This vulnerability exists in Milesight 4K/H.265 Series NVR models (MS-Nxxxx-xxG, MS-Nxxxx-xxE, MS-Nxxxx-xxT, MS-Nxxxx-xxH and MS-Nxxxx-xxC), due to improper authorization at the Milesight NVR web-based management interface. A remote attacker could exploit this vulnerability by sending a specially crafted http requests on the targeted device. Successful exploitation of this vulnerability could allow remote attacker to perform unauthorized activities on the targeted device.

MileSight DeviceHub - CWE-20 Improper Input Validation may allow Denial of Service

This vulnerability exists in Milesight Video Management Systems (VMS), all firmware versions prior to 40.7.0.79-r1, due to improper input handling at camera’s web-based management interface. A remote attacker could exploit this vulnerability by sending a specially crafted http request on the targeted network camera. Successful exploitation of this vulnerability could allow the attacker to cause a Denial of Service condition on the targeted device.

Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.

Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame.

Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame.

Transient DOS during music playback of ALAC content.

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer over-read. An attacker could exploit this vulnerability by submitting a crafted file containing OLE2 content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software and consuming available system resources. For a description of this vulnerability, see the ClamAV blog .

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a Denial of Service attack against Squid HTTP Message processing. This bug is fixed by Squid version 6.5. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session.

Transient DOS while parse fils IE with length equal to 1.

Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.

Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol frame.

Transient DOS while processing a frame with malformed shared-key descriptor.

Transient DOS while processing the tone measurement response buffer when the response buffer is out of range.

Transient DOS while handling beacon frames with invalid IE header length.

Windows Extended Negotiation Denial of Service Vulnerability

Transient DOS may occur while parsing SSID in action frames.

Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request.

Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request from the AP to establish a TSpec session.

Transient DOS while processing the EHT operation IE in the received beacon frame.

Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.