Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:2 a.m.10 views

CVE-2023-25582

Two OS command injection vulnerabilities exist in the zebra vlanname functionality of Milesight UR32L v32.3.0.5. A specially crafted network request can lead to command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is in the code branch...

7.2CVSS7.6AI score0.03543EPSS
Exploits1References1
Circl
Circl
added 2023/07/06 6:30 p.m.5 views

CVE-2023-25582

creationtimestamp| type| source ---|---|--- 2023-07-06 18:30:27+00:00| seen| https://t.me/cibsecurity/66105...

7.2CVSS8.2AI score0.03543EPSS
Exploits1References1
NVD
NVD
added 2023/07/06 3:15 p.m.24 views

CVE-2023-25582

Two OS command injection vulnerabilities exist in the zebra vlanname functionality of Milesight UR32L v32.3.0.5. A specially crafted network request can lead to command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is in the code branch...

7.2CVSS7.5AI score0.03543EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/07/06 2:53 p.m.38 views

CVE-2023-25582

Two OS command injection vulnerabilities exist in the zebra vlanname functionality of Milesight UR32L v32.3.0.5. A specially crafted network request can lead to command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is in the code branch...

7.2CVSS7.6AI score0.03543EPSS
Exploits1References1
CVE
CVE
added 2023/07/06 2:53 p.m.46 views

CVE-2023-25582

CVE-2023-25582 affects Milesight UR32L v32.3.0.5 with two OS command injection flaws in the zebra vlan_name functionality. Public material documents a pre-authentication remote exploit path in UR32L’s HTTP server (via TALOS-2023-1697) leading to stack-based buffer overflow and potential RCE; addi...

7.2CVSS8AI score0.03543EPSS
Exploits1References2Affected Software1
Talos
Talos
added 2023/07/06 12:0 a.m.60 views

Milesight UR32L zebra vlan_name OS command injection vulnerabilities

Talos Vulnerability Report TALOS-2023-1723 Milesight UR32L zebra vlanname OS command injection vulnerabilities July 6, 2023 CVE Number CVE-2023-25582,CVE-2023-25583 SUMMARY Two OS command injection vulnerabilities exist in the zebra vlanname functionality of Milesight UR32L v32.3.0.5. A specially...

7.2CVSS7.6AI score0.03543EPSS
Exploits2
Rows per page
Query Builder