CVEProject/cvelist

GitHub

github.com

Releases1

Frequency

Last Release about 7 years ago

Stars1.49K

Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-44467 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	5.3 MEDIUM	—
A broken access control vulnerability in the KillDupUsr_func function of spx_restservice allows an attacker to arbitrarily terminate active sessions of other users, causing a Denial-of-Service (DoS) condition, if an input parameter is correctly guessed. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2021-46279 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	5.8 MEDIUM	—
Session fixation and insufficient session expiration vulnerabilities allow an attacker to perfom session hijacking attacks against users. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2021-45925 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	5.3 MEDIUM	—
Observable discrepancies in the login process allow an attacker to guess legitimate user names registered in the BMC. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2021-44776 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	6.5 MEDIUM	—
A broken access control vulnerability in the SubNet_handler_func function of spx_restservice allows an attacker to arbitrarily change the security access rights to KVM and Virtual Media functionalities. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2021-44769 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	4.9 MEDIUM	—
An improper input validation vulnerability in the TLS certificate generation function allows an attacker to cause a Denial-of-Service (DoS) condition which can only be reverted via a factory reset. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2021-26730 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	10 CRITICAL	—
A stack-based buffer overflow vulnerability in a subfunction of the Login_handler_func function of spx_restservice allows an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2021-26731 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	9.1 CRITICAL	—
Command injection and multiple stack-based buffer overflows vulnerabilities in the modifyUserb_func function of spx_restservice allow an authenticated attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2021-26732 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	6.5 MEDIUM	—
A broken access control vulnerability in the First_network_func function of spx_restservice allows an attacker to arbitrarily change the network configuration of the BMC. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2021-26733 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	5.3 MEDIUM	—
A broken access control vulnerability in the FirstReset_handler_func function of spx_restservice allows an attacker to arbitrarily send reboot commands to the BMC, causing a Denial-of-Service (DoS) condition. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2021-26729 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	10 CRITICAL	—
Command injection and multiple stack-based buffer overflows vulnerabilities in the Login_handler_func function of spx_restservice allow an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2021-26728 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	10 CRITICAL	—
Command injection and stack-based buffer overflow vulnerabilities in the KillDupUsr_func function of spx_restservice allow an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2021-26727 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	10 CRITICAL	—
Multiple command injections and stack-based buffer overflows vulnerabilities in the SubNet_handler_func function of spx_restservice allow an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
CVE-2020-26200 ↗	Feb 26, 2021Friday, 26 February 2021, 14:15	6.8 MEDIUM	4.6 MEDIUM
A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. This component is incorporated in Kaspersky Rescue Disk (KRD) and was trusted by the Authentication Agent of Full Disk Encryption in Kaspersky Endpoint Security (KES). This issue allowed to bypass the UEFI Secure Boot security feature. An attacker would need physical access to the computer to exploit it. Otherwise, local administrator privileges would be required to modify the boot loader component.
CVE-2019-11037 ↗	May 3, 2019Friday, 3 May 2019, 20:29	—	7.5 HIGH
In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing to an array of values in ImagickKernel::fromMatrix() function did not check that the address will be within the allocated array. This could lead to out of bounds write to memory if the function is called with the data controlled by untrusted party.
CVE-2014-5455 ↗	Aug 25, 2014Monday, 25 August 2014, 16:55	—	6.9 MEDIUM
Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel version 3.0 (Windows) and OpenVPN Connect version 3.1 (Windows) allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder.