VU#434994: Multiple race conditions due to TOCTOU flaws in various UEFI Implementations on 08/11/2022 at 5:02 pm
Overview Multiple Unified Extensible Firmware Interface (UEFI) implementations are vulnerable to code execution in System Management Mode (SMM) by an attacker who gains administrative privileges on the local machine. An attacker can corrupt the memory using Direct Memory Access (DMA) timing attacks that can lead to code execution. These threats are collectively referred to as […]
VU#709991: Netatalk contains multiple error and memory management vulnerabilities on 16/11/2022 at 1:28 pm
Overview There are six new vulnerabilities in the latest release of Netatalk (3.1.12) that could allow for Remote Code Execution as well as Out-of-bounds Read. Description Below are the new CVEs. Per ZDI: CVE-2022-0194 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this […]
VU#986018: New Netcomm router models NF20MESH, NF20, and NL1902 vulnerabilities on 17/01/2023 at 5:40 pm
Overview Netcomm router models NF20MESH, NF20, and NL1902 running software versions earlier than R6B035 contain two vulnerabilities. The first is an authentication bypass vulnerability that allows an unauthenticated user to access content from both inside and outside the network. The second is a stack-based buffer overflow that allows an instruction pointer to be overwritten on […]
VU#572615: Vulnerabilities in TP-Link routers, WR710N-V1-151022 and Archer C5 V2 on 17/01/2023 at 5:41 pm
Overview TP-Link router WR710N-V1-151022 running firmware published 2015-10-22 and Archer-C5-V2-160201 running firmware published 2016-02-01 are susceptible to two vulnerabilities: A buffer overflow during HTTP Basic Authentication allowing a remote attacker to corrupt memory allocated on a heap causing denial of service or arbitrary code execution; A side-channel attack via a strcmp() function in the HTTP […]