Ricoh Company, Ltd. Security Vulnerabilities
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in PORTY Smart Tech Technology Joint Stock Company PowerBank Application allows Retrieve Embedded Sensitive Data.This issue affects PowerBank Application: before...
7.5CVSS
6.8AI Score
0.001EPSS
In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_tcam: Fix incorrect list API usage Both the function that migrates all the chunks within a region and the function that migrates all the entries within a chunk call list_first_entry() on the respective lists...
6.4AI Score
0.0004EPSS
CVE-2023-33063 Use After Free in DSP Services
Memory corruption in DSP Services during a remote call from HLOS to...
7.8CVSS
7.4AI Score
0.001EPSS
CVE-2023-33106 Use of Out-of-range Pointer Offset in Graphics
Memory corruption while submitting a large list of sync points in an AUX command to the...
8.4CVSS
8.8AI Score
0.001EPSS
apko Exposure of HTTP basic auth credentials in log output
Summary Exposure of HTTP basic auth credentials from repository and keyring URLs in log output Details There was a handful of instances where the apko tool was outputting error messages and log entries where HTTP basic authentication credentials were exposed for one of two reasons: The%s verb was.....
7.5CVSS
6.9AI Score
0.0004EPSS
The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was found that snapctl did not properly parse command-line arguments, allowing an unprivileged user to trigger an authorised action on behalf of.....
6.8AI Score
0.0004EPSS
ELECOM wireless LAN routers contain a cross-site scripting vulnerability. Assume that a malicious administrative user configures the affected product with specially crafted content. When another administrative user logs in and operates the product, an arbitrary script may be executed on the web...
6.1AI Score
0.0004EPSS
An issue in Quanxun Huiju Network Technology(Beijing) Co.,Ltd IK-Q3000 3.7.10 x64 Build202401261655 allows attackers to cause a Denial of Service (DoS) when attempting to make TCP...
6.5AI Score
EPSS
An issue in Quanxun Huiju Network Technology(Beijing) Co.,Ltd IK-Q3000 3.7.10 x64 Build202401261655 allows attackers to cause a Denial of Service (DoS) when attempting to make TCP...
7AI Score
EPSS
CVE-2023-33027 Buffer Over-read in WLAN Firmware
Transient DOS in WLAN Firmware while parsing rsn...
7.5CVSS
8.2AI Score
0.0004EPSS
CVE-2023-24847 NULL pointer Dereference in Modem
Transient DOS in Modem while allocating DSM...
7.5CVSS
7.7AI Score
0.0005EPSS
7.5CVSS
7.5AI Score
0.0004EPSS
CVE-2023-33026 Buffer over-read in WLAN Firmware
Transient DOS in WLAN Firmware while parsing a NAN management...
7.5CVSS
6.9AI Score
0.0004EPSS
A vulnerability classified as critical has been found in Shenzhen Youkate Industrial Facial Love Cloud Payment System up to 1.0.55.0.0.1. This affects an unknown part of the file /SystemMng.ashx of the component Account Handler. The manipulation of the argument operatorRole with the input 00 leads....
9.8CVSS
9.5AI Score
0.001EPSS
An issue in Quanxun Huiju Network Technology(Beijing) Co.,Ltd IK-Q3000 3.7.10 x64 Build202401261655 allows attackers to cause a Denial of Service (DoS) when attempting to make TCP...
6.5AI Score
EPSS
Cross-site request forgery (CSRF) vulnerability in ELECOM wireless LAN routers and wireless LAN repeater allows a remote unauthenticated attacker to hijack the authentication of administrators and to perform unintended operations to the affected product. Note that WMC-X1800GST-B and WSC-X1800GS-B.....
7.1AI Score
0.0004EPSS
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent attacker with an administrative privilege to execute arbitrary OS commands by sending a specially crafted request to the product. Note that WMC-X1800GST-B is also included in e-Mesh Starter Kit...
7.8AI Score
0.0004EPSS
Memory corruption in FM Host due to buffer copy without checking the size of input in FM...
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in modem due to improper input validation while handling the incoming CoAP...
9.8CVSS
9.5AI Score
0.001EPSS
CVE-2022-33278 Buffer copy without checking the size of input in HLOS
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer...
