Remote Code Execution

SSD Advisory – TG8 Firewall PreAuth RCE and Password Disclosure

TL;DR Find out how vulnerabilities in TG8 Firewall allows remote unauthenticated users to execute arbitrary code on the remote device as well as disclose the passwords of existing accounts. Vulnerability Summary Two security vulnerabilities in TG8 Firewall have been found allowing a remote user to execute commands as root user without needing to authenticate with …

SSD Advisory – TG8 Firewall PreAuth RCE and Password Disclosure Read More »

SSD Advisory – NETGEAR Nighthawk R7000 httpd PreAuth RCE

TL;DR Find out how a vulnerability in NETGEAR R7000 allows an attacker to run arbitrary code without requiring authentication with the device. Vulnerability Summary A vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7000 routers. Authentication is not required to exploit this vulnerability. The vulnerability exists within the handling of …

SSD Advisory – NETGEAR Nighthawk R7000 httpd PreAuth RCE Read More »

SSD Advisory – Hongdian H8922 Multiple Vulnerabilities

TL;DR Find out how multiple vulnerabilities in Hongdian H8922 allow an attacker to run arbitrary commands on the device with root privileges as well as access the device with root privileges via a backdoor account. Vulnerability Summary The H8922 “4G industrial router is based on 3G/4G wireless network and adopts a high-performance 32-bit embedded operating …

SSD Advisory – Hongdian H8922 Multiple Vulnerabilities Read More »

SSD Advisory – QNAP Pre-Auth CGI_Find_Parameter RCE

TL;DR Find out how a memory corruption vulnerability can lead to a pre-auth remote code execution on QNAP QTS’s Surveillance Station plugin. Vulnerability Summary QNAP NAS with “Surveillance Station Local Display function can perform monitoring and playback by using an HDMI display to deliver live Full HD (1920×1080) video monitoring”. Insecure use of user supplied …

SSD Advisory – QNAP Pre-Auth CGI_Find_Parameter RCE Read More »

SSD Advisory – DD-WRT UPNP Buffer Overflow

TL;DR Find out how a vulnerability in DD-WRT allows an unauthenticated attacker to overflow an internal buffer used by UPNP and trigger a code execution vulnerability. Vulnerability Summary DD-WRT is “is Linux-based firmware for wireless routers and access points. Originally designed for the Linksys WRT54G series, it now runs on a wide variety of models”. …

SSD Advisory – DD-WRT UPNP Buffer Overflow Read More »

SSD Advisory – VestaCP LPE Vulnerabilities

TL;DR Find out how multiple vulnerabilities in VestaCP allow an authenticated attacker to elevate his access to root privileges. Vulnerability Summary VestaCP is “an open source hosting control panel, a clean and focused interface without the clutter, and has the latest of very innovative technologies”. Two security vulnerabilities in VestaCP allow attackers that have access …

SSD Advisory – VestaCP LPE Vulnerabilities Read More »

SSD Advisory – GNU GRUB Command Injection

TL;DR Find out how a vulnerability in GNU GRUB allows users on a Linux system to inject commands into the process of grub-mkconfig which allows them to execute arbitrary commands with elevated privileges. Vulnerability Summary GRUB ships with a script that allows generating /boot/grub/grub.cfg based on the operating systems installed on all the devices attached …

SSD Advisory – GNU GRUB Command Injection Read More »

?

Get in touch