An issue in the component global.so of Totolink A830R V4.1.2cu.5182 allows attackers to bypass authentication via a crafted cookie.Read More ...
Continue ReadingJanuary 27, 2023
Totolink A830R V4.1.2cu.5182 was discovered to contain a command injection vulnerability via the QUERY_STRING parameter.Read More ...
Continue ReadingJanuary 27, 2023
An information disclosure vulnerability in Totolink A830R V4.1.2cu.5182 allows attackers to obtain the root password via a brute-force attack.Read More ...
Continue ReadingJanuary 27, 2023
Phicomm K2 v22.6.534.263 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function.Read More ...
Continue ReadingJanuary 27, 2023
Razer Synapse before 3.7.0830.081906 allows privilege escalation due to an unsafe installation path, improper privilege management, and improper certificate validation. Attackers can place malicious D ...
Continue ReadingJanuary 27, 2023
## Overview[]() Object Graph Notation Language (OGNL) is a popular, Java-based, expression language used in popular frameworks and applications, such as Apache Struts and Atlassian Confluence. In the ...
Continue ReadingJanuary 27, 2023
![Threat Round up for January 20 to January 27](https://blog.talosintelligence.com/content/images/2023/01/threat-roundup-2.jpg) Today, Talos is publishing a glimpse into the most prevalent threats we' ...
Continue ReadingJanuary 27, 2023
An issue was discovered in NetScout nGeniusONE 6.3.2 build 904. Open Redirection can occur (issue 1 of 2). After successful login, an attacker must visit the vulnerable parameter and inject a crafted ...
Continue ReadingJanuary 27, 2023
Back to Main