Lucene search
K

2224 matches found

Talos
Talos
added 2022/02/28 12:0 a.m.34 views

Lansweeper lansweeper HelpdeskSetupActions SQL injection vulnerability

Summary A SQL injection vulnerability exists in the HelpdeskEmailActions.aspx functionality of Lansweeper lansweeper 9.1.20.2. A specially-crafted HTTP request can cause SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. Tested Versions Lansweeper...

9.1CVSS8.9AI score0.72601EPSS
Exploits1
Talos
Talos
added 2022/02/28 12:0 a.m.47 views

Gerbv RS-274X aperture macro multiple outline primitives out-of-bounds read vulnerability

Summary An out-of-bounds read vulnerability exists in the RS-274X aperture macro multiple outline primitives functionality of Gerbv 2.7.0 and dev commit b5f1eacd, and Gerbv forked 2.7.1 and 2.8.0. A specially-crafted Gerber file can lead to information disclosure. An attacker can provide a...

10CVSS8.6AI score0.02916EPSS
Exploits1
Talos
Talos
added 2022/02/28 12:0 a.m.39 views

Gerbv RS-274X aperture macro outline primitive out-of-bounds read vulnerability

Summary An out-of-bounds read vulnerability exists in the RS-274X aperture macro outline primitive functionality of Gerbv 2.7.0 and dev commit b5f1eacd and the forked version of Gerbv commit d7f42a9a. A specially-crafted Gerber file can lead to information disclosure. An attacker can provide a...

9.3CVSS7.6AI score0.01357EPSS
Exploits1
Talos
Talos
added 2022/02/28 12:0 a.m.85 views

MZ Automation GmbH libiec61850 parseNormalModeParameters denial of service vulnerability

Summary A denial of service vulnerability exists in the parseNormalModeParameters functionality of MZ Automation GmbH libiec61850 1.5.0. A specially-crafted series of network requests can lead to denial of service. An attacker can send a sequence of malformed iec61850 messages to trigger this...

7.5CVSS7.5AI score0.01797EPSS
Exploits1
Talos
Talos
added 2022/02/23 12:0 a.m.39 views

Accusoft ImageGear XWD parser heap-based buffer overflow vulnerability

Summary A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Accusoft ImageGear 19.10 Product URLs...

9.8CVSS8.7AI score0.01494EPSS
Exploits1
Talos
Talos
added 2022/02/23 12:0 a.m.48 views

Accusoft ImageGear Palette box parser heap-based buffer overflow vulnerability

Summary A heap-based buffer overflow vulnerability exists in the Palette box parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Accusoft ImageGear 19.10...

9.8CVSS8.8AI score0.01792EPSS
Exploits1
Talos
Talos
added 2022/02/23 12:0 a.m.43 views

Accusoft ImageGear TIFF YCbCr image parser out-of-bounds write vulnerability

Summary An out-of-bounds write vulnerability exists in the TIFF YCbCr image parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Accusoft ImageGear 19.1...

9.8CVSS9AI score0.01885EPSS
Exploits1
Talos
Talos
added 2022/02/23 12:0 a.m.56 views

Accusoft ImageGear JPEG-JFIF lossless Huffman parser heap-based buffer overflow vulnerabilities

Summary Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger these vulnerabilities. Tested...

9AI score
Exploits0
Talos
Talos
added 2022/02/23 12:0 a.m.45 views

Accusoft ImageGear JPEG-JFIF Scan header parser out-of-bounds write vulnerability

Summary An improper array index validation vulnerability exists in the JPEG-JFIF Scan header parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to an out-of-bounds write and potential code exectuion. An attacker can provide a malicious file to trigger this...

9.8CVSS8.7AI score0.01084EPSS
Exploits1
Talos
Talos
added 2022/02/23 12:0 a.m.30 views

Accusoft ImageGear XWD parser::xwdread_pixmapformat_0_or_1 heap-based buffer overflow vulnerability

Summary A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Accusoft ImageGear 19.10 Product URLs...

9.8CVSS8.7AI score0.01494EPSS
Exploits1
Talos
Talos
added 2022/02/23 12:0 a.m.53 views

Accusoft ImageGear DecoderStream::Append heap-based buffer overflow vulnerability

Summary A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Accusoft ImageGear 19.10...

