CVE-2021-27168

An issue was discovered on FiberHome HG6245D devices through RP2613. There is a 6GFJdY4aAuUKJjdtSn7d password for the rdsadmin account...

CVE-2026-27168

creationtimestamp| type| source ---|---|--- 2026-02-21 00:17:41+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfddvo54ng25 2026-02-21 00:18:10+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfddwj3bfn2h 2026-02-21 03:00:29+00:00| seen|...

CVE-2026-27168

SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. All versions are vulnerable to Heap-based Buffer Overflow through the XWD parser's use of the bytesperline value. The value os read directly from the file as the read size in...

CVE-2025-14935

NSF Unidata NetCDF-C Dimension Name Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NSF Unidata NetCDF-C. User interaction is required to exploit this vulnerability in that the target...

CVE-2023-27168

An arbitrary file upload vulnerability in Xpand IT Write-back Manager v2.3.1 allows attackers to execute arbitrary code via a crafted jsp file...

CVE-2025-27168

Illustrator versions 29.2.1, 28.7.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-27168

creationtimestamp| type| source ---|---|--- 2025-03-11 21:49:18+00:00| seen| https://t.me/cvedetector/20144...

CVE-2025-27168

Illustrator versions 29.2.1, 28.7.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-27168

CVE-2025-27168 corresponds to a stack-based buffer overflow in Adobe Illustrator versions 29.2.1, 28.7.4 and earlier that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction—victim must open a malicious file. Affected component: Illust...

CVE-2024-27168 Hardcoded keys used to generate authentication cookies

It appears that some hardcoded keys are used for authentication to internal API. Knowing these private keys may allow attackers to bypass authentication and reach administrative interfaces. As for the affected products/models/versions, see the reference URL...

CVE-2024-27168

CVE-2024-27168 involves hardcoded keys used to generate authentication cookies for internal APIs on Toshiba e‑STUDIO/MFP devices. Connected sources describe that private keys may let an attacker bypass authentication and reach the administrative interfaces, enabling information disclosure or cont...

CVE-2023-27168

creationtimestamp| type| source ---|---|--- 2024-01-25 21:11:34+00:00| seen| https://t.me/ctinow/173793 2024-02-15 10:46:28+00:00| seen| https://t.me/ctinow/185400...

CVE-2023-27168

An arbitrary file upload vulnerability in Xpand IT Write-back Manager v2.3.1 allows attackers to execute arbitrary code via a crafted jsp file...

CVE-2023-27168

An arbitrary file upload vulnerability in Xpand IT Write-back Manager v2.3.1 allows attackers to execute arbitrary code via a crafted jsp file...

CVE-2023-27168

CVE-2023-27168 affects Xpand IT Write-back Manager, version 2.3.1. The vulnerability is an arbitrary file upload that allows attackers to execute arbitrary code via a crafted JSP file. The connected PT-2024-12123 entry confirms the affected product/version and provides a practical workaround: res...

CVE-2022-27168

CVE-2022-27168 is a cross-site scripting vulnerability in LiteCart, affecting versions prior to 2.4.2. The vulnerability allows a remote attacker to inject arbitrary script into a victim’s browser via unspecified vectors. Concrete details in the provided documents identify LiteCart as the affecte...

CVE-2021-27168

creationtimestamp| type| source ---|---|--- 2021-02-10 22:41:57+00:00| seen| https://t.me/cibsecurity/23399...

CVE-2021-27168

An issue was discovered on FiberHome HG6245D devices through RP2613. There is a 6GFJdY4aAuUKJjdtSn7d password for the rdsadmin account...

CVE-2021-27168

CVE-2021-27168 affects FiberHome HG6245D devices via RP2613, where the rdsadmin account is exposed with a hardcoded password (6GFJdY4aAuUKJjdtSn7d). The issue enables potential unauthorized admin access over the network, with CVSS metrics indicating high confidentiality, integrity, and availabili...