![]() ![]() Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName.Ĭertain WithSecure products allow a Denial of Service because there is an unpack handler crash that can lead to a scanning engine crash. ![]() Tenda AX9 V22.03.01.46 was discovered to contain a SQL command injection vulnerability in the 'setDeviceInfo' feature through the 'mac' parameter at /goform/setModules. Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName. ZED containers produced by PRIMX ZED! for Windows before Q.2020.3 (ANSSI qualification submission) ZED! for Windows before Q.2021.2 (ANSSI qualification submission) ZONECENTRAL for Windows before Q.2021.2 (ANSSI qualification submission) ZONECENTRAL for Windows before 2023.5 ZEDMAIL for Windows before 2023.5 ZED! for Windows, Mac, Linux before 2023.5 ZEDFREE for Windows, Mac, Linux before 2023.5 or ZEDPRO for Windows, Mac, Linux before 2023.5 can be modified by an unauthenticated attacker to include a UNC reference so that it could trigger network access to an attacker-controlled computer when opened by the victim. ![]() ZED containers produced by PRIMX ZED! for Windows before Q.2020.3 (ANSSI qualification submission) ZED! for Windows before Q.2021.2 (ANSSI qualification submission) ZONECENTRAL for Windows before Q.2021.2 (ANSSI qualification submission) ZONECENTRAL for Windows before 2023.5 ZEDMAIL for Windows before 2023.5 and ZED! for Windows, Mac, Linux before 2023.5 include an encrypted version of sensitive user information, which could allow an unauthenticated attacker to obtain it via brute force. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |