‼ CVE-2023-39222 ‼
📖 Read
via "National Vulnerability Database".
OS command injection vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command that is not intended to be executed from the web interface by sending a specially crafted request. Affected products and versions are as follows: ACERA 1320 firmware ver.01.26 and earlier, ACERA 1310 firmware ver.01.26 and earlier, ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i firmware ver.01.35 and earlier, ACERA 1150w firmware ver.01.35 and earlier, ACERA 1110 firmware ver.01.76 and earlier, ACERA 1020 firmware ver.01.86 and earlier, ACERA 1010 firmware ver.01.86 and earlier, ACERA 950 firmware ver.01.60 and earlier, ACERA 850F firmware ver.01.60 and earlier, ACERA 900 firmware ver.02.54 and earlier, ACERA 850M firmware ver.02.06 and earlier, ACERA 810 firmware ver.03.74 and earlier, and ACERA 800ST firmware ver.07.35 and earlier. They are affected when running in ST(Standalone) mode.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-3654 ‼
📖 Read
via "National Vulnerability Database".
cashIT! - serving solutions. Devices from "PoS/ Dienstleistung, Entwicklung & Vertrieb GmbH" to 03.A06rks 2023.02.37 are affected by a origin bypass via the host header in an HTTP request. This vulnerability can be triggered by an HTTP endpoint exposed to the network.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-33034 ‼
📖 Read
via "National Vulnerability Database".
Memory corruption while parsing the ADSP response command.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-3656 ‼
📖 Read
via "National Vulnerability Database".
cashIT! - serving solutions. Devices from "PoS/ Dienstleistung, Entwicklung & Vertrieb GmbH" to 03.A06rks 2023.02.37 are affected by an unauthenticated remote code execution vulnerability. This vulnerability can be triggered by an HTTP endpoint exposed to the network.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-28539 ‼
📖 Read
via "National Vulnerability Database".
Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-33026 ‼
📖 Read
via "National Vulnerability Database".
Transient DOS in WLAN Firmware while parsing a NAN management frame.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-22384 ‼
📖 Read
via "National Vulnerability Database".
Memory Corruption in VR Service while sending data using Fast Message Queue (FMQ).📖 Read
via "National Vulnerability Database".
‼ CVE-2023-26150 ‼
📖 Read
via "National Vulnerability Database".
Versions of the package asyncua before 0.9.96 are vulnerable to Improper Authentication such that it is possible to access Address Space without encryption and authentication.**Note:**This issue is a result of missing checks for services that require an active session.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-24847 ‼
📖 Read
via "National Vulnerability Database".
Transient DOS in Modem while allocating DSM items.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-24853 ‼
📖 Read
via "National Vulnerability Database".
Memory Corruption in HLOS while registering for key provisioning notify.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-3655 ‼
📖 Read
via "National Vulnerability Database".
cashIT! - serving solutions. Devices from "PoS/ Dienstleistung, Entwicklung & Vertrieb GmbH" to 03.A06rks 2023.02.37 are affected by a dangerous methods, that allows to leak the database (system settings, user accounts,...). This vulnerability can be triggered by an HTTP endpoint exposed to the network.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-24844 ‼
📖 Read
via "National Vulnerability Database".
Memory Corruption in Core while invoking a call to Access Control core library with hardware protected address range.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-21673 ‼
📖 Read
via "National Vulnerability Database".
Improper Access to the VM resource manager can lead to Memory Corruption.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-24849 ‼
📖 Read
via "National Vulnerability Database".
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-33039 ‼
📖 Read
via "National Vulnerability Database".
Memory corruption in Automotive Display while destroying the image handle created using connected display driver.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-28540 ‼
📖 Read
via "National Vulnerability Database".
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-44218 ‼
📖 Read
via "National Vulnerability Database".
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege escalation (LPE) vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-33029 ‼
📖 Read
via "National Vulnerability Database".
Memory corruption in DSP Service during a remote call from HLOS to DSP.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-24855 ‼
📖 Read
via "National Vulnerability Database".
Memory corruption in Modem while processing security related configuration before AS Security Exchange.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-22382 ‼
📖 Read
via "National Vulnerability Database".
Weak configuration in Automotive while VM is processing a listener request from TEE.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-28571 ‼
📖 Read
via "National Vulnerability Database".
Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.📖 Read
via "National Vulnerability Database".