7.8CVSS
7.2AI Score
0.0004EPSS
CVE-2022-25732 Buffer Over-read in MODEM
Information disclosure in modem due to buffer over read in dns client due to missing length...
8.2CVSS
8.3AI Score
0.001EPSS
CVE-2022-25739 Null Point Dereference in MODEM
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM...
7.5CVSS
7.7AI Score
0.001EPSS
CVE-2022-25739 Null Point Dereference in MODEM
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM...
7.5CVSS
6.8AI Score
0.001EPSS
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the...
9.8CVSS
9.6AI Score
0.001EPSS
CVE-2022-25740 Buffer Copy Without Checking Size of Input in MODEM
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the...
9.8CVSS
9.9AI Score
0.001EPSS
Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed...
8.2CVSS
7.4AI Score
0.001EPSS
CVE-2022-33291 Buffer over-read in Modem
Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed...
8.2CVSS
8.3AI Score
0.001EPSS
CVE-2022-33291 Buffer over-read in Modem
Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed...
8.2CVSS
7AI Score
0.001EPSS
CVE-2022-33279 Stack based buffer overflow in WLAN
Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame...
9.8CVSS
7.6AI Score
0.002EPSS
In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash The rehash delayed work migrates filters from one region to another. This is done by iterating over all chunks (all the filters with the same priority) in the region and in...
6.7AI Score
0.0004EPSS
7.8CVSS
0.001EPSS
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in PORTY Smart Tech Technology Joint Stock Company PowerBank Application allows Retrieve Embedded Sensitive Data.This issue affects PowerBank Application: before...
7.5CVSS
6.9AI Score
0.001EPSS
A vulnerability classified as critical has been found in Shenzhen Youkate Industrial Facial Love Cloud Payment System up to 1.0.55.0.0.1. This affects an unknown part of the file /SystemMng.ashx of the component Account Handler. The manipulation of the argument operatorRole with the input 00 leads....
9.8CVSS
0.001EPSS
CVE-2022-33230 Buffer copy without checking the size of input in FM Host
Memory corruption in FM Host due to buffer copy without checking the size of input in FM...
6.7CVSS
8.1AI Score
0.0004EPSS
CVE-2022-33230 Buffer copy without checking the size of input in FM Host
Memory corruption in FM Host due to buffer copy without checking the size of input in FM...
6.7CVSS
7.2AI Score
0.0004EPSS
CVE-2022-25745 Always Incorrect Control Flow Implementation in MODEM
Memory corruption in modem due to improper input validation while handling the incoming CoAP...
9.8CVSS
9.8AI Score
0.001EPSS
CVE-2022-25745 Always Incorrect Control Flow Implementation in MODEM
Memory corruption in modem due to improper input validation while handling the incoming CoAP...
9.8CVSS
7.1AI Score
0.001EPSS
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection...
9.3CVSS
9AI Score
0.0004EPSS
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer...
7.8CVSS
7.8AI Score
0.0004EPSS
CVE-2022-25728 Buffer Over-read in MODEM
Information disclosure in modem due to buffer over-read while processing response from DNS...
8.2CVSS
7AI Score
0.001EPSS
CVE-2022-33279 Stack based buffer overflow in WLAN
Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame...
9.8CVSS
10AI Score
0.002EPSS
Information disclosure in modem due to buffer over read in dns client due to missing length...
8.2CVSS
7.4AI Score
0.001EPSS
7.3AI Score
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM...
7.5CVSS
7.4AI Score
0.001EPSS
memory corruption in modem due to improper check while calculating size of serialized CoAP...
9.8CVSS
9.5AI Score
0.001EPSS
CVE-2022-33211 Improper Input Validation in MODEM
memory corruption in modem due to improper check while calculating size of serialized CoAP...
9.8CVSS
9.8AI Score
0.001EPSS
CVE-2022-33211 Improper Input Validation in MODEM
memory corruption in modem due to improper check while calculating size of serialized CoAP...
9.8CVSS
7.1AI Score
0.001EPSS
CVE-2022-33288 Buffer copy without checking the size of input in Core
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection...
9.3CVSS
7.4AI Score
0.0004EPSS
CVE-2022-33278 Buffer copy without checking the size of input in HLOS
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer...
7.8CVSS
8.1AI Score
0.0004EPSS