Lucene search
K

2218 matches found

Talos
Talos
added 2018/04/13 12:0 a.m.43 views

Moxa EDR-810 Web Server strcmp Multiple Denial of Service Vulnerabilities

Summary An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP URI can cause a null pointer dereference resulting in denial of service. An attacker can send a GET request to “/MOXALOG.ini, /MOXACFG.ini, o...

7.5CVSS7.3AI score0.0219EPSS
Exploits4
Talos
Talos
added 2018/04/13 12:0 a.m.45 views

Moxa EDR-810 Plaintext Password Storage Vulnerability

Summary An password storage vulnerability exists in the operating system functionality of Moxa EDR-810 V4.1 build 17030317. An attacker with shell access could extract passwords in clear text from the device. Tested Versions Moxa EDR-810 V4.1 build 17030317 Product URLs...

4.4CVSS4.6AI score0.0044EPSS
Exploits2
Talos
Talos
added 2018/04/13 12:0 a.m.42 views

Moxa EDR-810 Web Server Cross-Site Request Forgery Vulnerability

Summary An exploitable cross-site request forgery vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP packet can cause cross-site request forgery. An attacker can create malicious HTML to trigger this vulnerability. Tested Versions Mo...

8.8CVSS8.9AI score0.01011EPSS
Exploits2
Talos
Talos
added 2018/04/13 12:0 a.m.44 views

Moxa EDR-810 Server Agent Information Disclosure Vulnerability

Summary An exploitable information disclosure vulnerability exists in the Server Agent functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted TCP packet can cause information disclosure. An attacker can send a crafted TCP packet to trigger this vulnerability. Tested Versions Moxa...

7.5CVSS5.7AI score0.48138EPSS
Exploits2
Talos
Talos
added 2018/04/13 12:0 a.m.31 views

Moxa EDR-810 Web Server Certificate Signing Request Command Injection Vulnerability

Summary An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation resulting in root shell. An attacker can inject OS commands into the CN= parm in the...

9CVSS9.1AI score0.04024EPSS
Exploits2
Talos
Talos
added 2018/04/13 12:0 a.m.43 views

Moxa EDR-810 Web RSA Key Generation Command Injection Vulnerability

Summary An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation resulting in root shell. An attacker can inject OS commands into the rsakeyname= parm in the...

9CVSS9AI score0.04328EPSS
Exploits2
Talos
Talos
added 2018/04/12 12:0 a.m.47 views

NASA CFITSIO `ffghbn` and `ffghtb` Stack Overflow Code Execution Vulnerabilities

Summary Exploitable buffer overflow vulnerabilities exist in image parsing functionality of the CFITSIO library version 3.42. Specially crafted images parsed via the library, can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this...

8.8CVSS9.1AI score0.04034EPSS
Exploits1
Talos
Talos
added 2018/04/12 12:0 a.m.35 views

NASA CFITSIO `ffgkyn` Stack Overflow Code Execution Vulnerability

Summary Multiple exploitable buffer overflow vulnerabilities exist in image parsing functionality of the CFITSIO library version 3.42. Specially crafted images parsed via the library, can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigg...

8.8CVSS8.9AI score0.02842EPSS
Exploits1
Talos
Talos
added 2018/04/12 12:0 a.m.36 views

NASA CFITSIO Multiple Stack Overflow Code Execution Vulnerabilities

Summary Multiple exploitable buffer overflow vulnerabilities exist in image parsing functionality of the CFITSIO library version 3.42. Specially crafted images parsed via the library, can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigg...

8.8CVSS8.9AI score0.03074EPSS
Exploits1
Talos
Talos
added 2018/04/11 12:0 a.m.51 views

Computerinsel Photoline PCX Decompress Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this...

8.8CVSS8.2AI score0.0147EPSS
Exploits1
Talos
Talos
added 2018/04/11 12:0 a.m.48 views

Computerinsel Photoline PCX Run Length Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this...

