48 matches found
EUVD-2021-12934
Malware in sbrugna...
EUVD-2025-27258
Malicious code in bioql PyPI...
EUVD-2025-27588
Malicious code in bioql PyPI...
EUVD-2023-45700
Malicious code in bioql PyPI...
CVE-2025-47415
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CRESTRON TOUCHSCREENS x70 allows Relative Path Traversal.This issue affects TOUCHSCREENS x70: from 3.000.0110.001 before 3.001.0031.001. Confirmed Affected Hardware: TSW-760, TSW-1060 Confirmed Affected...
CVE-2025-47415
Summary (CVE-2025-47415): CRESTRON TOUCHSCREENS x70 are affected by a path-traversal vulnerability. Affected hardware: TSW-760 and TSW-1060. Affected firmware: 3.000.0110.001 and earlier. Fixed firmware: 3.001.0031.001. The issue allows relative path traversal and is limited to network-accessible...
CVE-2025-47415 RECWAVE Filepath Traversal
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CRESTRON TOUCHSCREENS x70 allows Relative Path Traversal.This issue affects TOUCHSCREENS x70: from 3.000.0110.001 before 3.001.0031.001. Confirmed Affected Hardware: TSW-760, TSW-1060 Confirmed Affected...
CVE-2025-47416
A vulnerability exists in the ConsoleFindCommandMatchList function in libsymproc. so imported by ctpd that may lead to unauthorized execution of an attacker-defined file that gets prioritized by the ConsoleFindCommandMatchList. A third-party researcher discovered that the...
CVE-2025-47416 ConsoleFindCommandMatchList
A vulnerability exists in the ConsoleFindCommandMatchList function in libsymproc. so imported by ctpd that may lead to unauthorized execution of an attacker-defined file that gets prioritized by the ConsoleFindCommandMatchList. A third-party researcher discovered that the...
CVE-2025-47416
CVE-2025-47416 affects Crestron touch panels TSW-760 and TSW-1060. The vulnerability resides in the ConsoleFindCommandMatchList function in libsymproc.so imported by ctpd, which may lead to unauthorized execution of an attacker-defined file prioritized by ConsoleFindCommandMatchList. The issue is...
PT-2025-36735
Name of the Vulnerable Software and Affected Versions: TSW-760 versions prior to 3.001.0031.001 TSW-1060 versions prior to 3.001.0031.001 Description: A vulnerability exists in the ConsoleFindCommandMatchList function within libsymproc.so imported by ctpd that may allow an attacker to execute an...
PT-2025-36922
Name of the Vulnerable Software and Affected Versions: CRESTRON TOUCHSCREENS x70 versions 3.000.0110.001 through 3.001.0030.000 Description: A path traversal vulnerability exists in CRESTRON TOUCHSCREENS x70, allowing relative path traversal. This issue affects TSW-760 and TSW-1060 hardware runni...
CVE-2021-26113
A use of a one-way hash with a predictable salt vulnerability CWE-760 in FortiWAN before 4.5.9 may allow an attacker who has previously come in possession of the password file to potentially guess passwords therein stored...
CVE-2023-41183
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-41183
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-41183
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-41183 NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-41183
The CVE-2023-41183 issue affects NETGEAR Orbi 760 routers, where the SOAP API implementation lacks authentication, enabling network-adjacent attackers to bypass authentication and access protected functionality. The NVD/NIST records (and ZDI) confirm an authentication bypass with CVSSv3.0 metrics...
CVE-2023-41183 NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
NETGEAR Orbi RBS760 安全漏洞
The NETGEAR Orbi 760 is a router for NETGEAR's tri-band Wi-Fi Mesh system. The NETGEAR Orbi 760 suffers from an authentication bypass vulnerability for which no detailed vulnerability details have been provided...