Tenda versions D151 and D301 configuration downloading exploit.
8d28e121fdd0868219658db48e414798Novel Boutique House-plus version 3.5.1 suffers from an arbitrary file download vulnerability.
42bb6ab8fbb22d1d6e432d8387e96e18KZTech/JatonTec/Neotel JT3500V 4G LTE CPE version 2.0.1 has an unprotected web management server that is vulnerable to sensitive information disclosure vulnerability. An unauthenticated attacker can visit the syslog page and disclose the webserver's log file containing system information running on the device.
5355e78b600626554654f401bfe4118dSonLogger version 4.2.3.3 suffers from SuperAdmin account creation and information disclosure vulnerabilities.
8806dd400e250abdca315cbc2505eb7bBig IP's Traffic Management Microkernels (TMM) URI normalization incorrectly handles invalid IPv6 hostnames allowing for information disclosure and an out-of-bounds write condition.
7bbc96ec1d50a3a238d0764ad16101eaUbuntu Security Notice 4731-1 - It was discovered that JUnit 4 contains a local information disclosure vulnerability. An attacker could possibly use this issue to obtain sensitive information.
3c3186cd3a91fda92432153a933f95e3Adobe Connect 10 suffers from a username disclosure vulnerability.
add7448a8915d80f854151b37328dd26An integer overflow and several buffer overflow reads in libyara/modules/macho/macho.c in YARA version 4.0.3 and earlier could allow an attacker to either cause denial of service or information disclosure via a malicious Mach-O file.
ad1922b02eb705629273a6b67632f508Roundcube Webmail version 1.2 suffers from a file disclosure vulnerability.
54dd50b15366a62edb0ed7b4f25ca1e9MyBB Hide Thread Content plugin version 1.0 suffers from an information leakage vulnerability.
5ea0716da4a40b02a22d5f6e4ac35f6eGentoo Linux Security Advisory 202101-34 - Multiple vulnerabilities have been found in Telegram, the worst of which could result in information disclosure. Versions less than 2.4.4 are affected.
b528aeeef58fa9d36d3991812015cde3FiberHome HG6245D routers suffer from bypass, hard-coded credentials, password disclosure, privilege escalation, denial of service, remote stack overflow, and additional vulnerabilities. suffers from bypass, cross site scripting, denial of service, and privilege escalation vulnerabilities.
64f5abcb1d25b607eec98356b1ed6c6ePortableKanban version 4.3.6578.38136 suffers from a credential disclosure vulnerability via reverse engineering the executable.
2bf183ac639c4ae1d677e32c674e60c6iBall-Baton WRA150N Rom-0 backup suffers from a file disclosure vulnerability.
2a520518522c61411cd4451764df21a9The NVIDIA graphics driver suffers from information disclosure and code execution vulnerabilities. Affected builds include 460.79, 460.89, 457.71, 457.30, 457.09, and 456.71.
8740170952bbbe2a3eb445c421cda3cdRock RMS suffers from arbitrary file upload, account takeover, and personal information disclosure vulnerabilities. Various versions are affected.
496349ae2fd93f703a324dcbbd378676URVE Software build version 24.03.2020 suffers from an information disclosure vulnerability that leaks passwords.
67a93118486c77b8f926ea8fde0d4842Gentoo Linux Security Advisory 202012-18 - An information disclosure vulnerability in PowerDNS allow remote attackers to obtain sensitive information. Versions less than 4.3.1 are affected.
c3f0b4988dbd837f82232d976e921338Gentoo Linux Security Advisory 202012-14 - Multiple vulnerabilities have been found in cURL, the worst of which could result in information disclosure or data loss. Versions less than 7.74.0 are affected.
e0d48e75aa862e7052b77e85c1692402WordPress Total Upkeep plugin version 1.14.9 suffers from a backup disclosure vulnerability.
e6b99caa5afc117cd93a02bf8dcd2e78A session token vulnerability has been discovered in VestaCP version 0.9.8-26. The vulnerability allows remote attackers to gain unauthenticated or unauthorized access by client-side token manipulation.
1ea034ed120e284dbcab37d365cf86efSony BRAVIA Digital Signage versions 1.7.8 and below are vulnerable to a sensitive information disclosure vulnerability. An unauthenticated attacker can visit several API endpoints and disclose information running on the device.
d5e3f98a3416a94cb0997c3b35929711Mitel CS018 suffers from a call data information disclosure vulnerability.
cbc6f66b4b0d172a3c73e1c79aa25664ATX MiniCMTS200a Broadband Gateway version 2.0 suffers from a credential disclosure vulnerability.
8538f90b6cc32b5b3097e0b5ed8b0d23M/Monit version 3.7.4 suffers from a password disclosure vulnerability.
87650ececf79737f062ed7b60d0c8f27
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed