Riasztások
2024. dec. 3.
Cisco Adaptive Security Appliance WebVPN Login Page Cross-Site Scripting Vulnerability
A vulnerability in the WebVPN login page of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of WebVPN on the Cisco ASA.
The...
The...
2024. dec. 3.
NA - CVE-2018-9441 - In sdp_copy_raw_data of sdp_discovery.cc, there...
In sdp_copy_raw_data of sdp_discovery.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution...
2024. dec. 3.
NA - CVE-2018-9449 - In process_service_search_attr_rsp of...
In process_service_search_attr_rsp of sdp_discovery.cc, there is a possible out of bound read due to a missing bounds check. This could lead to local information disclosure with no additional...
2024. dec. 3.
High - CVE-2024-8748 - A buffer overflow vulnerability in the packet...
A buffer overflow vulnerability in the packet parser of the third-party library "libclinkc" in Zyxel VMG8825-T50K firmware versions through V5.50(ABOM.8.4)C0 could allow an attacker to cause a...
2024. dec. 3.
Medium - CVE-2024-9197 - A post-authentication buffer overflow...
A post-authentication buffer overflow vulnerability in the parameter "action" of the CGI program in Zyxel VMG3625-T50B firmware versions through V5.50(ABPM.9.2)C0 could allow an authenticated...
2024. dec. 3.
High - CVE-2024-9200 - A post-authentication command injection...
A post-authentication command injection vulnerability in the "host" parameter of the diagnostic function in Zyxel VMG4005-B50A firmware versions through V5.15(ABQA.2.2)C0 could allow an...