‼ CVE-2021-37384 ‼
📖 Read
via "National Vulnerability Database".
A remote command execution (RCE) vulnerability in the web interface component of Furukawa 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 allows unauthenticated attackers to send arbitrary commands to the device via unspecified vectors.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-38403 ‼
📖 Read
via "National Vulnerability Database".
iperf3 before 3.14 allows peers to cause an integer overflow and heap corruption via a crafted length field.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-37769 ‼
📖 Read
via "National Vulnerability Database".
stress-test master commit e4c878 was discovered to contain a FPE vulnerability via the component combine_inner at /pixman-combine-float.c.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-37266 ‼
📖 Read
via "National Vulnerability Database".
CasaOS is an open-source Personal Cloud system. Unauthenticated attackers can craft arbitrary JWTs and access features that usually require authentication and execute arbitrary commands as `root` on CasaOS instances. This problem was addressed by improving the validation of JWTs in commit `705bf1f`. This patch is part of CasaOS 0.4.4. Users should upgrade to CasaOS 0.4.4. If they can't, they should temporarily restrict access to CasaOS to untrusted users, for instance by not exposing it publicly.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-38404 ‼
📖 Read
via "National Vulnerability Database".
The XPRTLD web application in Veritas InfoScale Operations Manager (VIOM) before 8.0.0.410 allows an authenticated attacker to upload all types of files to the server. An authenticated attacker can then execute the malicious file to perform command execution on the remote server.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-28864 ‼
📖 Read
via "National Vulnerability Database".
Progress Chef Infra Server before 15.7 allows a local attacker to exploit a /var/opt/opscode/local-mode-cache/backup world-readable temporary backup path to access sensitive information, resulting in the disclosure of all indexed node data, because OpenSearch credentials are exposed. (The data typically includes credentials for additional systems.) The attacker must wait for an admin to run the "chef-server-ctl reconfigure" command.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-38405 ‼
📖 Read
via "National Vulnerability Database".
On Crestron 3-Series Control Systems before 1.8001.0187, crafting and sending a specific BACnet packet can cause a crash.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-37461 ‼
📖 Read
via "National Vulnerability Database".
Metersphere is an opensource testing framework. Files uploaded to Metersphere may define a `belongType` value with a relative path like `../../../../` which may cause metersphere to attempt to overwrite an existing file in the defined location or to create a new file. Attackers would be limited to overwriting files that the metersphere process has access to. This issue has been addressed in version 2.10.3. Users are advised to upgrade. There are no known workarounds for this vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-37265 ‼
📖 Read
via "National Vulnerability Database".
CasaOS is an open-source Personal Cloud system. Due to a lack of IP address verification an unauthenticated attackers can execute arbitrary commands as `root` on CasaOS instances. The problem was addressed by improving the detection of client IP addresses in `391dd7f`. This patch is part of CasaOS 0.4.4. Users should upgrade to CasaOS 0.4.4. If they can't, they should temporarily restrict access to CasaOS to untrusted users, for instance by not exposing it publicly.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-37781 ‼
📖 Read
via "National Vulnerability Database".
An issue in the emqx_sn plugin of EMQX v4.3.8 allows attackers to execute a directory traversal via uploading a crafted .txt file.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-37770 ‼
📖 Read
via "National Vulnerability Database".
faust commit ee39a19 was discovered to contain a stack overflow via the component boxppShared::print() at /boxes/ppbox.cpp.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-34142 ‼
📖 Read
via "National Vulnerability Database".
Cleartext Transmission of Sensitive Information vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Server, Device Manager Agent, Host Data Collector components) allows Interception.This issue affects Hitachi Device Manager: before 8.8.5-02.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-3709 ‼
📖 Read
via "National Vulnerability Database".
The Royal Elementor Addons plugin for WordPress is vulnerable to unauthenticated API key disclosure in versions up to, and including, 1.3.70 due to the plugin adding the API key to the source code of any page running the MailChimp block. This makes it possible for unauthenticated attackers to obtain a site's MailChimp API key. We recommend resetting any MailChimp API keys if running a vulnerable version of this plugin with the MailChimp block enabled as the API key may have been compromised.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-38431 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/connection.c in ksmbd does not validate the relationship between the NetBIOS header's length field and the SMB header sizes, via pdu_size in ksmbd_conn_handler_loop, leading to an out-of-bounds read.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-38428 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not properly check the UserName value because it does not consider the address of security buffer, leading to an out-of-bounds read.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-43072 ‼
📖 Read
via "National Vulnerability Database".
A buffer copy without checking size of input ('classic buffer overflow') in Fortinet FortiAnalyzer version 7.0.2 and below, version 6.4.7 and below, version 6.2.9 and below, version 6.0.11 and below, version 5.6.11 and below, FortiManager version 7.0.2 and below, version 6.4.7 and below, version 6.2.9 and below, version 6.0.11 and below, version 5.6.11 and below, FortiOS version 7.0.0 through 7.0.4, 6.4.0 through 6.4.8, 6.2.0 through 6.2.10, 6.0.x and FortiProxy version 7.0.0 through 7.0.3, 2.0.0 through 2.0.8, 1.2.x, 1.1.x and 1.0.x allows attacker to execute unauthorized code or commands via crafted CLI `execute restore image` and `execute certificate remote` operations with the tFTP protocol.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4146 ‼
📖 Read
via "National Vulnerability Database".
Expression Language Injection vulnerability in Hitachi Replication Manager on Windows, Linux, Solaris allows Code Injection.This issue affects Hitachi Replication Manager: before 8.8.5-02.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-3714 ‼
📖 Read
via "National Vulnerability Database".
The ProfileGrid plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'edit_group' handler in versions up to, and including, 5.5.2. This makes it possible for authenticated attackers, with group ownership, to update group options, including the 'associate_role' parameter, which defines the member's role. This issue was partially patched in version 5.5.2 preventing privilege escalation, however, it was fully patched in 5.5.3.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-38430 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in the Linux kernel before 6.3.9. ksmbd does not validate the SMB request protocol ID, leading to an out-of-bounds read.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-3713 ‼
📖 Read
via "National Vulnerability Database".
The ProfileGrid plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'profile_magic_check_smtp_connection' function in versions up to, and including, 5.5.1. This makes it possible for authenticated attackers, with subscriber-level permissions or above to update the site options arbitrarily. This can be used by attackers to achieve privilege escalation.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-34143 ‼
📖 Read
via "National Vulnerability Database".
Improper Validation of Certificate with Host Mismatch vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Server, Device Manager Agent, Host Data Collector components) allows Man in the Middle Attack.This issue affects Hitachi Device Manager: before 8.8.5-02.📖 Read
via "National Vulnerability Database".