漏洞 - 第697页-OGeek|极客世界-中国程序员成长平台

OGeek|极客世界-中国程序员成长平台 › 门户 ›漏洞

漏洞

RSS

下级分类:

CVE漏洞

CVE-2021-38537

Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0.48, R6080 before 1.0.0.48, R6120 before 1.0.0.66, R6260 before 1.1.0. ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：15 | 回复：0
CVE漏洞

CVE-2021-38536

Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0.48, R6080 before 1.0.0.48, R6120 before 1.0.0.66, R6260 before 1.1.0. ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：15 | 回复：0
CVE漏洞

CVE-2021-38535

Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0.48, R6080 before 1.0.0.48, R6120 before 1.0.0.76, R6260 before 1.1.0. ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：7 | 回复：0
CVE漏洞

CVE-2021-38534

Certain NETGEAR devices are affected by stored XSS. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, D6100 before 1.0.0.60, D6200 before 1.1.00.36, D6220 before 1.0.0.52, D6400 before 1.0.0. ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：10 | 回复：0
CVE漏洞

CVE-2021-38533

NETGEAR RAX40 devices before 1.0.3.64 are affected by stored XSS.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：11 | 回复：0
CVE漏洞

CVE-2021-38532

NETGEAR WAC104 devices before 1.0.4.15 are affected by incorrect configuration of security settings.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：40 | 回复：0
CVE漏洞

CVE-2021-38531

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0.42, R6080 before 1.0.0.42, R6120 be ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：42 | 回复：0
CVE漏洞

CVE-2021-38530

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK40 before 2.5.1.16, RBR40 before 2.5.1.16, RBS40 before 2.5.1.16, RBK20 before 2.5.1.16, RBR20 ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：36 | 回复：0
CVE漏洞

CVE-2021-38529

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.68, R8900 before 1.0.4.26, and R9000 before 1.0.4.26.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：26 | 回复：0
CVE漏洞

CVE-2021-38528

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D8500 before 1.0.3.58, R6900P before 1.3.2.132, R7000P before 1.3.2.132, R7100LG before 1.0.0.64, ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：29 | 回复：0
CVE漏洞

CVE-2021-38527

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.14, EX6100v2 before 1.0.1.98, EX6150v2 before 1.0.1.98, EX6250 before 1.0.0.13 ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：17 | 回复：0
CVE漏洞

CVE-2021-38526

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects RAX35 before 1.0.3.94, RAX38 before 1.0.3.94, and RAX40 before 1.0.3.94.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：15 | 回复：0
CVE漏洞

CVE-2021-38525

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, D6200 before 1.1.00.36, D7000 before 1.0.1.70 ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：14 | 回复：0
CVE漏洞

CVE-2021-38524

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects MK62 before 1.0.6.110, MR60 before 1.0.6.110, MS60 before 1.0.6.110, RAX15 before 1.0.2.82, ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：17 | 回复：0
CVE漏洞

CVE-2021-38523

NETGEAR R6400 devices before 1.0.1.70 are affected by a stack-based buffer overflow by an authenticated user.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：20 | 回复：0
CVE漏洞

CVE-2021-38522

NETGEAR R6400 devices before 1.0.1.52 are affected by a stack-based buffer overflow by an authenticated user.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：26 | 回复：0
CVE漏洞

CVE-2021-38521

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R6400 before 1.0.1.50, R7900P before 1.4.1.50, R8000P before 1.4.1.50, RAX75 before 1.0.1.62, and RAX80 ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：12 | 回复：0
CVE漏洞

CVE-2021-38520

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R6400 before 1.0.1.52, R6400v2 before 1.0.4.84, R6700v3 before 1.0.4.84, R6700v2 before 1.2.0.62, R6900 ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：39 | 回复：0
CVE漏洞

CVE-2021-38519

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R6250 before 1.0.4.36, R6300v2 before 1.0.4.36, R6400 before 1.0.1.50, R6400v2 before 1.0.2.66, R6700v3 ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：10 | 回复：0
CVE漏洞

CVE-2021-38518

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RAX200 before 1.0.4.120, RAX75 before 1.0.4.120, RAX80 before 1.0.4.120, RBK852 before 3.2.17.12, RBR85 ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：27 | 回复：0
CVE漏洞

CVE-2021-38517

Certain NETGEAR devices are affected by out-of-bounds reads and writes. This affects R6400 before 1.0.1.70, RAX75 before 1.0.4.120, RAX80 before 1.0.4.120, and XR300 before 1.0.3.50.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：14 | 回复：0
CVE漏洞

