Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27585 of 28129

CVE-2017-8835

Posted by Cyberthreat Blog | Jun 5, 2017 | CVE Notifications |

SQL injection exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. An attack vector is the bauth cookie to...

CVE-2017-9436

Posted by Cyberthreat Blog | Jun 5, 2017 | CVE Notifications |

TeamPass before 2.1.27.4 is vulnerable to a SQL injection in users.queries.php.

CVE-2017-8840

Posted by Cyberthreat Blog | Jun 5, 2017 | CVE Notifications |

Debug information disclosure exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. A direct request to...

CVE-2017-8841

Posted by Cyberthreat Blog | Jun 5, 2017 | CVE Notifications |

Arbitrary file deletion exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. The attack methodology is absolute path traversal in...

CVE-2017-9434

Posted by Cyberthreat Blog | Jun 5, 2017 | CVE Notifications |

Crypto++ (aka cryptopp) through 5.6.5 contains an out-of-bounds read vulnerability in zinflate.cpp in the Inflator filter.

Author: Cyberthreat Blog

CVE-2017-8835

CVE-2017-9436

CVE-2017-8840

CVE-2017-8841

CVE-2017-9434