...

CVE-2015-5466

Silicon Integrated Systems XGI WindowsXP Display Manager aka XGI VGA Driver Manager and VGA Display Manager 6.14.10.1090 allows local users to gain privileges via a crafted 0x96002404 IOCTL call...

KL-001-2015-004 : XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 KL-001-2015-004 : XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation Title: XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation Advisory ID: KL-001-2015-004 Publication Date: 2015.09.01 Publication URL:...

SiS / XGI display managers privilege escalation

IOCTL privilege escalation...

XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation

Vulnerability Details Affected Vendor: Silicon Integrated Systems Corporation Affected Product: XGI VGA Display Manager Affected Version: 6.14.10.1090 Platform: Microsoft Windows XP SP3 CWE Classification: CWE-123: Write-what-where condition Impact: Arbitrary Code Execution Attack vector: IOCTL...

XGI Windows VGA Display Manager 6.14.10.1090 - Arbitrary Write (PoC)

KL-001-2015-004 : XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation Title: XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation Advisory ID: KL-001-2015-004 Publication Date: 2015.09.01 Publication URL:...