CVE-2025-45586

An issue in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to arbitrarily overwrite files via supplying a crafted PUT request...

CVE-2025-45586

An issue in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to arbitrarily overwrite files via supplying a crafted PUT request...

CVE-2024-45586

This vulnerability exists due to improper access controls on APIs in the Authentication module of Symphony XTS Web Trading and Mobile Trading platforms version 2.0.0.1P160. An authenticated remote attacker could exploit this vulnerability by manipulating parameters through HTTP request which coul...

CVE-2023-45586

An insufficient verification of data authenticity vulnerability CWE-345 in Fortinet FortiOS SSL-VPN tunnel mode version 7.4.0 through 7.4.1, version 7.2.0 through 7.2.7 and before 7.0.12 & FortiProxy SSL-VPN tunnel mode version 7.4.0 through 7.4.1, version 7.2.0 through 7.2.7 and before 7.0.13...

GLSA-202409-25 : Xpdf: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202409-25 Xpdf: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Xpdf. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly from th...

CVE-2024-45586

creationtimestamp| type| source ---|---|--- 2024-09-03 13:17:37+00:00| seen| https://t.me/cvedetector/4674...

CVE-2024-45586 Account Take Over Vulnerability

This vulnerability exists due to improper access controls on APIs in the Authentication module of Symphony XTS Web Trading and Mobile Trading platforms version 2.0.0.1P160. An authenticated remote attacker could exploit this vulnerability by manipulating parameters through HTTP request which coul...

Fortinet Fortigate SSL-VPN user IP spoofing (FG-IR-23-225)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-225 advisory. - An insufficient verification of data authenticity vulnerability CWE-345 in Fortinet FortiOS SSL-VPN tunnel mode version 7.4...

Mageia: Security Advisory (MGASA-2024-0035)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-45586

CVE-2022-45586 affects Xpdf 4.04, with a stack overflow in Dict::find (xpdf/Dict.cc) that can enable a local attacker to cause a denial of service. The Gentoo/GSA advisory and Mageia advisory indicate fixes are available by upgrading to Xpdf >= 4.05, addressing the listed CVEs (including CVE-2...

CVE-2022-45586

Stack overflow vulnerability in function Dict::find in xpdf/Dict.cc in xpdf 4.04, allows local attackers to cause a denial of service...

CVE-2021-45586

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK752 before 3.2.16.6, RBR750 before 3.2.16.6, RBS750 before 3.2.16.6, RBK852 before 3.2.16.6, RBR850 before 3.2.16.6, and RBS850 before 3.2.16.6...

CVE-2021-45586

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK752 before 3.2.16.6, RBR750 before 3.2.16.6, RBS750 before 3.2.16.6, RBK852 before 3.2.16.6, RBR850 before 3.2.16.6, and RBS850 before 3.2.16.6...

CVE-2021-45586

The CVE-2021-45586 entry concerns certain NETGEAR devices (RBK752, RBR750, RBS750, RBK852, RBR850, RBS850) with pre-3.2.16.6 firmware. The issue is authenticated-command injection in these devices. Public documentation consistently lists the affected models and version threshold but does not spec...

CVE-2021-45586

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK752 before 3.2.16.6, RBR750 before 3.2.16.6, RBS750 before 3.2.16.6, RBK852 before 3.2.16.6, RBR850 before 3.2.16.6, and RBS850 before 3.2.16.6...