8.8CVSS8.1AI score0.0147EPSS
Exploits1
Talos
Talos
added 2018/04/11 12:0 a.m.48 views

Computerinsel Photoline PCX Color Map Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this...

8.8CVSS7.9AI score0.0147EPSS
Exploits1
Talos
Talos
added 2018/04/11 12:0 a.m.49 views

Computerinsel Photoline PSD Blending Channels Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the PSD parsing functionality of Computerinsel Photoline 20.53. A specially crafted PSD document processed via the application can lead to an out of bounds write overwriting arbitrary data. An attacker can deliver a PSD document to trigger this...

8.8CVSS8.4AI score0.01271EPSS
Exploits0
Talos
Talos
added 2018/04/11 12:0 a.m.51 views

Computerinsel Photoline TIFF Samples Per Pixel Parsing Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the TIFF parsing functionality of Computerinsel Photoline 20.53. A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a TIFF image to trigger this...

8.8CVSS8AI score0.01501EPSS
Exploits1
Talos
Talos
added 2018/04/11 12:0 a.m.59 views

Computerinsel Photoline PCX Bits Per Pixel Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this...

8.8CVSS8.1AI score0.01501EPSS
Exploits1
Talos
Talos
added 2018/04/11 12:0 a.m.43 views

Computerinsel Photoline TIFF Bits Per Pixel Parsing Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the TIFF parsing functionality of Computerinsel Photoline 20.53. A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a TIFF image to trigger this...

8.8CVSS8.2AI score0.01036EPSS
Exploits1
Talos
Talos
added 2018/04/10 12:0 a.m.40 views

Simple DirectMedia Layer SDL2_Image IMG_LoadPCX_RW Information Disclosure Vulnerability

Summary An exploitable information disclosure vulnerability exists in the PCX image rendering functionality of SDL2image-2.0.2. A specially crafted PCX image can cause an out-of-bounds read on the heap, resulting in information disclosure . An attacker can display a specially crafted image to...

5.5CVSS6.8AI score0.01248EPSS
Exploits1
Talos
Talos
added 2018/04/10 12:0 a.m.38 views

Simple DirectMedia Layer SDL2_Image load_xcf_tile_rle bpp Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2image-2.0.2. A specially crafted XCF image can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can display a specially crafted image to trigger this...

8.8CVSS8.4AI score0.02598EPSS
Exploits1
Talos
Talos
added 2018/04/10 12:0 a.m.35 views

Simple DirectMedia Layer SDL2_Image load_xcf_tile_rle Information Disclosure Vulnerability

Summary An exploitable information vulnerability exists in the XCF image rendering functionality of SDL2image-2.0.2. A specially crafted XCF image can cause an out-of-bounds read on the heap, resulting in information disclosure. An attacker can display a specially crafted image to trigger this...

6.5CVSS6.8AI score0.01824EPSS
Exploits1
Talos
Talos
added 2018/04/09 12:0 a.m.97 views

Zabbix Server Config Proxy Request Information Disclosure Vulnerability

Summary An information disclosure vulnerability exists in the iConfig proxy request of Zabbix server 2.4.X. A specially crafted iConfig proxy request can cause the Zabbix server to send the configuration information of any Zabbix proxy, resulting in information disclosure. An attacker can make...

4.3CVSS3.8AI score0.03386EPSS
Exploits1
Talos
Talos
added 2018/04/06 12:0 a.m.54 views

IBM DB2 Shared Memory Insecure Permissions Vulnerability

Summary An exploitable shared memory permissions vulnerability exists in the functionality of IBM DB2 10.5.0.7. An attacker can access the shared memory without any specific permissions to trigger this vulnerability. Tested Versions IBM DB2 10.5.0.7 Product URLs...

7.1CVSS7.5AI score0.00372EPSS
Exploits0
Talos
Talos
added 2018/04/04 12:0 a.m.99 views

Circle with Disney WiFi Insecure Access Point Vulnerability

Summary An exploitable vulnerability exists in the WiFi Access Point feature of Circle with Disney running firmware 2.0.1. A series of WiFi packets can force Circle to setup an Access Point with default credentials. An attacker needs to send a series of spoofed “de-auth” packets to trigger this...

