Test Blog - Cloud WAF

CVE-2024-40417 : TENDA AX1806 1.0.0.1 /GOFORM/SETIPMACBIND FORMSETREBOOTTIMER LIST STACK-BASED OVERFLOW

Description A vulnerability was found in Tenda AX1806 1.0.0.1. Affected by this issue is the function formSetRebootTimer of the file /goform/SetIpMacBind. The manipulation of the…

Common Vulnerabilities and Exposures

CVE-2024-28827 : CHECKMK UP TO 2.0.0P39/2.1.0P44/2.2.0P28/2.3.0P7 ON WINDOWS PERMISSION ASSIGNMENT

Description Incorrect permissions on the Checkmk Windows Agent's data directory in Checkmk < 2.3.0p8, < 2.2.0p29, < 2.1.0p45, and

Common Vulnerabilities and Exposures

CVE-2024-3799 : PHONIEBOX UP TO 2.7 HEADER PARAMETER OS COMMAND INJECTION

Description Insecure handling of POST header parameter body included in requests being sent to an instance of the open-source project Phoniebox allows an attacker to…

Common Vulnerabilities and Exposures

CVE-2024-6422 : PEPPERL+FUCHS OIT1500-F113-B12-CB UP TO 2.11.0 TELNET MISSING AUTHENTICATION

Description An unauthenticated remote attacker can manipulate the device via Telnet, stop processes, read, delete and change data. References https://cert.vde.com/en/advisories/VDE-2024-038 For More Information CVERecord

Common Vulnerabilities and Exposures

CVE-2024-39493 : LINUX KERNEL UP TO 6.9.4 CRYPTO ADF_DEV_RESET_SYNC MEMORY LEAK

Description In the Linux kernel, the following vulnerability has been resolved: crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak Using completion_done to determine whether the caller…

Common Vulnerabilities and Exposures

CVE-2024-6556 : SMARTCRAWL SEO CHECKER, SEO ANALYZER, SEO OPTIMIZER PLUGIN INFORMATION DISCLOSURE

Description The SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and…