CVE-2026-6737

creationtimestamp| type| source ---|---|--- 2026-05-08 05:14:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlcxwup3u62t...

CVE-2026-6737

The CVE-2026-6737 entry concerns AsusPTPFilter used by ASUS Precision Touchpad. It describes an Exposed IOCTL with Insufficient Access Control that allows a local user to bypass driver security, potentially exposing restricted touchpad data or rendering the touchpad unusable through crafted IOCTL...

MINI-6737-V458-P349

Bulletin has no description...

CVE-2025-6737

creationtimestamp| type| source ---|---|--- 2025-08-25 17:17:58+00:00| seen| Telegram/c2sVjsKXRd3rbozGfGJ2aauDxMNvrQ0k8uK80YwVizJpogI...

CVE-2025-6737

Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions...

CVE-2007-6737

FTPServer.py in pyftpdlib before 0.2.0 does not increment the attemptedlogins count for a USER command that specifies an invalid username, which makes it easier for remote attackers to obtain access via a brute-force attack...

CVE-2024-6737

creationtimestamp| type| source ---|---|--- 2024-07-15 05:58:16+00:00| seen| https://t.me/cvedetector/832...

Ubuntu 24.04 LTS. : GNU C Library vulnerability (USN-6737-2)

The remote Ubuntu 24.04 LTS. host has packages installed that are affected by a vulnerability as referenced in the USN-6737-2 advisory. USN-6737-1 fixed a vulnerability in the GNU C Library. This update provides the corresponding update for Ubuntu 24.04 LTS. Tenable has extracted the preceding...

Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : GNU C Library vulnerability (USN-6737-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6737-1 advisory. Charles Fol discovered that the GNU C Library iconv feature incorrectly handled certain input sequences. An attacker could use this issue to...

CVE-2023-6737

CVE-2023-6737 affects the WordPress plugin Enable Media Replace (all versions up to and including 4.1.4). It enables Reflected Cross-Site Scripting via the SHORTPIXEL_DEBUG parameter due to insufficient input sanitization and escaping. Exploitation requires an attacker to craft a payload that run...

CVE-2023-6737 Enable Media Replace <= 4.1.4 - Reflected Cross-Site Scripting

The Enable Media Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the SHORTPIXELDEBUG parameter in all versions up to, and including, 4.1.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

WordPress Enable Media Replace Plugin <= 4.1.4 is vulnerable to Cross Site Scripting (XSS)

Software Enable Media Replace Type Plugin Vulnerable versions = 4.1.4 Fixed in 4.1.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-6737 Patch priority Medium CVSS severity Medium 7.1 Developer ShortPixel PSID 6b527c26ad78 Credits Nex Team Required privilege...

部分MediaTek芯片 安全漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company MediaTek. A security vulnerability exists in some MediaTek chips, which stems from a local privilege escalation due to a lack of privilege checking in vow. The following products are affected: MT6580, MT6735, MT6737, MT6739,...

CVE-2017-6737

creationtimestamp| type| source ---|---|--- 2023-06-14 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-12-24 20:27:41+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/2971329 2025-02-23 02:10:16+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2026-02-02...

The vulnerability of decoders for ALAC files from microprogramming software for MediaTek’s MT6570, MT6580, MT6735, and MT6737 chips allows attackers to enhance their privileges.

The vulnerability of ALAC-file decoders in microprogramming software for MediaTek’s MT6570, MT6580, MT6735, and MT6737 chips is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow attackers to gain increased privileges...

CVE-2020-6737

CVE-2020-6737 entry is rejected/not used and does not represent an active vulnerability.

CVE-2020-6737

...

CVE-2019-6737

CVE-2019-6737 affects Bitdefender SafePay 23.0.10.34. The root cause is improper handling of the TIScript openFile method, enabling an attacker-controlled arbitrary file write and remote code execution, with user interaction required (visiting a malicious page or opening a malicious file). Docume...

CVE-2017-6737

A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected system or to remotely execute code. An attacker could exploit this vulnerability by sending a crafted SNMP packet to the affected device. The vulnerability is due to a...

CVE-2017-6737

CVE-2017-6737 is a Cisco SNMP remote code execution vulnerability affecting the SNMP subsystem in Cisco IOS and IOS XE. The issue arises from a buffer overflow in the SNMP handling code that could allow an authenticated, remote attacker to execute arbitrary code or cause a system reload by sendin...