Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

61 matches found

Packet Storm
Packet Stormadded 2026/05/05 12:0 a.m.32 views

📄 Frigate NVR 0.16.3 Remote Code Execution

Frigate NVR version 0.16.3 proof of concept remote code execution exploit written in Python. Exploit Title: Frigate NVR 0.16.3 - Remote Code Execution Date: 2026-02-05 Exploit Author: jduardo2704 Vendor Homepage: https://frigate.video/ Software Link: https://github.com/blakeblackshear/frigate...

9.1CVSS6.4AI score0.01265EPSS
Exploits8
Exploit DB
Exploit DBadded 2026/04/30 12:0 a.m.40 views

Frigate NVR 0.16.3 - Remote Code Execution

Exploit Title: Frigate NVR 0.16.3 - Remote Code Execution Date: 2026-02-05 Exploit Author: jduardo2704 Vendor Homepage: https://frigate.video/ Software Link: https://github.com/blakeblackshear/frigate Version: = 0.16.3 Tested on: Linux / Docker CVE: CVE-2026-25643 Advisory:...

9.1CVSS5.2AI score0.01265EPSS
Exploits8
Circl
Circladded 2026/03/24 1:54 p.m.1 views

CVE-2019-25643

creationtimestamp| type| source ---|---|--- 2026-03-24 13:54:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhspysaiyz2p...

8.8CVSS5.8AI score0.00051EPSS
Exploits0References1
Circl
Circladded 2026/02/06 8:17 p.m.2 views

CVE-2026-25643

creationtimestamp| type| source ---|---|--- 2026-02-06 20:17:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3me7pxyllun25 2026-02-06 20:18:33+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3me7pz64gzu2v 2026-02-06 20:19:21+00:00| seen|...

9.1CVSS4.8AI score0.01265EPSS
Exploits8References4
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-25643

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the HDLCPPP module of the Linux kernel in versions before 5.9-rc7. Memory corruption and a read overflow is caused by improper input...

7.5CVSS6.6AI score0.00262EPSS
Exploits0References3
Circl
Circladded 2024/02/13 5:21 a.m.1 views

CVE-2024-25643

creationtimestamp| type| source ---|---|--- 2024-02-13 05:21:25+00:00| seen| https://t.me/ctinow/183606...

4.3CVSS4.6AI score0.00153EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/02/13 3:37 a.m.21 views

CVE-2024-25643 Missing authorization check in SAP Fiori app (My Overtime Requests)

The SAP Fiori app My Overtime Request - version 605, does not perform the necessary authorization checks for an authenticated user which may result in an escalation of privileges. It is possible to manipulate the URLs of data requests to access information that the user should not have access to...

4.3CVSS5.2AI score0.00153EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/02/13 3:37 a.m.18 views

CVE-2024-25643 Missing authorization check in SAP Fiori app (My Overtime Requests)

The SAP Fiori app My Overtime Request - version 605, does not perform the necessary authorization checks for an authenticated user which may result in an escalation of privileges. It is possible to manipulate the URLs of data requests to access information that the user should not have access to...

4.3CVSS6.9AI score0.00153EPSS
Exploits0References2
Circl
Circladded 2024/01/10 5:41 p.m.3 views

CVE-2023-25643

creationtimestamp| type| source ---|---|--- 2024-01-10 17:41:51+00:00| seen| https://t.me/ctinow/166002...

8.8CVSS8.1AI score0.0028EPSS
Exploits0References1
NVD
NVDadded 2023/12/14 8:15 a.m.12 views

CVE-2023-25643

There is a command injection vulnerability in some ZTE mobile internet products. Due to insufficient input validation of multiple network parameters, an authenticated attacker could use the vulnerability to execute arbitrary commands...

8.8CVSS0.0028EPSS
Exploits0References1
CVE
CVEadded 2023/12/14 7:19 a.m.76 views

CVE-2023-25643

CVE-2023-25643 affects ZTE mobile internet products, notably the ZTE MC801A. The vulnerability is an input validation flaw on handling multiple network parameters that could allow an attacker to execute arbitrary commands. Some sources describe this as requiring authentication; others indicate po...

8.8CVSS8.9AI score0.0028EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/12/14 7:19 a.m.26 views

CVE-2023-25643 Two Vulnerabilities in Some ZTE Mobile Internet Products

There is a command injection vulnerability in some ZTE mobile internet products. Due to insufficient input validation of multiple network parameters, an authenticated attacker could use the vulnerability to execute arbitrary commands...

8.4CVSS9AI score0.0028EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/12/14 7:19 a.m.18 views

CVE-2023-25643 Two Vulnerabilities in Some ZTE Mobile Internet Products

There is a command injection vulnerability in some ZTE mobile internet products. Due to insufficient input validation of multiple network parameters, an authenticated attacker could use the vulnerability to execute arbitrary commands...

8.4CVSS7.7AI score0.0028EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2022/02/24 3:15 p.m.2 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS5.3AI score0.01674EPSS
Exploits0References7
OSV
OSVadded 2022/02/24 3:15 p.m.19 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS6.7AI score0.01674EPSS
Exploits0References6
NVD
NVDadded 2022/02/24 3:15 p.m.16 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS0.01674EPSS
Exploits0References6
UbuntuCve
UbuntuCveadded 2022/02/24 3:15 p.m.24 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS7.1AI score0.01674EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2022/02/22 12:0 a.m.61 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS9.5AI score0.01674EPSS
Exploits0
CVE
CVEadded 2022/02/22 12:0 a.m.88 views

CVE-2022-25643

CVE-2022-25643 affects seatd-launch in seatd 0.6.x prior to 0.6.4. It allows removing files with escalated privileges when the binary is installed setuid root, with the attack vector being a user-supplied socket pathname. Public details in the provided document indicate the vulnerable condition a...

9.8CVSS9.3AI score0.01674EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2022/02/22 12:0 a.m.27 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.7AI score0.01674EPSS
Exploits0References6
Rows per page
Query Builder