Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:4 a.m.9 views

CVE-2022-37843

In TOTOLINK A860R V4.1.2cu.5182B20201027 in cstecgi.cgi, the acquired parameters are directly put into the system for execution without filtering, resulting in a command injection vulnerability...

9.8CVSS7.7AI score0.0149EPSS
Exploits0References1
OSV
OSV
added 2025/05/10 5:59 a.m.3 views

BELL-CVE-2025-37843

Bulletin has no description...

5.5CVSS7.2AI score0.00173EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/09 6:41 a.m.23 views

CVE-2025-37843 PCI: pciehp: Avoid unnecessary device replacement check

In the Linux kernel, the following vulnerability has been resolved: PCI: pciehp: Avoid unnecessary device replacement check Hot-removal of nested PCI hotplug ports suffers from a long-standing race condition which can lead to a deadlock: A parent hotplug port acquires pcilockrescanremove, then...

0.00173EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/05/09 6:41 a.m.7 views

CVE-2025-37843

In the Linux kernel, the following vulnerability has been resolved: PCI: pciehp: Avoid unnecessary device replacement check Hot-removal of nested PCI hotplug ports suffers from a long-standing race condition which can lead to a deadlock: A parent hotplug port acquires pcilockrescanremove, then...

5.5CVSS5.7AI score0.00173EPSS
Exploits0
CVE
CVE
added 2025/05/09 6:41 a.m.86 views

CVE-2025-37843

CVE-2025-37843 : In the Linux kernel, a race between parent and child PCI hotplug ports can deadlock during nested PCI hotplug removal. A fix was implemented to avoid extra checks when the hotplug port itself was hot-removed, preventing the deadlock (particularly when removing multiple Thunderbol...

5.5CVSS6.6AI score0.00173EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/06 4:47 a.m.13 views

CVE-2021-37843

The resolution SAML SSO apps for Atlassian products allow a remote attacker to login to a user account when only the username is known i.e., no other authentication is provided. The fixed versions are for Jira: 3.6.6.1, 4.0.12, 5.0.5; for Confluence 3.6.6, 4.0.12, 5.0.5; for Bitbucket 2.5.9, 3.6....

9.8CVSS7.2AI score0.01535EPSS
Exploits0References1
CVE
CVE
added 2024/06/25 12:0 a.m.116 views

CVE-2024-37843

Craft CMS

9.8CVSS7.9AI score0.51282EPSS
Exploits1References1Affected Software1
Circl
Circl
added 2024/06/18 2:30 a.m.8 views

CVE-2024-37843

creationtimestamp| type| source ---|---|--- 2024-06-18 02:30:04+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/7693 2024-08-02 17:15:54+00:00| published-proof-of-concept| https://t.me/CNArsenal/2941 2024-08-04 10:54:02+00:00| published-proof-of-concept| https://t.me/HackerArsenal/1...

9.8CVSS4.8AI score0.51282EPSS
Exploits1References9
Circl
Circl
added 2022/09/06 8:13 p.m.6 views

CVE-2022-37843

creationtimestamp| type| source ---|---|--- 2022-09-06 20:13:32+00:00| seen| https://t.me/cibsecurity/49321...

9.8CVSS8.7AI score0.0149EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/09/06 5:15 p.m.5 views

CVE-2022-37843

In TOTOLINK A860R V4.1.2cu.5182B20201027 in cstecgi.cgi, the acquired parameters are directly put into the system for execution without filtering, resulting in a command injection vulnerability...

9.8CVSS5.9AI score0.0149EPSS
Exploits0References2
CVE
CVE
added 2022/09/06 4:34 p.m.63 views

CVE-2022-37843

CVE-2022-37843 affects TOTOLINK A860R with firmware 4.1.2cu.5182_B20201027, where cstecgi.cgi executes acquired parameters directly without filtering, enabling command injection. Root cause: unfiltered parameter handling leading to code execution. Documented impact values indicate high confidenti...

9.8CVSS9.7AI score0.0149EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2021/08/02 10:27 p.m.5 views

CVE-2021-37843

creationtimestamp| type| source ---|---|--- 2021-08-02 22:27:54+00:00| seen| https://t.me/cibsecurity/26700...

9.8CVSS8.7AI score0.01535EPSS
Exploits0References1
OSV
OSV
added 2021/08/02 7:15 p.m.4 views

CVE-2021-37843

The resolution SAML SSO apps for Atlassian products allow a remote attacker to login to a user account when only the username is known i.e., no other authentication is provided. The fixed versions are for Jira: 3.6.6.1, 4.0.12, 5.0.5; for Confluence 3.6.6, 4.0.12, 5.0.5; for Bitbucket 2.5.9, 3.6....

9.8CVSS7.3AI score0.01535EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/08/02 6:47 p.m.20 views

CVE-2021-37843

The resolution SAML SSO apps for Atlassian products allow a remote attacker to login to a user account when only the username is known i.e., no other authentication is provided. The fixed versions are for Jira: 3.6.6.1, 4.0.12, 5.0.5; for Confluence 3.6.6, 4.0.12, 5.0.5; for Bitbucket 2.5.9, 3.6....

9.8CVSS9.8AI score0.01535EPSS
Exploits0References1
CVE
CVE
added 2021/08/02 6:47 p.m.55 views

CVE-2021-37843

The CVE-2021-37843 issue affects Atlassian SAML SSO apps and allows a remote attacker to login to a user account knowing only the username (no additional authentication). Fixed versions include Jira: 3.6.6.1, 4.0.12, 5.0.5; Confluence: 3.6.6, 4.0.12, 5.0.5; Bitbucket: 2.5.9, 3.6.6, 4.0.12, 5.0.5;...

9.8CVSS9.4AI score0.01535EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder