ROOT-OS-DEBIAN-12-CVE-2025-37777 CVE-2025-37777 in rootio-linux - Patched by Root

Root has patched CVE-2025-37777 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-UBUNTU-2204-CVE-2025-37777 CVE-2025-37777 in rootio-linux - Patched by Root

Root has patched CVE-2025-37777 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

CVE-2022-37777

Phicomm FIR151B A2, FIR302E A2, FIR300B A2, FIR303B A2 routers 3.0.1.17 and earlier were discovered to contain a remote command execution RCE vulnerability via the trHops parameter of the tracert function...

EUVD-2025-37777

The Graphina – Elementor Charts and Graphs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple chart widgets in all versions up to, and including, 3.1.8 due to insufficient input sanitization and output escaping on data attributes. This makes it possible for authenticat...

CVE-2025-37777 affecting package kernel for versions less than 6.6.104.2-1

CVE-2025-37777 affecting package kernel for versions less than 6.6.104.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-37777

O2OA v9.0.3 was discovered to contain a remote code execution RCE vulnerability via the mainOutput function...

MAL-2025-37777 Malicious code in uniform-cherry-ukvf (npm)

The package uniform-cherry-ukvf was found to contain malicious code...

CVE-2025-37777

creationtimestamp| type| source ---|---|--- 2025-05-02 07:16:29+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14457 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/...

CVE-2025-37777

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2leasebreaknoti Move tcptransport free to ksmbdconnfree. If ksmbd connection is referenced when ksmbd server thread terminates, It will not be freed, but conn-tcptransport is freed...

CVE-2025-37777

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2leasebreaknoti Move tcptransport free to ksmbdconnfree. If ksmbd connection is referenced when ksmbd server thread terminates, It will not be freed, but conn-tcptransport is freed...

CVE-2025-37777

CVE-2025-37777: In the Linux kernel ksmbd path, a use-after-free could occur in __smb2_lease_break_noti() when the connection is disconnected, because ksmbd_conn_write may touch freed structures if conn->ksmbd_transport is already freed. The fix moves the tcp_transport free to ksmbd_conn_free,...

VulnCheck KEV: CVE-2013-6117

Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777...

CVE-2023-37777

A SQL injection vulnerability exists in Synnefo Internet Management Software IMS version 2023 and earlier. This vulnerability occurs due to improper input validation in a specific API endpoint parameter allowing an attacker to manipulate SQL queries via crafted input. Successful exploitation coul...

CVE-2023-37777

CVE-2023-37777 affects Synnefo Internet Management Software (IMS) up to version 2023 and earlier. Root cause: improper input validation in a specific API endpoint parameter enables SQL injection. Exploitation could reveal database records with DB administrator privileges and may enable privilege ...

CVE-2023-37777

A SQL injection vulnerability exists in Synnefo Internet Management Software IMS version 2023 and earlier. This vulnerability occurs due to improper input validation in a specific API endpoint parameter allowing an attacker to manipulate SQL queries via crafted input. Successful exploitation coul...

CVE-2022-37777

CVE-2022-37777 affects Phicomm FIR151B A2, FIR302E A2, FIR300B A2, and FIR303B A2 routers with firmware versions 3.0.1.17 and earlier. The issue is a remote command execution via the trHops parameter of the tracert function. Red Hat and other sources corroborate this vulnerability across the same...

The vulnerability arises from the implementation of the automatic update method for server names in the Dynamic DNS system for domain names in systems using Amcrest IP cameras. This allows a perpetrator to execute arbitrary code or cause a service failure.

The vulnerability of the implementation of the automatic update method for domain names in Dynamic DNS systems of Amcrest IP cameras relates to the writing of data beyond the buffer boundaries in memory when using the 0x62 command with the 0x04 subcommand. Exploiting this vulnerability allows a...

Amcrest Cameras and NVR Stack-based Buffer Overflow Vulnerability

Amcrest cameras and NVR contain a stack-based buffer overflow vulnerability through port 37777 that allows an unauthenticated, remote attacker to crash the device and possibly execute code...

VulnCheck KEV: CVE-2020-5735

Amcrest cameras and NVR contain a stack-based buffer overflow vulnerability through port 37777 that allows an unauthenticated, remote attacker to crash the device and possibly execute code...

CVE-2021-37777

creationtimestamp| type| source ---|---|--- 2021-10-04 18:18:43+00:00| seen| https://t.me/cibsecurity/29871...