6.5CVSS6.5AI score0.00654EPSS
Exploits1
Talos
Talos
added 2018/04/04 12:0 a.m.49 views

Natus Xltek EEG NeuroWorks RequestForPatientInfoEEGfile Code Execution Vulnerability

Summary An exploitable Code Execution vulnerability exists in the RequestForPatientInfoEEGfile functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in arbitrary command execution. An attacker can send a malicious packet to trigg...

10CVSS9.9AI score0.03436EPSS
Exploits0
Talos
Talos
added 2018/04/04 12:0 a.m.40 views

Natus Xltek EEG NeuroWorks NewProducerStream Use of Return Value Denial of Service Vulnerability

Summary An exploitable Denial of Service vulnerability exists in the use of a return value in the NewProducerStream command in Natus Xltek NeuroWorks 8. A specially crafted network packet can cause an out of bounds read resulting in a denial of service. An attacker can send a malicious packet to...

7.5CVSS7.6AI score0.01448EPSS
Exploits0
Talos
Talos
added 2018/04/04 12:0 a.m.101 views

Natus Xltek EEG NeuroWorks SavePatientMontage Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the SavePatientMontage functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in code execution. An attacker can a malicious packet to trigger this vulnerability. Teste...

9.8CVSS9.7AI score0.02314EPSS
Exploits0
Talos
Talos
added 2018/04/04 12:0 a.m.38 views

Natus Xltek EEG NeuroWorks OpenProducer Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the OpenProducer functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in code execution. An attacker can send a malicious packet to trigger this vulnerability. Tested...

10CVSS9.8AI score0.02708EPSS
Exploits0
Talos
Talos
added 2018/04/04 12:0 a.m.37 views

Natus Xltek EEG NeuroWorks NewProducerStream Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the NewProducerStream functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in code execution. An attacker can send a malicious packet to trigger this vulnerability...

10CVSS9.8AI score0.02631EPSS
Exploits0
Talos
Talos
added 2018/04/03 12:0 a.m.56 views

Moxa AWK-3131A Multiple Features Login Username Parameter OS Command Injection Vulnerability

Summary An exploitable OS Command Injection vulnerability exists in the Telnet, SSH, and console login functionality of Moxa AWK-3131A Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client in firmware versions 1.4 to 1.7 current. An attacker can inject commands via the username parameter of...

10CVSS10AI score0.12169EPSS
Exploits1
Talos
Talos
added 2018/03/28 12:0 a.m.189 views

Allen Bradley Micrologix 1400 Series B PLC Session Communication Insufficient Resource Pool Denial of Service Vulnerability

Summary An exploitable insufficient resource pool vulnerability exists in the session communication functionality of Allen Bradley Micrologix 1400 Series B Firmware 21.2 and before. A specially crafted stream of packets can cause a flood of the session resource pool resulting in legitimate...

5.3CVSS5.5AI score0.06208EPSS
Exploits1
Talos
Talos
added 2018/03/28 12:0 a.m.333 views

Allen Bradley Micrologix 1400 Series B Memory Module Store Program File Write Vulnerability

Summary An exploitable file write vulnerability exists in the memory module functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a file write resulting in a new program being written to the memory module. An attacker can send an...

7.5CVSS5.9AI score0.02679EPSS
Exploits1
Talos
Talos
added 2018/03/28 12:0 a.m.73 views

Allen Bradley Micrologix 1400 Series B Ladder Logic Program Download Device Fault Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the program download functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a device fault resulting in halted operations. An attacker can send an unauthenticated packet to...

