Show filters
13 Total Results
Displaying 1-10 of 13
Sort by:
Attacker Value
Unknown
CVE-2024-7699
Disclosure Date: September 10, 2024 (last updated September 28, 2024)
An low privileged remote attacker can execute OS commands with root privileges due to improper neutralization of special elements in user data.
0
Attacker Value
Unknown
CVE-2024-7698
Disclosure Date: September 10, 2024 (last updated September 28, 2024)
A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks.
0
Attacker Value
Unknown
CVE-2024-43393
Disclosure Date: September 10, 2024 (last updated October 01, 2024)
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP FW_RULESETS.FROM_IP FW_RULESETS.IN_IP environment variable which can lead to a DoS.
0
Attacker Value
Unknown
CVE-2024-43392
Disclosure Date: September 10, 2024 (last updated October 01, 2024)
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP environment variable which can lead to a DoS.
0
Attacker Value
Unknown
CVE-2024-43391
Disclosure Date: September 10, 2024 (last updated October 01, 2024)
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SRC_IP environment variable which can lead to a DoS.
0
Attacker Value
Unknown
CVE-2024-43390
Disclosure Date: September 10, 2024 (last updated October 01, 2024)
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.
0
Attacker Value
Unknown
CVE-2024-43389
Disclosure Date: September 10, 2024 (last updated October 01, 2024)
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.
0
Attacker Value
Unknown
CVE-2024-43388
Disclosure Date: September 10, 2024 (last updated September 28, 2024)
A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation.
0
Attacker Value
Unknown
CVE-2024-43387
Disclosure Date: September 10, 2024 (last updated September 28, 2024)
A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices.
0
Attacker Value
Unknown
CVE-2024-43386
Disclosure Date: September 10, 2024 (last updated September 28, 2024)
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices.
0
