Lucene search
K

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•16 views

D-Link DAP-2622 DDP Firmware Upgrade Server IPv6 Address Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS6.9AI score0.00593EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•15 views

D-Link DAP-2622 DDP Reset Factory Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•22 views

D-Link DAP-2622 DDP Set SSID List RADIUS Server Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00637EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•20 views

D-Link DAP-2622 DDP Configuration Backup Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•25 views

D-Link DAP-2622 DDP Get SSID List WPA PSK Information Disclosure Vulnerability

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of...

7.4CVSS6.3AI score0.00675EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•22 views

D-Link DAP-2622 DDP Reboot Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•34 views

Samba Spotlight mdssvc RPC Request Infinite Loop Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Samba. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of Spotlight RPC arguments. Crafted arguments can force the server into ...

5.9CVSS6.6AI score0.62606EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•15 views

D-Link DAP-2622 DDP Set Date-Time NTP Server Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00605EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•20 views

D-Link DAP-2622 DDP Firmware Upgrade Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•33 views

Apple macOS ImageIO EXR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the ImageIO library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the ImageIO...

7.8CVSS7.2AI score0.00282EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•24 views

Apple macOS EXR Image Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the ImageIO framework is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

3.3CVSS6.2AI score0.00247EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•14 views

D-Link DAP-2622 DDP Configuration Restore Filename Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•25 views

D-Link DAP-2622 DDP Configuration Backup Server Address Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•18 views

D-Link DAP-2622 DDP Set IPv6 Address Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00637EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•21 views

D-Link DAP-2622 DDP Set IPv6 Address Primary DNS Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00637EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•21 views

LG LED Assistant upload Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG LED Assistant. Authentication is not required to exploit this vulnerability. The specific flaw exists within the /api/settings/upload endpoint. The issue results from the lack of proper validation...

9.8CVSS7.3AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•19 views

D-Link DAP-2622 DDP Reboot Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•21 views

D-Link DAP-2622 DDP Set IPv6 Address Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00637EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•19 views

D-Link DAP-2622 DDP Set Date-Time Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•29 views

D-Link DAP-2622 DDP Change ID Password New Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•25 views

D-Link DAP-2622 DDP Set AG Profile Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•21 views

D-Link DAP-2622 DDP Set AG Profile Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•26 views

D-Link DAP-2622 DDP Set SSID List PSK Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00872EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•18 views

D-Link DAP-2622 DDP Reset Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•22 views

D-Link DAP-2622 DDP Set Device Info Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00637EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•18 views

D-Link DAP-2622 DDP Set SSID List SSID Name Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00637EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•23 views

D-Link DAP-2622 DDP Firmware Upgrade Filename Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS6.9AI score0.00605EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•21 views

D-Link DAP-2622 DDP User Verification Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•20 views

D-Link DAP-2622 DDP Set AG Profile UUID Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•18 views

D-Link DAP-2622 DDP Set SSID List RADIUS Secret Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00637EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•25 views

D-Link DAP-2622 DDP Set Date-Time Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00872EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•20 views

D-Link DAP-2622 DDP Set IPv6 Address Secondary DNS Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00637EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•24 views

D-Link DAP-2622 DDP Set Wireless Info Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00637EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•16 views

D-Link DAP-2622 DDP Configuration Restore Server IPv6 Address Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.02447EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•15 views

D-Link DAP-2622 DDP Set AG Profile NMS URL Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•27 views

D-Link DAP-2622 DDP Reset Factory Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•26 views

D-Link DAP-2622 Telnet CLI Use of Hardcoded Credentials Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CLI service, which listens on TCP port 23. The server program...

8.8CVSS6.9AI score0.00865EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•16 views

D-Link DAP-2622 DDP Configuration Backup Server IPv6 Address Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•23 views

D-Link DAP-2622 DDP User Verification Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•29 views

D-Link DAP-2622 DDP Set IPv6 Address Default Gateway Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00637EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•33 views

LG LED Assistant updateFile Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG LED Assistant. Authentication is not required to exploit this vulnerability. The specific flaw exists within the /api/download/updateFile endpoint. The issue results from the lack of prope...

7.5CVSS6.1AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•60 views

Samba Spotlight mdssvc RPC Request Type Confusion Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Samba. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of Spotlight RPC arguments. The issue results from the lack of proper validati...

6.5CVSS6.5AI score0.62015EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•21 views

D-Link DAP-2622 DDP Reset Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•24 views

D-Link DAP-2622 DDP Set SSID List Missing Authentication Vulnerability

This vulnerability allows network-adjacent attackers to make unauthorized changes to device configuration on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the...

5.4CVSS6.7AI score0.00335EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/25 12:0 a.m.•17 views

D-Link DAP-2622 DDP Set Device Info Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results from the lack of proper validation ...

8.8CVSS7.3AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/24 12:0 a.m.•26 views

(0Day) Maxon Cinema 4D SKP File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Maxon Cinema 4D. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP...

7.8CVSS6.8AI score0.00378EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2023/08/24 12:0 a.m.•28 views

Microsoft Excel SKP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP...

7.8CVSS6.9AI score0.00841EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/24 12:0 a.m.•25 views

(0Day) LG SuperSign Media Editor getSubFolderList Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG SuperSign Media Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getSubFolderList method. The issue results from the lack of proper...

5.3CVSS6.2AI score0.01615EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2023/08/24 12:0 a.m.•32 views

Avira Free Antivirus Integer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Avira Free Antivirus. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the netprotecti...

7.8CVSS7.4AI score0.00299EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/24 12:0 a.m.•20 views

(0Day) LG Simple Editor mkdir Directory Traversal Arbitrary File Deletion Vulnerability

This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists within the mkdir command implemented in the makeDetailContent method. The issue results from t...

8.2CVSS6.7AI score0.01998EPSS
Exploits0
Total number of security vulnerabilities16763