Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/18 12:0 a.m.9 views

Siemens RUGGEDCOM RST2428P Improper Access Control (CVE-2025-60876)

BusyBox wget thru 1.3.7 accepted raw CR 0x0D/LF 0x0A and other C0 control bytes in the HTTP request-target path/query, allowing the request line to be split and attacker-controlled headers to be injected. To preserve the HTTP/1.1 request-line shape METHOD SP request-target SP HTTP/1.1, a raw spac...

6.5CVSS7.1AI score0.00258EPSS
Exploits1References3
OSV
OSV
added 2026/04/11 2:5 p.m.4 views

OESA-2026-1880 busybox security update

BusyBox combines tiny versions of many common UNIX utilities into a single small executable. It provides replacements for most of the utilities you usually find in GNU fileutils, shellutils, etc. It provides a fairly complete environment for any small or embedded system. Security Fixes: BusyBox...

6.5CVSS7.1AI score0.00258EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.7 views

SUSE: Security Advisory (SUSE-SU-2026:0872-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS5.8AI score0.02793EPSS
Exploits6References11
Wolfi
Wolfi
added 2026/01/27 1:48 a.m.9 views

CVE-2025-60876 vulnerabilities

Vulnerabilities for packages: busybox...

6.5CVSS5.9AI score0.00258EPSS
Exploits1
Chainguard
Chainguard
added 2026/01/27 1:17 a.m.8 views

CVE-2025-60876 vulnerabilities

Vulnerabilities for packages: busybox...

6.5CVSS5.9AI score0.00258EPSS
Exploits1
OpenVAS
OpenVAS
added 2026/01/26 12:0 a.m.3 views

SUSE: Security Advisory (SUSE-SU-2026:0236-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.9AI score0.00258EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2026/01/26 12:0 a.m.1 views

openSUSE Security Advisory (SUSE-SU-2026:0236-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.9AI score0.00258EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/01/24 12:0 a.m.3 views

SUSE SLED15 / SLES15 Security Update : busybox (SUSE-SU-2026:0235-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0235-1 advisory. Security issues: - CVE-2025-46394: Fixed tar hidden files via escape sequence CVE-2025-46394, bsc1241661 -...

6.5CVSS5.7AI score0.00258EPSS
Exploits1References9
EUVD
EUVD
added 2025/11/11 12:17 a.m.0 views

EUVD-2025-60876

Malicious code in ade-menjes73-sluey npm...

6.6AI score
Exploits0
Circl
Circl
added 2025/11/10 10:22 p.m.7 views

CVE-2025-60876

creationtimestamp| type| source ---|---|--- 2025-11-10 22:22:36+00:00| seen| https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5cnsr65gkx2 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/...

6.5CVSS7.1AI score0.00258EPSS
Exploits1References2
NVD
NVD
added 2025/11/10 8:15 p.m.4 views

CVE-2025-60876

BusyBox wget thru 1.3.7 accepted raw CR 0x0D/LF 0x0A and other C0 control bytes in the HTTP request-target path/query, allowing the request line to be split and attacker-controlled headers to be injected. To preserve the HTTP/1.1 request-line shape METHOD SP request-target SP HTTP/1.1, a raw spac...

6.5CVSS0.00258EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2025/11/10 8:15 p.m.3 views

CVE-2025-60876

BusyBox wget thru 1.3.7 accepted raw CR 0x0D/LF 0x0A and other C0 control bytes in the HTTP request-target path/query, allowing the request line to be split and attacker-controlled headers to be injected. To preserve the HTTP/1.1 request-line shape METHOD SP request-target SP HTTP/1.1, a raw spac...

6.5CVSS7AI score0.00258EPSS
Exploits1References6
CVE
CVE
added 2025/11/10 12:0 a.m.102 views

CVE-2025-60876

CVE-2025-60876 affects BusyBox wget up to 1.3.7. The issue stems from accepting raw CR (0x0D)/LF (0x0A) and other C0 control bytes in the HTTP request-target, allowing the request-line to be split and attacker-controlled headers to be injected. To preserve the HTTP/1.1 request-line shape, a raw s...

6.5CVSS6.5AI score0.00258EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/10 12:0 a.m.2 views

CVE-2025-60876

BusyBox wget thru 1.3.7 accepted raw CR 0x0D/LF 0x0A and other C0 control bytes in the HTTP request-target path/query, allowing the request line to be split and attacker-controlled headers to be injected. To preserve the HTTP/1.1 request-line shape METHOD SP request-target SP HTTP/1.1, a raw spac...

6.2AI score0.00258EPSS
Exploits1References3
Rows per page
Query Builder