Show filters
235 Total Results
Displaying 51-60 of 235
Sort by:
Attacker Value
Unknown
CVE-2021-26354
Disclosure Date: May 09, 2023 (last updated October 08, 2023)
Insufficient bounds checking in ASP may allow an
attacker to issue a system call from a compromised ABL which may cause
arbitrary memory values to be initialized to zero, potentially leading to a
loss of integrity.
0
Attacker Value
Unknown
CVE-2022-43309
Disclosure Date: April 07, 2023 (last updated October 08, 2023)
Supermicro X11SSL-CF HW Rev 1.01, BMC firmware v1.63 was discovered to contain insecure permissions.
0
Attacker Value
Unknown
CVE-2023-23313
Disclosure Date: March 03, 2023 (last updated October 08, 2023)
Certain Draytek products are vulnerable to Cross Site Scripting (XSS) via the wlogin.cgi script and user_login.cgi script of the router's web application management portal. This affects Vigor3910, Vigor1000B, Vigor2962 v4.3.2.1; Vigor2865 and Vigor2866 v4.4.1.0; Vigor2927 v4.4.2.2; and Vigor2915, Vigor2765, Vigor2766, Vigor2135 v4.4.2.0; Vigor2763 v4.4.2.1; Vigor2862 and Vigor2926 v3.9.9.0; Vigor2925 v3.9.3; Vigor2952 and Vigor3220 v3.9.7.3; Vigor2133 and Vigor2762 v3.9.6.4; and Vigor2832 v3.9.6.2.
0
Attacker Value
Unknown
CVE-2022-32656
Disclosure Date: February 06, 2023 (last updated October 08, 2023)
In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220705035; Issue ID: GN20220705035.
0
Attacker Value
Unknown
CVE-2022-32655
Disclosure Date: February 06, 2023 (last updated October 08, 2023)
In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220705028; Issue ID: GN20220705028.
0
Attacker Value
Unknown
CVE-2022-32654
Disclosure Date: February 06, 2023 (last updated October 08, 2023)
In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220705011; Issue ID: GN20220705011.
0
Attacker Value
Unknown
CVE-2022-48073
Disclosure Date: January 27, 2023 (last updated October 08, 2023)
Phicomm K2G v22.6.3.20 was discovered to store the root and admin passwords in plaintext.
0
Attacker Value
Unknown
CVE-2022-48071
Disclosure Date: January 27, 2023 (last updated October 08, 2023)
Phicomm K2 v22.6.534.263 was discovered to store the root and admin passwords in plaintext.
0
Attacker Value
Unknown
CVE-2022-48070
Disclosure Date: January 27, 2023 (last updated October 08, 2023)
Phicomm K2 v22.6.534.263 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function.
0
Attacker Value
Unknown
CVE-2023-22960
Disclosure Date: January 23, 2023 (last updated October 08, 2023)
Lexmark products through 2023-01-10 have Improper Control of Interaction Frequency.
0
