7.5
CVE-2023-41185 - Unified Automation UaGateway Certificate Parsing Integer Overflow Denial-of-Service Vulnerability
Unified Automation UaGateway Certificate Parsing Integer Overflow Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is not required to exploit this vulnerabili…
8.0
CVE-2023-41184 - TP-Link Tapo C210 ActiveCells Stack-based Buffer Overflow Remote Code Execution Vulnerability
TP-Link Tapo C210 ActiveCells Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Tapo C210 IP cameras. Although authentication is required to exploit this vulnerability,…
8.8
CVE-2023-41183 - NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the impl…
8.8
CVE-2023-41182 - NETGEAR ProSAFE Network Management System ZipUtils Directory Traversal Remote Code Execution Vulner…
NETGEAR ProSAFE Network Management System ZipUtils Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Although authentication is required to exploit thi…
5.3
CVE-2023-41181 - LG SuperSign Media Editor getSubFolderList Directory Traversal Information Disclosure Vulnerability
LG SuperSign Media Editor getSubFolderList Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG SuperSign Media Editor. Authentication is not required to exploit this vulnerability. Th…
7.5
CVE-2023-40517 - LG SuperSign Media Editor ContentRestController getObject Directory Traversal Information Disclosur…
LG SuperSign Media Editor ContentRestController getObject Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG SuperSign Media Editor. Authentication is not required to exploit this vul…
7.8
CVE-2023-40516 - LG Simple Editor Incorrect Permission Assignment Local Privilege Escalation Vulnerability
LG Simple Editor Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of LG Simple Editor. An attacker must first obtain the ability to execute low-privileged code on the target system in…
7.5
CVE-2023-40515 - LG Simple Editor joinAddUser Improper Input Validation Denial-of-Service Vulnerability
LG Simple Editor joinAddUser Improper Input Validation Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw …
6.5
CVE-2023-40514 - LG Simple Editor FileManagerController getImageByFilename Directory Traversal Information Disclosur…
LG Simple Editor FileManagerController getImageByFilename Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Although authentication is required to exploit this vulnera…
6.5
CVE-2023-40513 - LG Simple Editor UserManageController getImageByFilename Directory Traversal Information Disclosure…
LG Simple Editor UserManageController getImageByFilename Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Although authentication is required to exploit this vulnerab…