25 matches found
CVE-2025-41277
creationtimestamp| type| source ---|---|--- 2026-05-29 13:11:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmyme4jokh2e...
CVE-2025-41277
Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to execute arbitrary operating...
Metabase - Local File Inclusion
Metabase is an open source data analytics platform. In affected versions a local file inclusion security issue has been discovered with the custom GeoJSON map admin-settings-maps-custom maps-add a map support and potential local file inclusion including environment variables. URLs were not...
CVE-2026-41277
creationtimestamp| type| source ---|---|--- 2026-04-15 21:44:26+00:00| published-proof-of-concept| https://github.com/FlowiseAI/Flowise/security/advisories/GHSA-3prp-9gf7-4rxx 2026-04-23 21:26:47+00:00| seen| Telegram/lUzHwqY45MHoOS5UDHqr6saeA9vYjttsYdPIjTNMATUwM 2026-04-25 01:12:04+00:00| seen|...
CVE-2021-41277
Metabase is an open source data analytics platform. In affected versions a security issue has been discovered with the custom GeoJSON map admin-settings-maps-custom maps-add a map support and potential local file inclusion including environment variables. URLs were not validated prior to being...
Metabase < 1.40.5
The version of Metabase installed on the remote host is prior to 1.40.5. It is, therefore, affected by a local file inclusion vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 Tenable,...
CVE-2023-41277
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...
AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services
The threat actors behind the AndroxGh0st malware are now exploiting a broader set of security flaws impacting various internet-facing applications, while also deploying the Mozi botnet malware. "This botnet utilizes remote code execution and credential-stealing methods to maintain persistent...
Qnap QTS Classic Buffer Overflow (CVE-2023-41277)
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...
QNAP QTS / QuTS hero Multiple Vulnerabilities in QTS, QuTS hero (QSA-23-38)
The version of QNAP QTS / QuTS hero installed on the remote host is affected by multiple vulnerabilities as referenced in the QSA-23-38 advisory: - A heap-based buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could...
QNAP QTS Multiple Vulnerabilities (QSA-23-38)
QNAP QTS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qts"; ifdescription...
CVE-2023-41277
creationtimestamp| type| source ---|---|--- 2024-02-02 17:26:56+00:00| seen| https://t.me/ctinow/178174 2024-02-25 12:12:02+00:00| seen| https://t.me/ctinow/192850...
CVE-2023-41277
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...
CVE-2023-41277 QTS, QuTS hero, QuTScloud
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...
CVE-2023-41277 QTS, QuTS hero, QuTScloud
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...
Metabase LFI (CVE-2021-41277)
Binary data metabaselficve-2021-41277.nbin...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Metabase
CVE-2021-41277 MetaBase Arbitrary File Reading This is a...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Metabase
CVE-2021-41277 Metabase GeoJSON map local fil...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Metabase
CVE-2021-41277 MetaBase arbitrary file reading vulnerability,...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Metabase
Metabase-cve-2021-41277 Metabase 任意文件读取 optional arguments:...