Lucene search
K

16 matches found

Circl
Circl
added 2026/06/09 3:44 p.m.10 views

CVE-2026-45586

creationtimestamp| type| source ---|---|--- 2026-06-09 15:44:28+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0181 2026-06-09 16:12:18+00:00| seen| https://www.thezdi.com/blog/2026/6/9/the-june-2026-security-update-review 2026-06-09 18:10:24+00:00| seen|...

7.8CVSS6AI score0.03028EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2025/09/14 12:10 a.m.19 views

CVE-2025-45586

An issue in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to arbitrarily overwrite files via supplying a crafted PUT request...

7.5CVSS6.9AI score0.00298EPSS
Exploits1References1
OSV
OSV
added 2025/09/12 9:15 p.m.2 views

CVE-2025-45586

An issue in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to arbitrarily overwrite files via supplying a crafted PUT request...

7.5CVSS5.8AI score0.00298EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:6 a.m.12 views

CVE-2024-45586

This vulnerability exists due to improper access controls on APIs in the Authentication module of Symphony XTS Web Trading and Mobile Trading platforms version 2.0.0.1P160. An authenticated remote attacker could exploit this vulnerability by manipulating parameters through HTTP request which coul...

9.2CVSS6.9AI score0.00432EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:40 a.m.5 views

CVE-2023-45586

An insufficient verification of data authenticity vulnerability CWE-345 in Fortinet FortiOS SSL-VPN tunnel mode version 7.4.0 through 7.4.1, version 7.2.0 through 7.2.7 and before 7.0.12 & FortiProxy SSL-VPN tunnel mode version 7.4.0 through 7.4.1, version 7.2.0 through 7.2.7 and before 7.0.13...

5CVSS6.6AI score0.00288EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/09/25 12:0 a.m.36 views

GLSA-202409-25 : Xpdf: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202409-25 Xpdf: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Xpdf. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly from th...

9.1CVSS6AI score0.01618EPSS
Exploits18References25
Circl
Circl
added 2024/09/03 1:17 p.m.5 views

CVE-2024-45586

creationtimestamp| type| source ---|---|--- 2024-09-03 13:17:37+00:00| seen| https://t.me/cvedetector/4674...

9.2CVSS4.8AI score0.00432EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/03 10:2 a.m.18 views

CVE-2024-45586 Account Take Over Vulnerability

This vulnerability exists due to improper access controls on APIs in the Authentication module of Symphony XTS Web Trading and Mobile Trading platforms version 2.0.0.1P160. An authenticated remote attacker could exploit this vulnerability by manipulating parameters through HTTP request which coul...

9.2CVSS0.00432EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/22 12:0 a.m.20 views

Fortinet Fortigate SSL-VPN user IP spoofing (FG-IR-23-225)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-225 advisory. - An insufficient verification of data authenticity vulnerability CWE-345 in Fortinet FortiOS SSL-VPN tunnel mode version 7.4...

5CVSS5.6AI score0.00288EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/02/12 12:0 a.m.40 views

Mageia: Security Advisory (MGASA-2024-0035)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.3AI score0.01581EPSS
Exploits17References4
Vulnrichment
Vulnrichment
added 2023/02/15 12:0 a.m.5 views

CVE-2022-45586

Stack overflow vulnerability in function Dict::find in xpdf/Dict.cc in xpdf 4.04, allows local attackers to cause a denial of service...

5.4AI score0.00319EPSS
Exploits1References1
CVE
CVE
added 2023/02/15 12:0 a.m.53 views

CVE-2022-45586

CVE-2022-45586 affects Xpdf 4.04, with a stack overflow in Dict::find (xpdf/Dict.cc) that can enable a local attacker to cause a denial of service. The Gentoo/GSA advisory and Mageia advisory indicate fixes are available by upgrading to Xpdf >= 4.05, addressing the listed CVEs (including CVE-2...

5.5CVSS5.5AI score0.00319EPSS
Exploits1References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/12/26 1:15 a.m.2 views

CVE-2021-45586

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK752 before 3.2.16.6, RBR750 before 3.2.16.6, RBS750 before 3.2.16.6, RBK852 before 3.2.16.6, RBR850 before 3.2.16.6, and RBS850 before 3.2.16.6...

8.4CVSS5.4AI score0.00633EPSS
Exploits0References2
NVD
NVD
added 2021/12/26 1:15 a.m.14 views

CVE-2021-45586

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK752 before 3.2.16.6, RBR750 before 3.2.16.6, RBS750 before 3.2.16.6, RBK852 before 3.2.16.6, RBR850 before 3.2.16.6, and RBS850 before 3.2.16.6...

8.4CVSS0.00633EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/12/26 12:42 a.m.27 views

CVE-2021-45586

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK752 before 3.2.16.6, RBR750 before 3.2.16.6, RBS750 before 3.2.16.6, RBK852 before 3.2.16.6, RBR850 before 3.2.16.6, and RBS850 before 3.2.16.6...

8.4CVSS8.8AI score0.00633EPSS
Exploits0References1
CVE
CVE
added 2021/12/26 12:42 a.m.50 views

CVE-2021-45586

The CVE-2021-45586 entry concerns certain NETGEAR devices (RBK752, RBR750, RBS750, RBK852, RBR850, RBS850) with pre-3.2.16.6 firmware. The issue is authenticated-command injection in these devices. Public documentation consistently lists the affected models and version threshold but does not spec...

8.4CVSS6.8AI score0.00633EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder