90509 matches found
The vulnerability of the VoIP gateway software Telecom MG lies in the lack of measures to neutralize special elements used in operating system teams, allowing a hacker to execute arbitrary code with root privileges.
The vulnerability of the VoIP gateway software of Telecom MG is related to the lack of measures taken to neutralize special elements used in operating system teams. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with root privileges...
The vulnerability of the VoIP gateway software Telecom MG lies in the lack of measures to neutralize special elements used in operating system teams, allowing a hacker to execute arbitrary code with root privileges.
The vulnerability of the VoIP gateway software of Telecom MG is related to the lack of measures taken to neutralize special elements used in operating system teams. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with root privileges...
The vulnerability of the Nginx UI server’s user interface relates to improper code generation, which allows attackers to bypass security restrictions and execute arbitrary code.
The vulnerability of the Nginx UI server’s user interface is related to improper code generation during the processing of the app.ini configuration file. Exploiting this vulnerability allows a remote attacker to bypass security restrictions and execute arbitrary code by sending a specially crafte...
The vulnerability of the sprintf() function in the JHTTPD web server of D-Link’s router software DI-8100 allows a hacker to execute arbitrary code.
The vulnerability of the sprintf function in the D-Link DI-8100 router microprogramming software’s web server is related to the execution of operations outside of the buffer during the processing of the enable and time parameters. Exploiting this vulnerability allows a remote attacker to execute...
The vulnerability of the telnetd.sh script of the D-Link DIR-600L router’s telnet service allows a hacker to gain unauthorized access to protected information, increase their privileges, and execute arbitrary commands.
The vulnerability of the telnetd.sh script of the D-Link DIR-600L router’s telnet service is related to the use of the static password wrgn35dlwbrdir600l for the Alphanetworks account. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, enhanc...
The vulnerability of the User-ID authentication service of the PAN-OS operating system allows a perpetrator to execute arbitrary code with root privileges.
The vulnerability of the User-ID authentication service in the PAN-OS operating system is related to writing beyond buffer boundaries. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with root privileges by sending specially crafted packets...
The vulnerability of the remote image blocking function in the RoundCube Webmail client allows attackers to disclose protected information.
The vulnerability of the delete block function in the RoundCube Webmail email client is related to the lack of validation for incoming requests. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the “removable blocking” function in the RoundCube Webmail email client allows attackers to disclose protected information and circumvent existing security restrictions.
The vulnerability of the “deleted image blocking” function in the RoundCube Webmail client lies in the lack of validation during incoming requests. Exploiting this vulnerability allows an attacker to disclose protected information and circumvent existing security restrictions...
The vulnerability of the sendBlueBubblesMedia() function in the AI agent OpenClaw (previously known as ClawdBot or MoltBot) allows a intruder to read arbitrary files.
The vulnerability of the sendBlueBubblesMedia function in the AI agent OpenClaw previously known as ClawdBot or MoltBot is related to incorrect external manipulation of the file name or path. Exploiting this vulnerability allows a remote attacker to read arbitrary files...
The vulnerability of the tggl_asp() function in D-Link DI-8100 router microprogramming software allows a hacker to cause a service failure.
The vulnerability of the tgglasp function in D-Link DI-8100 router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to cause service failure...
The vulnerability of the Web Management Interface component of D-Link DI-8100 microprogrammed router software allows a intruder to cause a service failure.
The vulnerability of the Web Management Interface component of D-Link DI-8100 microprogrammed router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to cause a service failure remotely...
The vulnerability of the Nginx UI server’s user interface allows a perpetrator to gain unauthorized access to the system.
The vulnerability of the Nginx UI server’s user interface lies in the lack of authentication for critical functions. Exploiting this vulnerability allows a remote attacker to gain unauthorized access to the system by sending a specially crafted POST request...
The vulnerability of the ajp_msg_get_string() function in the Apache HTTP Server allows a hacker to induce a service failure.
The vulnerability of the ajpmsggetstring function in the Apache HTTP Server relates to reading data beyond the permitted range of memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...
The vulnerability of the mod_proxy_ajp() function in the Apache HTTP Server allows a hacker to disclose confidential information.
The vulnerability of the modproxyajp function in the Apache HTTP Server is related to reading data beyond the allowed range of memory. Exploiting this vulnerability could allow a remote attacker to disclose confidential information...
The vulnerability of the VoIP gateway software Telecom MG lies in the lack of measures to neutralize special elements used in operating system teams, allowing a hacker to execute arbitrary code with root privileges.
The vulnerability of the VoIP gateway software of Telecom MG is related to the lack of measures taken to neutralize special elements used in operating system teams. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with root privileges...