8.6CVSS6.2AI score0.05065EPSS
Exploits1
Talos
Talos
added 2018/03/28 12:0 a.m.46 views

Nvidia D3D10 Driver Pixel Shader Functionality Denial Of Service

Summary An exploitable denial-of-service vulnerability exists in the Nvidia D3D10 Driver 22.21.13.8607. A specially crafted pixel shader can cause a stack overflow exception, resulting in at least denial of service. An attacker can provide a specially crafted shader file either in binary or text...

5.5CVSS6.7AI score0.00411EPSS
Exploits0
Talos
Talos
added 2018/03/28 12:0 a.m.96 views

Allen Bradley Micrologix 1400 Series B Unauthenticated Data/Program/Function File Improper Access Control Vulnerability

Summary An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive...

10CVSS9.6AI score0.38208EPSS
Exploits12
Talos
Talos
added 2018/03/28 12:0 a.m.433 views

Allen Bradley Micrologix 1400 Series B SNMP-Set Processing Incorrect Behavior Order Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the processing of snmp-set commands of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted snmp-set request, when sent without associated firmware flashing snmp-set commands, can cause a device power...

7.5CVSS6.1AI score0.29398EPSS
Exploits1
Talos
Talos
added 2018/03/28 12:0 a.m.1664 views

Allen Bradley Micrologix 1400 Series B Ethernet Card Malformed Packet Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the Ethernet functionality of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted packet can cause a device power cycle resulting in a fault state and deletion of ladder logic. An attacker can send one...

8.6CVSS6.2AI score0.04537EPSS
Exploits1
Talos
Talos
added 2018/03/28 12:0 a.m.90 views

Nvidia D3D10 Driver Pixel Shader Heap Memory Corruption Vulnerability

Summary An exploitable heap memory corruption vulnerability exists in the NVIDIA D3D10 Driver 22.21.13.8607. A specially crafted pixel shader can cause heap memory corruption, resulting in at least denial of service, and potential code execution. An attacker can provide a specially crafted shader...

7.8CVSS8.5AI score0.00396EPSS
Exploits0
Talos
Talos
added 2018/03/15 12:0 a.m.57 views

VMware VNC Lock Count Denial of Service Vulnerability

Summary An exploitable Denial of Service vulnerability exists in the remote management functionality of VMware . A large amount of VNC connections can cause an exception in the server to trigger, resulting in a shutdown of the virtual machine. An attacker can initiate VNC sessions to trigger this...

5.3CVSS5.2AI score0.01654EPSS
Exploits0
Talos
Talos
added 2018/03/01 12:0 a.m.35 views

Simple DirectMedia Layer SDL2_image Image Palette Population Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the BMP image rendering functionality of SDL2image-2.0.2. A specially crafted BMP image can cause a stack overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Tested...

8.8CVSS8.8AI score0.02395EPSS
Exploits0
Talos
Talos
added 2018/03/01 12:0 a.m.36 views

Simple DirectMedia Layer SDL2_image load_xcf_tile_rle Decompression Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2image-2.0.2. A specially crafted XCF image can cause a heap overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Tested...

8.8CVSS8.8AI score0.02395EPSS
Exploits0
Talos
Talos
added 2018/03/01 12:0 a.m.199 views

Dovecot IMAP Server rfc822_parse_domain Information Leak Vulnerability

Summary An exploitable out of bounds read vulnerability exists in the RFC822 parser as implemented in Dovecot IMAP Server 2.2.33.2. A specially crafted email delivered over SMTP and passed on to Dovecot by MTA can trigger an out of bounds read resulting in potential sensitive information disclosu...

7.1CVSS6.6AI score0.17572EPSS
Exploits0
Talos
Talos
added 2018/03/01 12:0 a.m.41 views

Simple DirectMedia Layer SDL2_Image LWZ Decompression Buffer Overflow Vulnerability

Summary A buffer overflow vulnerability exists in the GIF image parsing functionality of SDL2image-2.0.2. A specially crafted GIF image can lead to a buffer overflow on a global section. An attacker can display an image to trigger this vulnerability. Tested Versions Simple DirectMedia Layer...

