Monthly Archive: December 2020

dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readPICFrame. Date published : 2020-12-28 https://github.com/dhowden/tag/issues/77

Panasonic Security System WV-S2231L 4.25 allows a denial of service of the admin control panel (which will require a physical reset to restore administrative control) via Randomnum=99AC8CEC6E845B28&mode=1 in a POST request to the cgi-bin/set_factory...

Panasonic Security System WV-S2231L 4.25 has an insecure hard-coded password of lkjhgfdsa (which is just the asdf keyboard row in reverse order). Date published : 2020-12-28 https://github.com/cecada/Panasonic-WV-S2231L/blob/main/README.md https://security.panasonic.com/products_technology/products/wv-s2231l/

An issue was discovered in Zammad before 3.5.1. A REST API call allows an attacker to change Ticket Article data in a way that defeats auditing. Date published : 2020-12-28 https://github.com/zammad/zammad/commit/28944de180a88698509a656f61558bf9d7f810f4 https://zammad.com/en/advisories/zaa-2020-24

An issue was discovered in Zammad before 3.5.1. The default signup Role (for newly created Users) can be a privileged Role, if configured by an admin. This behvaior was unintended. Date published : 2020-12-28...

An issue was discovered in Zammad before 3.5.1. An Agent with Customer permissions in a Group can bypass intended access control on internal Articles via the Ticket detail view. Date published : 2020-12-28 https://github.com/zammad/zammad/commit/cf5a5e396058d4b134dd33d0a62b11c1733c98ab...

FOSCAM FHD X1 1.14.2.4 devices allow attackers (with physical UART access) to login via the ipc.fos~ password. Date published : 2020-12-28 https://github.com/cecada/Foscam-Model-X1-Root-Access

On Tenda AC1200 (Model AC6) 15.03.06.51_multi devices, the default settings for the router speed test contain links to download malware named elive or CNKI E-Learning. Date published : 2020-12-28 https://github.com/cecada/Tenda-AC6-Root-Acces/blob/main/README.md

On Tenda AC1200 (Model AC6) 15.03.06.51_multi devices, admin, support, user, and nobody have a password of 1234. Date published : 2020-12-28 https://github.com/cecada/Tenda-AC6-Root-Acces/blob/main/README.md

A flaw was found in GDM in versions prior to 3.38.2.1. A race condition in the handling of session shutdown makes it possible to bypass the lock screen for a user that has autologin...

An issue was discovered in G-Data before 25.5.9.25 using Symbolic links, it is possible to abuse the infected-file restore mechanism to achieve arbitrary write that leads to elevation of privileges. Date published : 2020-12-28...

In EVPN VxLAN setups in Arista EOS, specific malformed packets can lead to incorrect MAC to IP bindings and as a result packets can be incorrectly forwarded across VLAN boundaries. This can result in...

Dex is a federated OpenID Connect provider written in Go. In Dex before version 2.27.0 there is a critical set of vulnerabilities which impacts users leveraging the SAML connector. The vulnerabilities enables potential signature...

date-and-time is an npm package for manipulating date and time. In date-and-time before version 0.14.2, there a regular expression involved in parsing which can be exploited to to cause a denial of service. This...