:: Deepquest ::

ZMS CMS version 3.2 suffers from multiple client-side cross site scripting vulnerabilities.

CHERRY B.UNLIMITED AES version JD-0400EU-2/01 suffers from insufficient protection of code (firmware) and data (cryptographic key).

This Metasploit module exploits a remote command execution vulnerability in the Barracuda Web Application Firewall firmware versions 8.0.1.008 (2016-03-22) and below by exploiting a vulnerability in the web administration interface. By sending a specially crafted request it’s possible to inject system commands while escalating to root do to relaxed sudo configuration on the local machine.

Logitech K520 keyboards suffer form cryptographic issues and insufficient protection against replay attacks.

Vicon Network Cameras suffer from an authentication bypass vulnerability.

Perixx Computer PERIDUO-710W suffers from insufficient protection of code (firmware) and data (cryptographic key).

WebKit suffers from a memory corruption vulnerability in TypedArray.fill.

Fotoware Fotoweb version 8.0 suffers from a cross site scripting vulnerability.

WebKit suffers from a memory corruption vulnerability in TypedArray.copyWithin.

CHERRY B.UNLIMITED AES version JD-0400EU-2/01 suffers from cryptographic issues and replay attack vulnerabilities.