7.1CVSS7.6AI score0.01583EPSS
Exploits0
Talos
Talos
added 2018/03/01 12:0 a.m.33 views

Simple DirectMedia Layer SDL2_image ICO Pitch Handling Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the ICO image rendering functionality of SDL2image-2.0.2. A specially crafted ICO image can cause an integer overflow, cascading to a heap overflow resulting in code execution. An attacker can display a specially crafted image to trigg...

8.8CVSS8.9AI score0.02677EPSS
Exploits0
Talos
Talos
added 2018/03/01 12:0 a.m.67 views

Simple DirectMedia Layer SDL2_image do_layer_surface Double-Free Vulnerability

Summary A double-Free vulnerability exists in the XCF image rendering functionality of SDL2image-2.0.2. A specially crafted XCF image can cause a Double-Free situation to occur. An attacker can display a specially crafted image to trigger this vulnerability. Tested Versions Simple DirectMedia Lay...

8.8CVSS8.3AI score0.01677EPSS
Exploits0
Talos
Talos
added 2018/03/01 12:0 a.m.38 views

Simple DirectMedia Layer SDL2_image ILBM CMAP Parsing Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2image-2.0.2. A specially crafted ILBM image can cause a stack overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Tested...

8.8CVSS8.8AI score0.02446EPSS
Exploits0
Talos
Talos
added 2018/03/01 12:0 a.m.47 views

Simple DirectMedia Layer SDL2_Image IMG_LoadLBM_RW Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2image-2.0.2. A specially crafted ILBM image can cause a heap overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Tested...

8.8CVSS8.7AI score0.02395EPSS
Exploits0
Talos
Talos
added 2018/02/23 12:0 a.m.63 views

Adobe Acrobat Reader DC Document ID Remote Code Execution Vulnerability

Summary A specific Javascript script embedded in a PDF file can cause the document ID field to be used in an unbounded copy operation leading to stack-based buffer overflow when opening a specially crafted PDF document in Adobe Acrobat Reader DC 2018.009.20044. This stack overflow can lead to...

8.8CVSS9.5AI score0.16805EPSS
Exploits0
Talos
Talos
added 2018/01/29 12:0 a.m.1375 views

coTURN server unsafe telnet admin portal default configuration vulnerability

Summary An exploitable unsafe default configuration vulnerability exists in the TURN server function of coTURN prior to version 4.5.0.9. By default, the TURN server runs an unauthenticated telnet admin portal on the loopback interface. This can provide administrator access to the TURN server...

10CVSS8AI score0.01897EPSS
Exploits0
Talos
Talos
added 2018/01/29 12:0 a.m.53 views

coTURN TURN server unsafe loopback forwarding default configuration vulnerability

Summary An exploitable unsafe default configuration vulnerability exists in the TURN server functionality of coTURN prior to 4.5.0.9. By default, the TURN server allows relaying external traffic to the loopback interface of its own host. This can provide access to other private services running o...

7.7CVSS8.5AI score0.00935EPSS
Exploits0
Talos
Talos
added 2018/01/29 12:0 a.m.535 views

coTURN Administrator Web Portal SQL injection vulnerability

Summary An exploitable SQL injection vulnerability exists in the administrator web portal function of coTURN prior to version 4.5.0.9. A login message with a specially crafted username can cause an SQL injection, resulting in authentication bypass, which could give access to the TURN server...

9.8CVSS9.8AI score0.02955EPSS
Exploits1
Talos
Talos
added 2018/01/26 12:0 a.m.54 views

Walt Disney Per-Face Texture Mapping faceInfoSize Code Execution Vulnerability

Summary An exploitable out of bounds write vulnerability exists in version 2.2 of the Per Face Texture mapping application known as PTEX. The vulnerability is present in the reading of a file without proper parameter checking. The value read in, is not verified to be valid and its use can lead to...

8.8CVSS8.8AI score0.02458EPSS
Exploits1
Total number of security vulnerabilities2218