Lucene search
K

47 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:47 p.m.11 views

CVE-2026-9532

A security vulnerability has been detected in Totolink CA750-PoE 6.2c.510. The affected element is the function setUploadUserData of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argument FileName leads to os command injection. The attack may be performe...

6.5CVSS6.2AI score0.01803EPSS
Exploits0References1
NVD
NVD
added 2026/05/26 7:16 a.m.12 views

CVE-2026-9534

A flaw has been found in Totolink CA750-PoE 6.2c.510. This affects the function setWiFiWpsConfig of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument PIN can lead to os command injection. It is possible to launch the attack remotely. The...

6.5CVSS0.01803EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/26 5:30 a.m.13 views

EUVD-2026-31796

A flaw has been found in Totolink CA750-PoE 6.2c.510. This affects the function setWiFiWpsConfig of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument PIN can lead to os command injection. It is possible to launch the attack remotely. The...

6.5CVSS6.4AI score0.01803EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/26 5:0 a.m.10 views

CVE-2026-9532

A security vulnerability has been detected in Totolink CA750-PoE 6.2c.510. The affected element is the function setUploadUserData of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argument FileName leads to os command injection. The attack may be performe...

6.5CVSS6.3AI score0.01803EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/26 12:0 a.m.19 views

PT-2026-43194

A flaw has been found in Totolink CA750-PoE 6.2c.510. This affects the function setWiFiWpsConfig of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument PIN can lead to os command injection. It is possible to launch the attack remotely. The...

6.5CVSS6.4AI score0.01803EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/25 12:0 a.m.14 views

TOTOLINK CA750-PoE 操作系统命令注入漏洞

The TOTOLINK CA750-PoE is a wireless network access device from China's Gion Electronics TOTOLINK. The Totolink CA750-PoE version 6.2c.510 suffers from an OS command injection vulnerability, which originates from an os command injection in the operation of the parameter webWlanIdx by the...

6.5CVSS6.6AI score0.01057EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.8 views

MiracleLinux 3 : tomcat5-5.5.23-0jpp.31.0.1.AXS3 (AXSA:2012-510:02)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-510:02 advisory. Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Jav...

5CVSS5.8AI score0.80318EPSS
Exploits6References3
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.8 views

PT-2025-54180

A vulnerability was found in Tenda W6-S 1.0.0.4510. This affects the function TendaAte of the file /goform/ate of the component ATE Service. Performing manipulation results in os command injection. The attack may be initiated remotely. The exploit has been made public and could be used...

6.5CVSS7AI score0.0326EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/12/29 12:0 a.m.9 views

PT-2025-53720

Name of the Vulnerable Software and Affected Versions Tenda W6-S version 1.0.0.4510 Description A stack-based buffer overflow exists in the R7websSsecurityHandler component of Tenda W6-S. The issue is located in the file /bin/httpd. Manipulation of the Cookie argument can trigger the overflow. Th...

10CVSS9.8AI score0.03923EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.22 views

EUVD-2025-28005

Malicious code in bioql PyPI...

7CVSS7.8AI score0.002EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/20 8:27 p.m.12 views

CVE-2025-4371

A potential vulnerability was reported in the Lenovo 510 FHD and Performance FHD web cameras that could allow an attacker with physical access to write arbitrary firmware updates to the device over a USB connection...

7CVSS7.1AI score0.002EPSS
Exploits0References1
NVD
NVD
added 2025/08/18 8:15 p.m.5 views

CVE-2025-4371

A potential vulnerability was reported in the Lenovo 510 FHD and Performance FHD web cameras that could allow an attacker with physical access to write arbitrary firmware updates to the device over a USB connection...

7CVSS0.002EPSS
Exploits0References1
CVE
CVE
added 2025/08/18 8:4 p.m.104 views

CVE-2025-4371

CVE-2025-4371 affects Lenovo 510 FHD and Lenovo Performance FHD webcams. The issue arises from the devices’ firmware validation gap, which could let an attacker with physical access write arbitrary firmware updates over USB, enabling BadUSB-style control and potential persistence. The linked PT-2...

7CVSS7AI score0.002EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/18 12:0 a.m.5 views

Lenovo 510 FHD和Lenovo Performance FHD 安全漏洞

Lenovo 510 FHD and Lenovo Performance FHD are both HD cameras from Lenovo China. A security vulnerability exists in the Lenovo 510 FHD and Lenovo Performance FHD that stems from a physical access that could lead to arbitrary firmware updates...

7CVSS6.6AI score0.002EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/07/24 12:12 a.m.8 views

CVE-2026-42496 affecting package perl for versions less than 5.38.2-510

CVE-2026-42496 affecting package perl for versions less than 5.38.2-510. A patched version of the package is available...

9.1CVSS5.4AI score0.0043EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/07/24 12:12 a.m.9 views

CVE-2026-48962 affecting package perl for versions less than 5.38.2-510

CVE-2026-48962 affecting package perl for versions less than 5.38.2-510. A patched version of the package is available...

7.8CVSS5.4AI score0.00292EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2024/02/06 12:0 a.m.63 views

Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2024-510)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-510 advisory. A flaw has been found in Xen. An unprivileged guest can cause Denial of Service DoS of the host by sending network packets to the backend, causing the backend to crash. CVE-2023-46838 A Null...

7.5CVSS6.5AI score0.01177EPSS
Exploits0References6
Pen Test Partners Blog
Pen Test Partners Blog
added 2023/12/07 6:45 a.m.19 views

Navigate FDA 524b to get your medical cyber device to market

With amendment 524b officially enacted, medical devices across the United States and the globe are living under some new rules and procedures. You’re not alone if you are finding these new regulations a bit complex. Changes to business practices – particularly ones that involve millions of...

7.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/11/27 12:50 a.m.10 views

ch-510.com Improper Access Control vulnerability OBB-3795475

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/12/08 12:0 a.m.5 views

PT-2022-27541 · Tenda · Tenda W6-S

Name of the Vulnerable Software and Affected Versions: Tenda W6-S version 1.0.0.4510 Description: A command injection issue was found in the tpi get ping output function at the "/goform/exeCommand" API endpoint. Recommendations: For Tenda W6-S version 1.0.0.4510, consider disabling the tpi get pi...

9.8CVSS9.6AI score0.02461EPSS
Exploits1References3
Rows per page
Query Builder