Kernelsmith

Pesquisador deZero Day Initiative
#8182de 53,622
33.6CVSS total
Vulnerabilidades · 4
Alta
3
Crítica
1
PT-2016-5154
9.9
2016-02-10
Dell · Dell Sonicwall Gms · CVE-2016-2396
**Name of the Vulnerable Software and Affected Versions** Dell SonicWALL GMS, Analyzer, and UMA EM5000 versions 7.2 through 8.1 before Hotfix 168056 **Description** The issue allows remote authenticated users to execute arbitrary commands via vectors related to configuration input. This is related to the GMS ViewPoint web application. **Recommendations** For versions 7.2 through 8.1 before Hotfix 168056, apply Hotfix 168056 to resolve the issue.
PT-2015-6651
7.5
2015-06-24
Panasonic · Panasonic Security Api (Ps-Api) Activex Sdk · CVE-2015-4648
**Name of the Vulnerable Software and Affected Versions** Panasonic Security API (PS-API) ActiveX SDK versions prior to 8.10.18 **Description** The issue is related to a stack-based buffer overflow in the Ipropsapi.ipropsapiCtrl.1 ActiveX control in ipropsapivideo. This occurs when a long string is passed to the `MulticastAddr` method, allowing remote attackers to execute arbitrary code. **Recommendations** For versions prior to 8.10.18, update to version 8.10.18 or later to resolve the issue. As a temporary workaround, consider restricting access to the `MulticastAddr` method in the ipropsapivideo ActiveX control to minimize the risk of exploitation.
PT-2015-6376
9.0
2015-05-15
Dell · Uma Em5000 · CVE-2015-3990
**Name of the Vulnerable Software and Affected Versions** Dell Sonicwall GMS, Analyzer, and UMA EM5000 versions prior to 7.2 SP4 **Description** The issue allows remote authenticated users to execute arbitrary commands, related to configuration vectors in the GMS ViewPoint web application. **Recommendations** For versions prior to 7.2 SP4, update to version 7.2 SP4 or later to resolve the issue.
PT-2015-5331
7.2
2015-02-10
Motorola · Motorola Scanner Sdk · CVE-2015-1496
**Name of the Vulnerable Software and Affected Versions** Motorola Scanner SDK (affected versions not specified) **Description** The issue concerns weak permissions set for certain executable files, including `CoreScanner.exe`, `rsmdriverproviderservice.exe`, and `ScannerService.exe`. This weakness allows local users to gain privileges via unspecified vectors. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.