The vulnerability of the setWanConfig() function in the cgi-bin/cstecgi.cgi script of the TOTOLINK N300RH router’s microprogramming software allows a perpetrator to execute arbitrary code or cause service failures.
The vulnerability of the setWanConfig function in the cgi-bin/cstecgi.cgi script of the TOTOLINK N300RH router’s microprogramming system is related to the issue of data being written outside the buffer in memory when processing the priDns parameter with value v46. Exploiting this vulnerability...
The vulnerability of the telnetd.sh script of the D-Link DIR-605L router’s telnet service allows a hacker to gain unauthorized access to protected information, increase their privileges, and execute arbitrary commands.
The vulnerability of the telnetd.sh script of the D-Link DIR-605L router’s telnet service is related to the use of a static password, wrgn35dlwbrdir605l, for the Alphanetworks account. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, enhanc...
The vulnerability of the telnetd.sh script of the D-Link DIR-456U router’s telnet service allows a hacker to gain unauthorized access to protected information, increase their privileges, and execute arbitrary commands.
The vulnerability of the telnetd.sh script of the D-Link DIR-456U router’s telnet service is related to the use of a static password, whdrv01dlobdir456U, for the Alphanetworks account. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, enhanc...
The vulnerability of demons slaacd and rad in the OpenBSD operating system allows a hacker to induce a service failure.
The vulnerability of demons slaacd and rad in the OpenBSD operating system is related to a circularization issue caused by integer overflow. Exploiting this vulnerability allows an attacker to cause service failures remotely...
The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain full control over the application.
The vulnerability of the Core component of the Oracle VM VirtualBox software is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...
The vulnerability of the sprintf() function in D-Link DI-8100 router microprogramming software allows a hacker to cause a service failure.
The vulnerability of the sprintf function in D-Link DI-8100 router microprogramming devices is related to buffer overflow on the stack. Exploiting this vulnerability can allow an attacker to cause a service failure remotely...
The vulnerability of the Nginx UI server’s user interface allows attackers to disclose confidential information.
The vulnerability of the Nginx UI server’s user interface is related to the disclosure of information. Exploiting this vulnerability can allow a remote attacker to disclose confidential information...
The vulnerability of the IoBuffer.getObject() function in the Apache MINA network-oriented Java framework allows a attacker to execute arbitrary code.
The vulnerability of the IoBuffer.getObject function in the Apache MINA network-oriented Java framework is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker to execute arbitrary code...
The vulnerability of the Apache MINA network Java application framework, related to deserialization mechanism flaws, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the Apache MINA network Java application framework is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the VoIP gateway software Telecom MG lies in the lack of measures to neutralize special elements used in operating system teams, allowing a hacker to execute arbitrary code with root privileges.
The vulnerability of the VoIP gateway software of Telecom MG is related to the lack of measures taken to neutralize special elements used in operating system teams. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with root privileges...
The vulnerability of the telnetd.sh script of the D-Link DIR-605L router’s telnet service allows a hacker to gain unauthorized access to protected information, increase their privileges, and execute arbitrary commands.
The vulnerability of the telnetd.sh script of the D-Link DIR-605L router’s telnet service is related to the use of a static password, wrgn76dlwbrdir605L, for the Alphanetworks account. Exploiting this vulnerability allows an attacker to gain unauthorized access to protected information, enhance...
The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to trigger a service failure.
The vulnerability of the Core component of the Oracle VM VirtualBox software is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...
The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain full control over the application.
The vulnerability of the Core component of the Oracle VM VirtualBox software is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...
The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain full control over the application.
The vulnerability of the Core component of the Oracle VM VirtualBox software is related to lack of access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...
The vulnerability of the MS Teams extension of the AI agent OpenClaw (formerly known as ClawdBot or MoltBot) allows a hacker to disclose protected information.
The vulnerability of the MS Teams extension of the AI agent OpenClaw formerly known as ClawdBot or MoltBot relates to the disclosure of information during data transmission. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose the protected information...
The vulnerability of the RealMedia demuxer component in the Gstreamer multimedia framework allows a hacker to execute arbitrary code.
The vulnerability of the RealMedia demuxer component in the Gstreamer multimedia framework is related to writing beyond the buffer memory boundaries. Exploiting this vulnerability allows an attacker to execute arbitrary code...
The vulnerability of the sprintf() function in D-Link DI-8100 router microprogramming software allows a hacker to cause a service failure.
The vulnerability of the sprintf function in D-Link DI-8100 router microprogramming devices is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to cause service failure remotely...
The vulnerability of the sqltabFetchClientsCB() function in the ProFTPD FTP server allows a hacker to execute arbitrary SQL commands.