9.8CVSS8.9AI score0.01494EPSS
Exploits1
Talos
Talos
added 2022/02/23 12:0 a.m.56 views

Accusoft ImageGear TIFF parser heap-based buffer overflow vulnerabilities

Summary Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger these vulnerabilities. Tested Versions Accusoft ImageGear 19....

8.8AI score
Exploits0
Talos
Talos
added 2022/02/16 12:0 a.m.27 views

KiCad EDA Gerber Viewer gerber and excellon GCode/Dcode parsing stack-based buffer overflow vulnerability

Summary Multiple stack-based buffer overflow vulnerabilities exist in the Gerber Viewer gerber and excellon GCode/Dcode parsing functionality of KiCad EDA 6.0.1 and master commit de006fc010. A specially-crafted gerber or excellon file can lead to code execution. An attacker can provide a maliciou...

7.8CVSS8.2AI score0.01736EPSS
Exploits1
Talos
Talos
added 2022/02/16 12:0 a.m.35 views

KiCad EDA Gerber Viewer gerber and excellon coordinates parsing stack-based buffer overflow vulnerability

Summary Multiple stack-based buffer overflow vulnerabilities exist in the Gerber Viewer gerber and excellon coordinates parsing functionality of KiCad EDA 6.0.1 and master commit de006fc010. A specially-crafted gerber or excellon file can lead to code execution. An attacker can provide a maliciou...

8.2AI score
Exploits0
Talos
Talos
added 2022/02/15 12:0 a.m.56 views

Hancom Office 2020 Hword HwordApp.dll SectorLoc heap-based buffer overflow

Summary A heap-based buffer overflow vulnerability exists in the Hword HwordApp.dll functionality of Hancom Office 2020 11.0.0.2353. A specially-crafted malformed file can lead to memory corruption and potential arbitrary code execution. An attacker can provide a malicious file to trigger this...

7.8CVSS7.8AI score0.011EPSS
Exploits1
Talos
Talos
added 2022/02/15 12:0 a.m.70 views

Texas Instruments CC3200 SimpleLink Solution HTTP Server /ping.html information disclosure vulnerability

Summary An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of Texas Instruments CC3200 SimpleLink Solution NWP 2.9.0.0. A specially-crafted HTTP request can lead to an uninitialized read. An attacker can send an HTTP request to trigger this vulnerability...

5.3CVSS5.4AI score0.01384EPSS
Exploits1
Talos
Talos
added 2022/02/11 12:0 a.m.47 views

Moxa MXView Series Web Application authentication bypass vulnerability

Summary An authentication bypass vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4. A specially-crafted HTTP request can lead to unauthorized access. An attacker can send an HTTP request to trigger this vulnerability. Tested Versions Moxa MXView Series 3.2.4...

10CVSS9.5AI score0.02418EPSS
Exploits1
Talos
Talos
added 2022/02/11 12:0 a.m.64 views

Moxa MXView Series Web Application information disclosure vulnerability

Summary An information disclosure vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4. Network sniffing can lead to a disclosure of sensitive information. An attacker can sniff network traffic to exploit this vulnerability. Tested Versions Moxa MXView Series 3.2....

7.5CVSS6.2AI score0.00588EPSS
Exploits1
Talos
Talos
added 2022/02/01 12:0 a.m.56 views

Sealevel Systems, Inc. SeaConnect 370W HandleSeaCloudMessage out-of-bounds write vulnerabilities

Summary Two out-of-bounds write vulnerabilities exists in the HandleSeaCloudMessage functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to an out-of-bounds write. An attacker can perform a man-in-the-middle attack to trigger these...

8.1CVSS6.1AI score0.0089EPSS
Exploits2
Talos
Talos
added 2022/02/01 12:0 a.m.52 views

Sealevel Systems, Inc. SeaConnect 370W OTA Update "u-download" heap-based buffer overflow vulnerability

Summary A heap-based buffer overflow vulnerability exists in the OTA Update u-download functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A series of specially-crafted MQTT payloads can lead to remote code execution. An attacker must perform a man-in-the-middle attack in order to...

