CVE-2026-36615

Mercusys AC12G EU V1 with firmware AC12GEUV1200909 exposes an undocumented /agileconfigreset endpoint that returns internal buffer contents to unauthenticated attackers on the adjacent network...

CVE-2026-36615

Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 is affected by CVE-2026-36615 due to an undocumented /agileconfigreset endpoint that returns internal buffer contents to unauthenticated attackers on the adjacent network. The issue stems from exposure of internal data to nearby devices wit...

Malicious code in do-wnload-available-36615-big-shiny-cars-skip6-dggtzj (npm)

The package do-wnload-available-36615-big-shiny-cars-skip6-dggtzj was found to contain malicious code...

MAL-2025-18548 Malicious code in do-wnload-available-36615-big-shiny-cars-skip6-dggtzj (npm)

The package do-wnload-available-36615-big-shiny-cars-skip6-dggtzj was found to contain malicious code...

CVE-2022-36615

TOTOLINK A3000RU V4.1.2cu.5185B20201128 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

CVE-2020-36615

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.0.1. Processing a maliciously crafted font may lead to arbitrary code execution...

Linux Distros Unpatched Vulnerability : CVE-2024-36615

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. This could lead to a data race if video encoding parameters were being exported, as the side...

CVE-2024-36615

FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. This could lead to a data race if video encoding parameters were being exported, as the side data would be attached in the decoder thread while being read in the output thread...

CVE-2024-36615

FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. This could lead to a data race if video encoding parameters were being exported, as the side data would be attached in the decoder thread while being read in the output thread...

CVE-2020-36615

CVE-2020-36615 (FontParser, macOS Big Sur) : The issue is an out-of-bounds read in the FontParser used by macOS Big Sur 11.0.1, triggered by processing a maliciously crafted font. The root cause is unvalidated bounds while parsing font data, which the Apple advisory states was addressed with impr...

CVE-2022-36615

creationtimestamp| type| source ---|---|--- 2022-08-29 07:33:34+00:00| seen| https://t.me/cibsecurity/48950...

CVE-2022-36615

TOTOLINK A3000RU V4.1.2cu.5185B20201128 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

CVE-2022-36615

CVE-2022-36615 affects TOTOLINK A3000RU v4.1.2cu.5185_B20201128, where a hardcoded root password exists in /etc/shadow.sample. Documented by NVD and Red Hat, the vulnerability enables local, high-impact compromise with root access if exploited. Connected sources confirm the device model and firmw...

AIX Calendar Manager Service Daemon (rpc.cmsd) Opcode 21 Buffer Overflow

$Id: rpccmsdopcode21.rb 8426 2010-02-09 04:15:15Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...