|
286591
|
9.8 |
CRITICAL
Network
|
xnview
|
xnview
|
XnView 2.03 has a stack-based buffer overflow vulnerability
|
CWE-787
Out-of-bounds Write
|
CVE-2013-3492
|
2024-11-21 10:53 |
2020-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286592
|
9.6 |
CRITICAL
Network
|
irfanview
|
flashpix_plugin
|
IrfanView FlashPix Plugin 4.3.4 0 has an Integer Overflow Vulnerability
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2013-3486
|
2024-11-21 10:53 |
2020-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286593
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
Heap-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted RLE compressed layer in an XCF file.
|
CWE-787
Out-of-bounds Write
|
CVE-2013-3247
|
2024-11-21 10:53 |
2020-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286594
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
Stack-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted image layer in an XCF file.
|
CWE-787
Out-of-bounds Write
|
CVE-2013-3246
|
2024-11-21 10:53 |
2020-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286595
|
8.1 |
HIGH
Network
|
supermicro
citrix
|
smt_x9_firmware
smt_x8_firmware
netscaler_sdx_firmware
netscaler_firmware
netscaler_sd-wan_firmware
|
Intelligent Platform Management Interface (IPMI) with firmware for Supermicro X9 generation motherboards before SMT_X9_317 and firmware for Supermicro X8 generation motherboards before SMT X8 312 con…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2013-3619
|
2024-11-21 10:53 |
2020-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286596
|
10.0 |
CRITICAL
Network
|
grandstream
|
gxv3501_firmware
gxv3504_firmware
gxv3601_firmware
gxv3601hd_firmware
gxv3601ll_firmware
gxv3611hd_firmware
gxv3611ll_firmware
gxv3615w_firmware
gxv3615p_firmware
gxv3651fh…
|
Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WP_HD, GXV3500, and possibly other camera models with firmware 1.0.4.11, have a hardcoded …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2013-3542
|
2024-11-21 10:53 |
2019-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286597
|
7.5 |
HIGH
Network
|
loftek
|
nexus_543_firmware
|
The Loftek Nexus 543 IP Camera allows remote attackers to obtain (1) IP addresses via a request to get_realip.cgi or (2) firmware versions (ui and system), timestamp, serial number, p2p port number, …
|
CWE-200
Information Exposure
|
CVE-2013-3314
|
2024-11-21 10:53 |
2019-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286598
|
7.5 |
HIGH
Network
|
loftek
|
nexus_543_firmware
|
The Loftek Nexus 543 IP Camera stores passwords in cleartext, which allows remote attackers to obtain sensitive information via an HTTP GET request to check_users.cgi. NOTE: cleartext passwords can a…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2013-3313
|
2024-11-21 10:53 |
2019-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286599
|
8.8 |
HIGH
Network
|
loftek
|
nexus_543_firmware
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Loftek Nexus 543 IP Camera allow remote attackers to hijack the authentication of unspecified victims for requests that change (1) pa…
|
CWE-352
Origin Validation Error
|
CVE-2013-3312
|
2024-11-21 10:53 |
2019-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286600
|
7.5 |
HIGH
Network
|
loftek
|
nexus_543_firmware
|
Directory traversal vulnerability in the Loftek Nexus 543 IP Camera allows remote attackers to read arbitrary files via a .. (dot dot) in the URL of an HTTP GET request.
|
CWE-22
Path Traversal
|
CVE-2013-3311
|
2024-11-21 10:53 |
2019-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