9CVSS8.6AI score0.0201EPSS
Exploits1
Talos
Talos
added 2022/02/01 12:0 a.m.47 views

Sealevel Systems, Inc. SeaConnect 370W URL_decode out-of-bounds write vulnerability

Summary An out-of-bounds write vulnerability exists in the URLdecode functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to an out-of-bounds write. An attacker can perform a man-in-the-middle attack to trigger this vulnerability. Tested...

5.9CVSS5.2AI score0.00696EPSS
Exploits1
Talos
Talos
added 2022/02/01 12:0 a.m.49 views

Sealevel Systems, Inc. SeaConnect 370W OTA update task out-of-bounds write vulnerability

Summary An out-of-bounds write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to denial of service. An attacker can perform a man-in-the-middle attack to trigger this vulnerability. Tested...

7.1CVSS6.3AI score0.00733EPSS
Exploits1
Talos
Talos
added 2022/02/01 12:0 a.m.54 views

Sealevel Systems, Inc. SeaConnect 370W Modbus/SeaMAX Remote Configuration denial of service vulnerabilities

Summary Two denial of service vulnerabilities exist in the Modbus/SeaMAX Remote Configuration functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. Specially-crafted network packets can lead to denial of service. An attacker can send a malicious packet to trigger these vulnerabilities...

9.3CVSS8.4AI score0.01021EPSS
Exploits2
Talos
Talos
added 2022/02/01 12:0 a.m.49 views

Sealevel Systems, Inc. SeaConnect 370W OTA update task file overwrite vulnerability

Summary A file write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to arbitrary file overwrite. An attacker can perform a man-in-the-middle attack to trigger this vulnerability. Tested Version...

8.3CVSS8.2AI score0.00952EPSS
Exploits1
Talos
Talos
added 2022/02/01 12:0 a.m.94 views

Sealevel Systems, Inc. SeaConnect 370W LLMNR/NBNS stack-based buffer overflow vulnerabilities

Summary A stack-based buffer overflow vulnerability exists in both the LLMNR and NBNS functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted network packet can lead to remote code execution. An attacker can send a malicious packet to trigger either of the...

10CVSS9.6AI score0.02639EPSS
Exploits2
Talos
Talos
added 2022/02/01 12:0 a.m.46 views

Sealevel Systems, Inc. SeaConnect 370W Web Server information disclosure vulnerability

Summary An information disclosure vulnerability exists in the Web Server functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted man-in-the-middle attack can lead to a disclosure of sensitive information. An attacker can perform a man-in-the-middle attack to trigger...

7.4CVSS5.8AI score0.00489EPSS
Exploits0
Talos
Talos
added 2022/02/01 12:0 a.m.50 views

Sealevel Systems, Inc. SeaConnect 370W MQTTS Certificate Validation vulnerability

Summary A misconfiguration exists in the MQTTS functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. This misconfiguration significantly simplifies a man-in-the-middle attack, which directly leads to control of device functionality. Tested Versions Sealevel Systems, Inc. SeaConnect 370...

8.1CVSS7.9AI score0.00843EPSS
Exploits1
Talos
Talos
added 2022/02/01 12:0 a.m.39 views

Eclipse Foundation Paho MQTTClient-C library readPacket out-of-bounds write vulnerability

Summary An out-of-bounds write vulnerability exists in the readPacket functionality of Eclipse Foundation Embedded Paho MQTTClient-C library v1.0.0. A specially-crafted MQTT payload can lead to an out-of-bounds write. An attacker can send a malicious MQTT message to trigger this vulnerability...

9.8CVSS9.7AI score0.01165EPSS
Exploits0
Talos
Talos
added 2022/01/31 12:0 a.m.24 views

Gerbv pick-and-place rotation parsing use of uninitialized variable vulnerability

Summary An information disclosure vulnerability exists in the pick-and-place rotation parsing functionality of Gerbv 2.7.0 and dev commit b5f1eacd, and Gerbv forked 2.8.0. A specially-crafted pick-and-place file can exploit the missing initialization of a structure to leak memory contents. An...

6.3CVSS5.7AI score0.0113EPSS
Exploits1
Talos
Talos
added 2022/01/31 12:0 a.m.32 views

Gerbv RS-274X aperture definition tokenization use-after-free vulnerability

Summary A use-after-free vulnerability exists in the RS-274X aperture definition tokenization functionality of Gerbv 2.7.0 and dev commit b5f1eacd and Gerbv forked 2.7.1. A specially-crafted gerber file can lead to code execution. An attacker can provide a malicious file to trigger this...

10CVSS8.6AI score0.01299EPSS
Exploits1
Talos
Talos
added 2022/01/31 12:0 a.m.30 views

Foxit Reader getPageNthWordQuads mishandled exception vulnerability

Summary A memory corruption vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 11.1.0.52543. A specially-crafted PDF document can trigger an exception which is improperly handled, leaving the engine in an invalid state, which can lead to memory corruption and...

8.8CVSS8.9AI score0.01795EPSS
Exploits1
Talos
Talos
added 2022/01/31 12:0 a.m.56 views

Foxit Reader deletePages use-after-free vulnerability

Summary A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 11.1.0.52543. A specially-crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An attacker needs to trick the user to open t...

8.8CVSS8.9AI score0.04687EPSS
Exploits1
Talos
Talos
added 2022/01/27 12:0 a.m.46 views

Google Chrome MediaStreamTrackGenerator use after free vulnerability

Summary A potential code execution vulnerability exists in the MediaStreamTrackGenerator functionality of Google Chrome 94.0.4606.81 Stable and 97.0.4674.1 Canary. A specially-crafted web page can lead to use-after-free. An attacker can provide a malicious web site to trigger this vulnerability...

8.8CVSS9.1AI score0.01362EPSS
Exploits1
Talos
Talos
added 2022/01/26 12:0 a.m.53 views

Reolink RLC-410W "factory" binary firmware update vulnerability

Summary A firmware update vulnerability exists in the "factory" binary of reolink RLC-410W v3.0.0.13620121102. A specially-crafted series of network requests can lead to arbitrary firmware update. An attacker can send a sequence of requests to trigger this vulnerability. Tested Versions Reolink...

10CVSS7.8AI score0.01232EPSS
Exploits1
Talos
Talos
added 2022/01/26 12:0 a.m.20 views

Reolink RLC-410W netserver parse_command_list memory corruption vulnerability

Summary A memory corruption vulnerability exists in the netserver parsecommandlist functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to an out-of-bounds write. An attacker can send an HTTP request to trigger this vulnerability. Tested Versions Reolink...

9.3CVSS8.5AI score0.0128EPSS
Exploits0
Talos
Talos
added 2022/01/26 12:0 a.m.17 views

Reolink RLC-410W device TestEmail out-of-bounds write vulnerability

Summary An out-of-bounds write vulnerability exists in the device TestEmail functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted network request can lead to an out-of-bounds write. An attacker can send an HTTP request to trigger this vulnerability. Tested Versions Reolink...

9.8CVSS9.7AI score0.01397EPSS
Exploits0
Talos
Talos
added 2022/01/26 12:0 a.m.28 views

Reolink RLC-410W netserver recv_command denial of service vulnerability

Summary A denial of service vulnerability exists in the netserver recvcommand functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted network request can lead to a reboot. An attacker can send a malicious packet to trigger this vulnerability. Tested Versions Reolink RLC-410W...

8.6CVSS7.9AI score0.01088EPSS
Exploits0
Talos
Talos
added 2022/01/26 12:0 a.m.163 views

Reolink RLC-410W cgiserver.cgi JSON command parser denial of service vulnerabilities

Summary Multiple denial of service vulnerabilities exist in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. An attacker can send an HTTP request to trigger this vulnerability. Tested Versions reolin...

8.6CVSS8AI score0.01771EPSS
Exploits1
Talos
Talos
added 2022/01/26 12:0 a.m.142 views

Reolink RLC-410W cgiserver.cgi Login authentication bypass vulnerability

Summary An authentication bypass vulnerability exists in the cgiserver.cgi Login functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to authentication bypass. An attacker can send an HTTP request to trigger this vulnerability. Tested Versions Reolink...

