Security Advisories

Zyxel Firewall Pre-Authentication Format String Remote Code Execution Vulnerability

Zyxel Firewall Post-Authentication Format String Remote Code Execution Vulnerability

Zyxel Firewall Post-Authentication Command Injection Remote Code Execution Vulnerability

Zyxel Firewall Remote Kernel DoS Vulnerability

Trend Micro Apex One Security Agent Exposed Dangerous Function Local Privilege Escalation Vulnerability

Windows Kernel Denial of Service Vulnerability

Zyxel Firewall Pre-Authentication DoS Vulnerability

Trend Micro Apex One Security Agent Plug-in Manager Origin Validation Error Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Plug-in Manager Origin Validation Error Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Origin Validation Error Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Origin Validation Error Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Origin Validation Error Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Origin Validation Error Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Origin Validation Error Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Origin Validation Error Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Link Following Local Privilege Escalation Vulnerability

ASUSTOR Data Master (ADM) Pre-Authentication Command Injection Remote Code Execution Vulnerability

ASUSTOR Data Master (ADM) Pre-Authentication Arbitrary File Creation Vulnerability

ASUSTOR Data Master (ADM) Pre-Authentication Arbitrary File Deletion Vulnerability

Zyxel Firewall Pre-Authentication Command Injection Remote Code Execution Vulnerability

Zyxel Firewall Pre-Authentication Format String Remote Code Execution Vulnerability

Zyxel Firewall Pre-Authentication Command Injection Remote Code Execution Vulnerability

Trend Micro Apex One Security Agent Exposed Dangerous Function Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Exposed Dangerous Function Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Exposed Dangerous Function Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Untrusted Search Path Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Untrusted Search Path Local Privilege Escalation Vulnerability

Zyxel Firewall Pre-Authentication Buffer Overflow Remote Code Execution Vulnerability

Zyxel Firewall Pre-Authentication Buffer Overflow Remote Code Execution Vulnerability

Trend Micro Apex One Security Agent Time-of-Check Time-of-Use LPE Vulnerability

Zyxel Firewall Pre-Authentication Command Injection Remote Code Execution Vulnerability

Trend Micro Apex One Security Agent Link Following Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Directory Traversal Local Privilege Escalation Vulnerability

Trend Micro Apex One Security Agent Improper Certification Validation Local Privilege Escalation Vulnerability

Zyxel Firewall Post-Authentication Command Injection Remote Code Execution Vulnerability

Trend Micro Apex One Incorrect Permission Assignment Privilege Escalation Vulnerability

Synology DiskStation Manager Command Injection

Synology DiskStation Manager Buffer Overflow

Heap buffer overflow in Blink in Google Chrome

Trend Micro Apex One Origin Validation Error Local Privilege Escalation Vulnerability

Trend Micro Apex One Incorrect Permission Assignment Privilege Escalation Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Trend Micro Apex One Incorrect Permission Assignment Privilege Escalation Vulnerability

Trend Micro Apex One Improper Access Control Privilege Escalation Vulnerability

NETGEAR R7800 udchpd DHCP_REQUEST Command Injection Remote Code Execution Vulnerability

Western Digital MyCloud PR4100 nasAdmin Authentication Bypass Vulnerability

SVE-2020-16712 Arbitrary Code Execution in Secure Bootloader

SVE-2019-16587, SVE-2019-16588, SVE-2019-16589: Arbitrary code execution in Fingerprint Trustlet

SVE-2019-15872 Improper aligned size check leads buffer overflow in secure bootloader

SVE-2019-14575 Brute force attack on screen lock password

LNK Remote Code Execution Vulnerability

LNK Remote Code Execution Vulnerability

SVE-2019-14891: Missing Param Type check in SEM Trustlet

SVE-2019-14665: Stack overflow in HDCP Trustlet

SVE-2019-14651, SVE-2019-14666: Arbitrary memory overwrite and stack overflow in SEM Trustlet

Stack-based overflow vulnerability in the logMess function in Open TFTP Server SP 1.66 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12567.

Stack-based overflow vulnerability in the logMess function in Open TFTP Server MT 1.65 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12568.

Jet Database Engine Remote Code Execution Vulnerability

LNK Remote Code Execution Vulnerability

LNK Remote Code Execution Vulnerability

Jet Database Engine Remote Code Execution Vulnerability

Format string vulnerability in the logMess function in TFTP Server MT 1.65 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via format string sequences in a TFTP error packet.

Format string vulnerability in the logMess function in TFTP Server SP 1.66 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via format string sequences in a TFTP error packet.

Heap-based overflow vulnerability in TFTP Server SP 1.66 and earlier allows remote attackers to perform a denial of service or possibly execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2008-2161.

SVE-2017-10733: Stack overflow in Trustlet

Pre-Authentication Remote Code Execution

SVE-2017-10598: Arbitrary Code Execution in the Samsung Bootloader

Synology DiskStation Manager XSS