DragonForce
You must login to view this content
Aggregator
DragonForce
2 months 3 weeks ago
You must login to view this content
cohenido
CVE-2018-14520 | Kirby 2.5.12 HTTP Request cross site scripting (EDB-45068)
2 months 3 weeks ago
A vulnerability was found in Kirby 2.5.12 and classified as critical. Affected by this issue is some unknown functionality of the component HTTP Request Handler. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2018-14520. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2022-36504 | H3C Magic NX18 Plus 100R003 Edit_BasicSSID stack-based overflow
2 months 3 weeks ago
A vulnerability was found in H3C Magic NX18 Plus 100R003. It has been classified as critical. This affects the function Edit_BasicSSID. The manipulation leads to stack-based buffer overflow.
This vulnerability is uniquely identified as CVE-2022-36504. The attack can only be initiated within the local network. There is no exploit available.
vuldb.com
CVE-2022-36508 | H3C Magic NX18 Plus 100R003 SetAPInfoById stack-based overflow
2 months 3 weeks ago
A vulnerability classified as critical was found in H3C Magic NX18 Plus 100R003. Affected by this vulnerability is the function SetAPInfoById. The manipulation leads to stack-based buffer overflow.
This vulnerability is known as CVE-2022-36508. Access to the local network is required for this attack to succeed. There is no exploit available.
vuldb.com
CVE-2022-36509 | H3C H3C GR3200 100R014 DelL2tpLNSList param command injection
2 months 3 weeks ago
A vulnerability, which was classified as critical, has been found in H3C H3C GR3200 100R014. Affected by this issue is the function DelL2tpLNSList. The manipulation of the argument param leads to command injection.
This vulnerability is handled as CVE-2022-36509. The attack needs to be approached within the local network. There is no exploit available.
vuldb.com
CVE-2022-36510 | H3C GR2200 100R014 DelL2tpLNSList param command injection
2 months 3 weeks ago
A vulnerability, which was classified as critical, was found in H3C GR2200 100R014. This affects the function DelL2tpLNSList. The manipulation of the argument param leads to command injection.
This vulnerability is uniquely identified as CVE-2022-36510. The attack can only be done within the local network. There is no exploit available.
vuldb.com
CVE-2022-36511 | H3C GR-1200W 100R006 EditApAdvanceInfo stack-based overflow
2 months 3 weeks ago
A vulnerability has been found in H3C GR-1200W 100R006 and classified as critical. This vulnerability affects the function EditApAdvanceInfo. The manipulation leads to stack-based buffer overflow.
This vulnerability was named CVE-2022-36511. The attack can only be initiated within the local network. There is no exploit available.
vuldb.com
CVE-2022-36513 | H3C GR-1200W 100R006 edditactionlist stack-based overflow
2 months 3 weeks ago
A vulnerability was found in H3C GR-1200W 100R006 and classified as critical. This issue affects the function edditactionlist. The manipulation leads to stack-based buffer overflow.
The identification of this vulnerability is CVE-2022-36513. The attack needs to be done within the local network. There is no exploit available.
vuldb.com
CVE-2022-23689 | Aruba Networks ArubaOS-CX Switches LLDP Service/Management Plane resource consumption (ARUBA-PSA-2022-012)
2 months 3 weeks ago
A vulnerability, which was classified as critical, has been found in Aruba Networks ArubaOS-CX Switches. Affected by this issue is some unknown functionality of the component LLDP Service/Management Plane. The manipulation leads to resource consumption.
This vulnerability is handled as CVE-2022-23689. Access to the local network is required for this attack. There is no exploit available.
vuldb.com
CVE-2022-36659 | xhyve dfbe09b vi_pci_write null pointer dereference
2 months 3 weeks ago
A vulnerability was found in xhyve dfbe09b and classified as problematic. Affected by this issue is the function vi_pci_write. The manipulation leads to null pointer dereference.
This vulnerability is handled as CVE-2022-36659. The attack needs to be approached within the local network. There is no exploit available.
vuldb.com
CVE-2022-36660 | xhyve dfbe09b pci_vtrnd_notify stack-based overflow
2 months 3 weeks ago
A vulnerability was found in xhyve dfbe09b. It has been classified as critical. This affects the function pci_vtrnd_notify. The manipulation leads to stack-based buffer overflow.
This vulnerability is uniquely identified as CVE-2022-36660. The attack can only be done within the local network. There is no exploit available.
vuldb.com
CVE-2022-31414 | D-Link DIR-1960 1.11 HTTP prog.cgi denial of service
2 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in D-Link DIR-1960 1.11. Affected by this issue is some unknown functionality of the file prog.cgi of the component HTTP Handler. The manipulation leads to denial of service.
This vulnerability is handled as CVE-2022-31414. Access to the local network is required for this attack to succeed. There is no exploit available.
vuldb.com
CVE-2022-36587 | Tenda G3 15.11.0.6(7663)_EN_TDE httpd sprintf buffer overflow
2 months 3 weeks ago
A vulnerability was found in Tenda G3 15.11.0.6(7663)_EN_TDE. It has been declared as critical. Affected by this vulnerability is the function sprintf of the component httpd. The manipulation leads to buffer overflow.
This vulnerability is known as CVE-2022-36587. The attack needs to be initiated within the local network. There is no exploit available.
vuldb.com
DragonForce
2 months 3 weeks ago
You must login to view this content
cohenido
DragonForce
2 months 3 weeks ago
You must login to view this content
cohenido
DragonForce
2 months 3 weeks ago
You must login to view this content
cohenido
DragonForce
2 months 3 weeks ago
You must login to view this content
cohenido
Make Your Team Capable with Advanced NHIDR
2 months 3 weeks ago
Are You Leveraging NHIDR Capabilities for Advanced Cybersecurity? Managing Non-Human Identities (NHIs) and Secrets Security is not only a critical factor but also a cornerstone. With cyber threats become increasingly sophisticated, isn’t it time your team upgraded its capabilities with advanced NHIDR? NHIs, the machine identities used in cybersecurity, have a pivotal role in securing […]
The post Make Your Team Capable with Advanced NHIDR appeared first on Entro.
The post Make Your Team Capable with Advanced NHIDR appeared first on Security Boulevard.
Alison Mack
How Safe Are Your Secrets in the Cloud?
2 months 3 weeks ago
Are Your Cloud Secrets as Secure as They Could Be? You’d likely agree that secrets management, particularly for Non-Human Identities (NHIs), is a critical aspect of cybersecurity. But how safe are your secrets stored in the cloud? NHIs, a term synonymous with machine identities, play a pivotal role in securing virtual assets. These are created […]
The post How Safe Are Your Secrets in the Cloud? appeared first on Entro.
The post How Safe Are Your Secrets in the Cloud? appeared first on Security Boulevard.
Alison Mack