6.5CVSS6.3AI score0.01229EPSS
Exploits1
Talos
Talos
added 2022/01/26 12:0 a.m.33 views

Reolink RLC-410W hardcoded TLS key information disclosure vulnerability

Summary An information disclosure vulnerability exists due to the hardcoded TLS key of Reolink RLC-410W v3.0.0.13620121102. A specially-crafted man-in-the-middle attack can lead to a disclosure of sensitive information. An attacker can perform a man-in-the-middle attack to trigger this...

7.5CVSS5.9AI score0.0089EPSS
Exploits0
Talos
Talos
added 2022/01/26 12:0 a.m.58 views

Reolink RLC-410W cgiserver.cgi command parser denial of service vulnerability

Summary A denial of service vulnerability exists in the cgiserver.cgi API command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted series of HTTP requests can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability. Tested...

7.8CVSS7.6AI score0.01339EPSS
Exploits1
Talos
Talos
added 2022/01/26 12:0 a.m.71 views

Reolink RLC-410W cgiserver.cgi cgi_check_ability improper access control vulnerabilities

Summary Multiple incorrect default permissions vulnerabilities exist in the cgiserver.cgi cgicheckability functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability. Teste...

7.1CVSS7AI score0.0082EPSS
Exploits2
Talos
Talos
added 2022/01/26 12:0 a.m.107 views

Reolink RLC-410W "update" firmware checks firmware update vulnerability

Summary A firmware update vulnerability exists in the "update" firmware checks functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to firmware update. An attacker can send a sequence of requests to trigger this vulnerability. Tested Versions Reolink...

8.3CVSS7.7AI score0.00907EPSS
Exploits0
Talos
Talos
added 2022/01/26 12:0 a.m.32 views

Reolink RLC-410W web server misconfiguration information disclosure vulnerability

Summary An information disclosure vulnerability exists due to a web server misconfiguration in the reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability. Tested...

8.1CVSS7.6AI score0.01812EPSS
Exploits1
Talos
Talos
added 2022/01/26 12:0 a.m.64 views

Reolink RLC-410W cgiserver.cgi Upgrade API denial of service vulnerability

Summary A denial of service vulnerability exists in the cgiserver.cgi Upgrade API functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. An attacker can send an HTTP request to trigger this vulnerability. Tested Versions Reolink RLC-410W...

7.7CVSS6.6AI score0.0113EPSS
Exploits1
Talos
Talos
added 2022/01/26 12:0 a.m.63 views

Reolink RLC-410W cgiserver.cgi session creation denial of service vulnerability

Summary A denial of service vulnerability exists in the cgiserver.cgi session creation functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to prevent users from logging in. An attacker can send an HTTP request to trigger this vulnerability. Tested...

7.8CVSS7.7AI score0.01534EPSS
Exploits1
Talos
Talos
added 2022/01/26 12:0 a.m.59 views

Reolink RLC-410W device network settings OS command injection vulnerabilities

Summary Multiple os command injection vulnerabilities exist in the device network settings functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can send an HTTP request to trigger this vulnerability. Tested...

8.8AI score
Exploits0
Talos
Talos
added 2022/01/25 12:0 a.m.81 views

Apple macOS ImageIO DDS image out-of-bounds read vulnerability

Summary An out-of-bounds read vulnerability exists in the DDS image parsing functionality of ImageIO library on Apple macOS Big Sur 11.6.1 and iOS 15.1. A specially-crafted DDS file can disclose sensitive memory content which can aid in exploitation of other vulnerabilities. An attacker can deliv...

7.8CVSS7.7AI score0.04065EPSS
Exploits0
Talos
Talos
added 2022/01/18 12:0 a.m.35 views

Advantech DeviceOn/iEdge Server 1.0.2 privilege escalation vulnerability

Summary A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iEdge Server 1.0.2. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability. Tested...

8.8CVSS9.1AI score0.00365EPSS
Exploits1
Talos
Talos
added 2022/01/18 12:0 a.m.34 views

Advantech WISE-PaaS/OTA 3.0.9 Server installation privilege escalation vulnerability

Summary A privilege escalation vulnerability exists in the installation of f Advantech WISE-PaaS/OTA Server 3.0.9. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability. Tested...

9.3CVSS8.1AI score0.00872EPSS
Exploits1
Total number of security vulnerabilities2224