News aggregator

CVE-2018-20353

National Vulnerability Database - Mon, 06/10/2019 - 13:29
An invalid read of 8 bytes due to a use-after-free vulnerability during a "NULL test" in the mg_http_get_proto_data function in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application crash) or remote code execution.
Categories: Security News

CVE-2018-20354

National Vulnerability Database - Mon, 06/10/2019 - 13:29
An invalid read of 8 bytes due to a use-after-free vulnerability during a "return" in the mg_http_get_proto_data function in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application crash) or remote code execution.
Categories: Security News

CVE-2018-20355

National Vulnerability Database - Mon, 06/10/2019 - 13:29
An invalid write of 8 bytes due to a use-after-free vulnerability in the mg_http_free_proto_data_cgi function call in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application crash) or remote code execution.
Categories: Security News

CVE-2018-20356

National Vulnerability Database - Mon, 06/10/2019 - 13:29
An invalid read of 8 bytes due to a use-after-free vulnerability in the mg_http_free_proto_data_cgi function call in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application crash) or remote code execution.
Categories: Security News

CVE-2019-12780

National Vulnerability Database - Mon, 06/10/2019 - 12:29
The Belkin Wemo Enabled Crock-Pot allows command injection in the Wemo UPnP API via the SmartDevURL argument to the SetSmartDevInfo action. A simple POST request to /upnp/control/basicevent1 can allow an attacker to execute commands without authentication.
Categories: Security News

CVE-2019-5243

National Vulnerability Database - Mon, 06/10/2019 - 11:29
There is a Clickjacking vulnerability in Huawei HG255s product. An attacker may trick user to click a link and affect the integrity of a device by exploiting this vulnerability.
Categories: Security News

CVE-2019-12387 (twisted)

National Vulnerability Database - Mon, 06/10/2019 - 08:29
In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF.
Categories: Security News

Vuln: Infomir Ministra TV Platform Multiple Security Vulnerabilities

SecurityFocus Vulnerabilities - Mon, 06/10/2019 - 00:00
Infomir Ministra TV Platform Multiple Security Vulnerabilities
Categories: Security News

CVE-2019-9087

National Vulnerability Database - Fri, 06/07/2019 - 17:29
HotelDruid before v2.3.1 has SQL Injection via the /tab_tariffe.php numtariffa1 parameter.
Categories: Security News

CVE-2019-12504

National Vulnerability Database - Fri, 06/07/2019 - 17:29
Due to unencrypted and unauthenticated data communication, the wireless presenter Inateck WP2002 is prone to keystroke injection attacks. Thus, an attacker is able to send arbitrary keystrokes to a victim's computer system, e.g., to install malware when the target system is unattended. In this way, an attacker can remotely take control over the victim's computer that is operated with an affected receiver of this device.
Categories: Security News

CVE-2019-12505

National Vulnerability Database - Fri, 06/07/2019 - 17:29
Due to unencrypted and unauthenticated data communication, the wireless presenter Inateck WP1001 v1.3C is prone to keystroke injection attacks. Thus, an attacker is able to send arbitrary keystrokes to a victim's computer system, e.g., to install malware when the target system is unattended. In this way, an attacker can remotely take control over the victim's computer that is operated with an affected receiver of this device.
Categories: Security News

CVE-2019-12506

National Vulnerability Database - Fri, 06/07/2019 - 17:29
Due to unencrypted and unauthenticated data communication, the wireless presenter Logitech R700 Laser Presentation Remote R-R0010 is prone to keystroke injection attacks. Thus, an attacker is able to send arbitrary keystrokes to a victim's computer system, e.g., to install malware when the target system is unattended. In this way, an attacker can remotely take control over the victim's computer that is operated with an affected receiver of this device.
Categories: Security News

CVE-2019-3956

National Vulnerability Database - Fri, 06/07/2019 - 17:29
Dameware Remote Mini Control version 12.1.0.34 and prior contains an unauthenticated remote buffer over-read due to the server not properly validating CltDHPubKeyLen during key negotiation, which could crash the application or leak sensitive information.
Categories: Security News

CVE-2019-3957

National Vulnerability Database - Fri, 06/07/2019 - 17:29
Dameware Remote Mini Control version 12.1.0.34 and prior contains an unauthenticated remote buffer over-read due to the server not properly validating RsaSignatureLen during key negotiation, which could crash the application or leak sensitive information.
Categories: Security News

CVE-2019-9084

National Vulnerability Database - Fri, 06/07/2019 - 17:29
In Hoteldruid before 2.3.1, a division by zero was discovered in $num_tabelle in tab_tariffe.php (aka the numtariffa1 parameter) due to the mishandling of non-numeric values, as demonstrated by the /tab_tariffe.php?anno=[YEAR]&numtariffa1=1a URI. It could allow an administrator to conduct remote denial of service (disrupting certain business functions of the product).
Categories: Security News

CVE-2019-9086

National Vulnerability Database - Fri, 06/07/2019 - 17:29
HotelDruid before v2.3.1 has SQL Injection via the /visualizza_tabelle.php anno parameter.
Categories: Security News

CVE-2019-2091

National Vulnerability Database - Fri, 06/07/2019 - 16:29
In GetPermittedAccessibilityServicesForUser of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege, with no additional permissions required. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1. Android ID: A-128599660.
Categories: Security News

CVE-2019-2092

National Vulnerability Database - Fri, 06/07/2019 - 16:29
In isSeparateProfileChallengeAllowed of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege, with no additional permissions required. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-128599668.
Categories: Security News

CVE-2019-2093

National Vulnerability Database - Fri, 06/07/2019 - 16:29
In huff_dec_1D of nlc_dec.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-119292397.
Categories: Security News

CVE-2019-2094

National Vulnerability Database - Fri, 06/07/2019 - 16:29
In parseMPEGCCData of NuPlayerCCDecoder.cpp, there is a possible out of bounds write due to missing bounds checks. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-129068792.
Categories: Security News

Pages