The vulnerability of the sqltabFetchClientsCB function in the ProFTPD FTP server is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary SQL commands remotely...
The vulnerability of the Nginx UI server’s user interface allows a hacker to modify data within the system.
The vulnerability of the Nginx UI server’s user interface is related to the lack of authentication for critical functions. Exploiting this vulnerability allows a remote attacker to modify data within the system...
The vulnerability of the Nginx UI server’s user interface allows attackers to bypass existing security measures.
The vulnerability of the Nginx UI server’s user interface is related to the disclosure of information. Exploiting this vulnerability can allow a malicious actor to bypass existing security measures remotely...
The vulnerability of the VoIP gateway software Telecom MG lies in the lack of measures to neutralize special elements used in operating system teams, allowing a hacker to execute arbitrary code with root privileges.
The vulnerability of the VoIP gateway software of Telecom MG is related to the lack of measures taken to neutralize special elements used in operating system teams. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with root privileges...
The vulnerability of the VoIP gateway software Telecom MG lies in the lack of measures to neutralize special elements used in operating system teams, allowing a hacker to execute arbitrary code with root privileges.
The vulnerability of the VoIP gateway software of Telecom MG is related to the lack of measures taken to neutralize special elements used in operating system teams. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with root privileges...
The vulnerability of the urlrule_asp() function in D-Link DI-8100 router microprogramming software allows a hacker to induce a service failure.
The vulnerability of the urlruleasp function in D-Link DI-8100 router microprogramming software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failure by sending a specially crafted HTTP request...
The vulnerability of the telnetd.sh script of the D-Link DIR-600L router’s telnet service allows a hacker to gain unauthorized access to protected information, increase their privileges, and execute arbitrary commands.
The vulnerability of the telnetd.sh script of the D-Link DIR-600L router’s telnet service is related to the use of a static password, wrgn61dlwbrdir600L, for the Alphanetworks account. Exploiting this vulnerability allows an attacker to gain unauthorized access to protected information, enhance...
The vulnerability of the RoundCube Webmail email client lies in the lack of validation for incoming requests, allowing attackers to circumvent security restrictions.
The vulnerability of the RoundCube Webmail email client is related to the lack of validation for incoming requests. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions remotely...
The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain full control over the application.
The vulnerability of the Core component of the Oracle VM VirtualBox software is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...
The vulnerability of the ASF plugin for the Gstreamer multimedia framework allows a hacker to execute arbitrary code.
The vulnerability of the ASF plugin in the Gstreamer multimedia framework is related to insufficient data validation. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the Apache MINA network Java application framework, related to deserialization mechanism flaws, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the Apache MINA network Java application framework is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the `system.run` command in the OpenClaw AI-agent (formerly known as ClawdBot or MoltBot) allows a attacker to execute arbitrary commands.
The vulnerability of the system.run command in the OpenClaw AI-agent formerly known as ClawdBot or MoltBot is related to an uncontrolled element in the search process. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerabilities in the src/browser/routes/agent.act.ts and src/browser/pw-tools-core.interactions.ts files of the AI agent OpenClaw (formerly ClawdBot or MoltBot) allow a violator to execute arbitrary commands.
The vulnerability in the src/browser/routes/agent.act.ts and src/browser/pw-tools-core.interactions.ts files of the AI agent OpenClaw formerly ClawdBot or MoltBot is related to the lack of authentication for a critical function. Exploiting this vulnerability allows an attacker to execute arbitrar...
The vulnerability of the AI agent OpenClaw (formerly known as ClawdBot or MoltBot) arises from an incorrect restriction on the path name to the restricted-access catalog, allowing a violator to read and modify arbitrary files.
The vulnerability of the AI agent OpenClaw formerly known as ClawdBot or MoltBot is related to an incorrect restriction on the path name when accessing a restricted catalog during the processing of parameters sessionId and sessionFile. Exploiting this vulnerability allows an attacker to read and...
The vulnerability of the mod_auth_digest module in the Apache HTTP Server allows attackers to circumvent security restrictions.
The vulnerability of the modauthdigest module in the Apache HTTP Server is related to the disclosure of information based on temporal discrepancies. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions remotely...
The vulnerability of the sub_424AFC() function in D-Link DWR-M960 router microprogramming software allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the sub424AFC function in D-Link DWR-M960 router microprogramming software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause malfunctions in the device...
The vulnerability of the sub_425FF8() function in D-Link DWR-M960 router microprogramming software allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the sub425FF8 function in D-Link DWR-M960 router microprogramming software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause malfunctions in the device...
The vulnerability of the sub_41914C() function in D-Link DWR-M960 router microprogramming software allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the sub41914C function in D-Link DWR-M960 router microprogramming software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause malfunctions in the device...