Lucene search
K

27 matches found

Circl
Circl
added 5 days ago7 views

CVE-2026-14107

creationtimestamp| type| source ---|---|--- 2026-07-01 21:46:22+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpmijof2uk2o 2026-07-01 21:46:23+00:00| seen| https://bsky.app/profile/qiancx.bsky.social/post/3mpmijogcta2l 2026-07-02 08:16:54+00:00| seen|...

8.8CVSS5.9AI score0.0028EPSS
Exploits0References5
OSV
OSV
added 2025/12/05 10:15 p.m.4 views

CVE-2025-14107

A security flaw has been discovered in ZSPACE Q2C NAS up to 1.1.0210050. Affected by this vulnerability is the function zfilev2api.SafeStatus of the file /v2/file/safe/status of the component HTTP POST Request Handler. The manipulation of the argument safedir results in command injection. The...

8.7CVSS5.5AI score
Exploits0References4
Circl
Circl
added 2025/12/05 10:1 p.m.3 views

CVE-2025-14107

creationtimestamp| type| source ---|---|--- 2025-12-05 22:01:48+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115669212005556559 2025-12-05 23:10:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7bmassixr2x 2025-12-06 03:10:07+00:00| seen|...

9CVSS8.8AI score0.10962EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 3:47 p.m.7 views

CVE-2020-14107

A stack overflow in the HTTP server of Cast can be exploited to make the app crash in LAN...

7.5CVSS7.4AI score0.00956EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-14107

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The zipreadeocd64 function in zipopen.c in libzip before 1.3.0 mishandles EOCD records, which allows remote attackers to cause a denial of service memory...

6.5CVSS5.7AI score0.032EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.13 views

RHEL 6 : libzip (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libzip: Memory allocation failure in zipcdirgrow function CVE-2017-14107 Note that Nessus has not tested for this...

6.5CVSS6.9AI score0.032EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.14 views

RHEL 7 : libzip (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libzip: Memory allocation failure in zipcdirgrow function CVE-2017-14107 Note that Nessus has not tested for this...

6.5CVSS6.6AI score0.032EPSS
Exploits0References1
OSV
OSV
added 2023/08/31 12:15 p.m.0 views

BELL-CVE-2017-14107 CVE-2017-14107 does not affect BellSoft software

Bulletin has no description...

6.5CVSS5.8AI score0.032EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.8 views

Ubuntu: Security Advisory (USN-4811-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.032EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2018-0020)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.032EPSS
Exploits0References4
OSV
OSV
added 2022/01/18 5:15 p.m.3 views

CVE-2020-14107

A stack overflow in the HTTP server of Cast can be exploited to make the app crash in LAN...

7.5CVSS5.8AI score0.00956EPSS
Exploits0References1
CVE
CVE
added 2022/01/18 4:52 p.m.41 views

CVE-2020-14107

Technical details about CVE-2020-14107 are not publicly provided in the supplied documents. Monitor for updates from vendors and security advisories.

7.5CVSS7.6AI score0.00956EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2022/01/13 10:15 p.m.28 views

CVE-2021-34980

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6260 1.1.0.781.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the setupwizard.cgi page. When parsing the SOAPLOGINTOKEN...

8.8CVSS0.01372EPSS
Exploits0References2
Prion
Prion
added 2022/01/13 10:15 p.m.15 views

Stack overflow

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6260 1.1.0.781.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the setupwizard.cgi page. When parsing the SOAPLOGINTOKEN...

8.3CVSS8.8AI score0.01372EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/01/13 9:44 p.m.31 views

CVE-2021-34980

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6260 1.1.0.781.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the setupwizard.cgi page. When parsing the SOAPLOGINTOKEN...

8.8CVSS9AI score0.01372EPSS
Exploits0References2
CVE
CVE
added 2022/01/13 9:44 p.m.53 views

CVE-2021-34980

The CVE-2021-34980 entry concerns NETGEAR R6260 routers (1.1.0.78_1.0.1). The vulnerability is a stack-based buffer overflow in setupwizard.cgi triggered by parsing the SOAP_LOGIN_TOKEN environment variable, where input length is not validated before copying into a fixed-size stack buffer. This a...

8.8CVSS8.8AI score0.01372EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/12/20 10:43 p.m.29 views

CVE-2019-14107

CVE-2019-14107 is rejected/not used per description; this entry does not represent an active vulnerability.

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.15 views

Fedora 27 : mingw-libzip (2017-d5487d0f80)

Update to version 1.3.0, see https://nih.at/libzip/NEWS.html for details. ---- This update backports security fix for CVE-2017-14107. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

6.5CVSS5.7AI score0.032EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.31 views

Fedora 27 : libzip (2017-7bd193c0ed)

Version 1.3.0 It contains fixes for two possible security problems. The problems were identified by Brian 'geeknik' Carpenter and Agostino Sarubbo using AFL. The changes are : - Support bzip2 compressed zip archives - Improve file progress callback code - Fix zipfdopen - CVE-2017-12858: Fix doubl...

9.8CVSS6.2AI score0.03703EPSS
Exploits0References3
Mageia
Mageia
added 2018/01/02 3:2 p.m.40 views

Updated libzip packages fix security vulnerability

The zipreadeocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service memory allocation failure in zipcdirgrow in zipdirent.c via a crafted ZIP archive CVE-2017-14107...

6.5CVSS5.3AI score0.032EPSS
Exploits0References2
Rows per page
Query Builder