CVE-2021-38516

Certain NETGEAR devices are affected by lack of access control at the function level. This affects D6220 before 1.0.0.48, D6400 before 1.0.0.82, D7000v2 before 1.0.0.52, D7800 before 1.0.1.44, D8500 b ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：13 | 回复：0
CVE漏洞

CVE-2021-38515

Certain NETGEAR devices are affected by denial of service. This affects R6400v2 before 1.0.4.98, R6700v3 before 1.0.4.98, R7900 before 1.0.3.18, and R8000 before 1.0.4.46.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：11 | 回复：0
CVE漏洞

CVE-2021-38514

Certain NETGEAR devices are affected by authentication bypass. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, D6100 before 1.0.0.63, D6200 before 1.1.00.34, D6220 before 1.0.0.48, D6400 be ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：13 | 回复：0
CVE漏洞

CVE-2021-38513

Certain NETGEAR devices are affected by authentication bypass. This affects RBK852 before 3.2.10.11, RBR850 before 3.2.10.11, RBS850 before 3.2.10.11, CBR40 before 2.5.0.10, EAX20 before 1.0.0.48, MK6 ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：21 | 回复：0
CVE漏洞

CVE-2021-32122

Certain NETGEAR devices are affected by CSRF. This affects EX3700 before 1.0.0.90, EX3800 before 1.0.0.90, EX6120 before 1.0.0.64, and EX6130 before 1.0.0.44.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：25 | 回复：0
CVE漏洞

CVE-2021-38512

An issue was discovered in the actix-http crate before 3.0.0-beta.9 for Rust. HTTP/1 request smuggling (aka HRS) can occur, potentially leading to credential disclosure.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：27 | 回复：0
CVE漏洞

CVE-2021-38511

An issue was discovered in the tar crate before 0.4.36 for Rust. When symlinks are present in a TAR archive, extraction can create arbitrary directories via .. traversal.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：22 | 回复：0
CVE漏洞

CVE-2021-29400

A cross-site request forgery (CSRF) vulnerability in the My SMTP Contact v1.1.1 plugin for GetSimple CMS allows remote attackers to change the SMTP settings of the contact forms for the webpages of th ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：23 | 回复：0
CVE漏洞

CVE-2021-20032

SonicWall Analytics 2.5 On-Prem is vulnerable to Java Debug Wire Protocol (JDWP) interface security misconfiguration vulnerability which potentially leads to Remote Code Execution. This vulnerability ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：24 | 回复：0
CVE漏洞

CVE-2021-38490

Altova MobileTogether Server before 7.3 SP1 allows XML exponential entity expansion, a different vulnerability than CVE-2021-37425.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：19 | 回复：0
CVE漏洞

CVE-2021-37425

Altova MobileTogether Server before 7.3 SP1 allows XXE attacks, such as an InfoSetChanges/Changes attack against /workflowmanagement, or reading mobiletogetherserver.cfg and then reading the certifica ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：15 | 回复：0
CVE漏洞

CVE-2020-21930

A stored cross site scripting (XSS) vulnerability in the web_attr_2 field of Eyoucms v1.4.1 allows authenticated attackers to execute arbitrary web scripts or HTML.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：23 | 回复：0
CVE漏洞

CVE-2020-21929

A stored cross site scripting (XSS) vulnerability in the web_copyright field of Eyoucms v1.4.1 allows authenticated attackers to execute arbitrary web scripts or HTML.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：22 | 回复：0
CVE漏洞

CVE-2020-21697

A heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service (DOS) via a crafted avi file.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：15 | 回复：0
CVE漏洞

CVE-2020-21690

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-20451. Reason: This candidate is a duplicate of CVE-2020-20451. Notes: All CVE users should reference CVE-2020-20451 instead of this ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：18 | 回复：0
CVE漏洞

CVE-2020-21688

A heap-use-after-free in the av_freep function in libavutil/mem.c of FFmpeg 4.2 allows attackers to execute arbitrary code.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：29 | 回复：0
CVE漏洞

CVE-2020-21684

A global buffer overflow in the put_font in genpict2e.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into pict2e format.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：10 | 回复：0
CVE漏洞

CVE-2020-21683

A global buffer overflow in the shade_or_tint_name_after_declare_color in genpstricks.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into pstricks f ...……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：22 | 回复：0
CVE漏洞

CVE-2020-21682

A global buffer overflow in the set_fill component in genge.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into ge format.……

作者：菜鸟教程小白 | 时间：2022-2-5 11:28 | 阅读：23 | 回复：0