SSD Advisory – IP-Board Stored XSS to RCE Chain
Find out how an XSS in IP-Board can be leveraged into an remote code execution.
Remote Code Execution
SSD Advisory – aaPanel CSWH to RCE
Find out how a CSWH hijacking vulnerability in aaPanel allows remote attackers to cause an authenticated user to execute arbitrary commands inside aaPanel’s managed servers.
SSD Advisory – Ivanti Avalanche Directory Traversal
Find out how a directory traversal vulnerability in Ivanti Avalanche allows remote unauthenticated user to access files that reside outside the ‘image’ folder.
SSD Advisory – VoIPmonitor UnAuth RCE
Find out how a vulnerability in VoIPmonitor allows an unauthenticated attacker to execute arbitrary code.
SSD Advisory – TG8 Firewall PreAuth RCE and Password Disclosure
TL;DR Find out how vulnerabilities in TG8 Firewall allows remote unauthenticated users to execute arbitrary code on the remote device as well as disclose the passwords of existing accounts. Vulnerability Summary Two security vulnerabilities in TG8 Firewall have been found allowing a remote user to execute commands as root user without needing to authenticate with …
SSD Advisory – TG8 Firewall PreAuth RCE and Password Disclosure Read More »
SSD Advisory – NETGEAR Nighthawk R7000 httpd PreAuth RCE
TL;DR Find out how a vulnerability in NETGEAR R7000 allows an attacker to run arbitrary code without requiring authentication with the device. Vulnerability Summary A vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7000 routers. Authentication is not required to exploit this vulnerability. The vulnerability exists within the handling of …
SSD Advisory – NETGEAR Nighthawk R7000 httpd PreAuth RCE Read More »
SSD Advisory – Hongdian H8922 Multiple Vulnerabilities
TL;DR Find out how multiple vulnerabilities in Hongdian H8922 allow an attacker to run arbitrary commands on the device with root privileges as well as access the device with root privileges via a backdoor account. Vulnerability Summary The H8922 “4G industrial router is based on 3G/4G wireless network and adopts a high-performance 32-bit embedded operating …
SSD Advisory – Hongdian H8922 Multiple Vulnerabilities Read More »
SSD Advisory – OverlayFS PE
TL;DR Find out how a vulnerability in OverlayFS allows local users under Ubuntu to gain root privileges. Vulnerability Summary An Ubuntu specific issue in the overlayfs file system in the Linux kernel where it did not properly validate the application of file system capabilities with respect to user namespaces. A local attacker could use this …
SSD Advisory – QNAP Pre-Auth CGI_Find_Parameter RCE
TL;DR Find out how a memory corruption vulnerability can lead to a pre-auth remote code execution on QNAP QTS’s Surveillance Station plugin. Vulnerability Summary QNAP NAS with “Surveillance Station Local Display function can perform monitoring and playback by using an HDMI display to deliver live Full HD (1920×1080) video monitoring”. Insecure use of user supplied …
SSD Advisory – QNAP Pre-Auth CGI_Find_Parameter RCE Read More »
SSD Advisory – DD-WRT UPNP Buffer Overflow
TL;DR Find out how a vulnerability in DD-WRT allows an unauthenticated attacker to overflow an internal buffer used by UPNP and trigger a code execution vulnerability. Vulnerability Summary DD-WRT is “is Linux-based firmware for wireless routers and access points. Originally designed for the Linksys WRT54G series, it now runs on a wide variety of models”. …
SSD Advisory – VestaCP LPE Vulnerabilities
TL;DR Find out how multiple vulnerabilities in VestaCP allow an authenticated attacker to elevate his access to root privileges. Vulnerability Summary VestaCP is “an open source hosting control panel, a clean and focused interface without the clutter, and has the latest of very innovative technologies”. Two security vulnerabilities in VestaCP allow attackers that have access …
SSD Advisory – GNU GRUB Command Injection
TL;DR Find out how a vulnerability in GNU GRUB allows users on a Linux system to inject commands into the process of grub-mkconfig which allows them to execute arbitrary commands with elevated privileges. Vulnerability Summary GRUB ships with a script that allows generating /boot/grub/grub.cfg based on the operating systems installed on all the devices attached …
