Skip to main content
CVE-2023-24099 HIGH POC This Week

TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the username parameter at /formWizardPassword. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow RCE Tew 820Ap Firmware
NVD GitHub
CVSS 3.1
8.8
EPSS
1.0%
CVE-2023-24098 HIGH POC This Week

TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the submit-url parameter at /formSysLog. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow RCE Tew 820Ap Firmware
NVD GitHub
CVSS 3.1
8.8
EPSS
1.0%
CVE-2023-24097 HIGH POC This Week

TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the submit-url parameter at /formPasswordAuth. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow RCE Tew 820Ap Firmware
NVD GitHub
CVSS 3.1
8.8
EPSS
1.0%
CVE-2023-24096 HIGH POC This Week

TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the newpass parameter at /formPasswordSetup. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow RCE Tew 820Ap Firmware
NVD GitHub
CVSS 3.1
8.8
EPSS
1.0%
CVE-2023-24095 HIGH POC This Week

TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the submit-url parameter at /formSystemCheck. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow RCE Tew 820Ap Firmware
NVD GitHub
CVSS 3.1
8.8
EPSS
1.0%
CVE-2023-23314 HIGH POC This Week

An arbitrary file upload vulnerability in the /api/upload component of zdir v3.2.0 allows attackers to execute arbitrary code via a crafted .ssh file. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Path Traversal File Upload Zdir
NVD GitHub
CVSS 3.1
8.8
EPSS
1.2%
CVE-2023-24068 HIGH POC This Week

Signal Desktop before 6.2.0 on Windows, Linux, and macOS allows an attacker to modify conversation attachments within the attachments.noindex directory. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Apple Microsoft Signal Desktop
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2023-22484 HIGH POC This Week

cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Cmark Gfm
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
CVE-2023-22483 HIGH POC This Week

cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Cmark Gfm
NVD GitHub
CVSS 3.1
7.5
EPSS
1.1%
CVE-2023-23824 HIGH This Week

Auth. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Wp Topbar
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-22960 HIGH This Week

Lexmark products through 2023-01-10 have Improper Control of Interaction Frequency. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure B2236 Firmware B2338 Firmware B2442 Firmware B2546 Firmware +124
NVD
CVSS 3.1
7.5
EPSS
27.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy