CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2025/12/02 6:15 p.m.•1 views

CVE-2025-60854

9.8CVSS0.00153EPSS

OSV•added 2025/12/02 6:15 p.m.•1 views

CVE-2025-60854

9.8CVSS5.7AI score0.00153EPSS

CVE•added 2025/12/02 12:0 a.m.•6 views

CVE-2025-60854

CVE-2025-60854 affects D-Link R15 (AX1500) prior to 1.20.02. The vulnerability allows command injection in httpd by manipulating the model name parameter during a password change on the web administrator page. The CVSS v3.1 base score is 9.8 (CRITICAL) with network attack vector, no user interact...

9.8CVSS7.3AI score0.00153EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/12/02 12:0 a.m.•2 views

PT-2025-48741

Name of the Vulnerable Software and Affected Versions D-Link R15 AX1500 versions prior to 1.20.02 Description A flaw exists in D-Link R15 AX1500 that allows for command injection. The issue occurs due to manipulation of the model name parameter during a password change request on the web...

9.8CVSS7AI score0.00153EPSS

Exploits0References6

Cvelist•added 2025/12/02 12:0 a.m.•3 views

CVE-2025-60854

0.00153EPSS

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-27567

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00089EPSS

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-27074

Malicious code in bioql PyPI...

8.6CVSS6.8AI score0.00419EPSS

RedhatCVE•added 2025/09/11 12:16 a.m.•8 views

CVE-2025-29089

An issue in TP-Link AX10 Ax1500 v.1.3.10 Build 20230130 allows a remote attacker to obtain sensitive information...

7.5CVSS6.8AI score0.00089EPSS

NVD•added 2025/09/09 7:15 p.m.•1 views

CVE-2025-29089

An issue in TP-Link AX10 Ax1500 v.1.3.10 Build 20230130 allows a remote attacker to obtain sensitive information...

7.5CVSS0.00089EPSS

Positive Technologies•added 2025/09/09 12:0 a.m.•2 views

PT-2025-36912

Name of the Vulnerable Software and Affected Versions: TP-Link AX10 Ax1500 version 1.3.10 Build 20230130 Description: An issue in TP-Link AX10 Ax1500 allows a remote attacker to obtain sensitive information. Recommendations: At the moment, there is no information about a newer version that contai...

7.5CVSS6.2AI score0.00089EPSS

Exploits0References4

Cvelist•added 2025/09/09 12:0 a.m.•5 views

CVE-2025-29089

An issue in TP-Link AX10 Ax1500 v.1.3.10 Build 20230130 allows a remote attacker to obtain sensitive information...

0.00089EPSS

CVE•added 2025/09/09 12:0 a.m.•11 views

CVE-2025-29089

The CVE-2025-29089 entry concerns TP-Link AX10 Ax1500 (v1.3.10 Build 20230130). Affected component is the router's information handling that enables a remote attacker to obtain sensitive information. Public sources describe an information-disclosure vulnerability caused by a flaw in explicit tran...

7.5CVSS6.1AI score0.00089EPSS

Vulnrichment•added 2025/09/09 12:0 a.m.•2 views

CVE-2025-29089

An issue in TP-Link AX10 Ax1500 v.1.3.10 Build 20230130 allows a remote attacker to obtain sensitive information...

6AI score0.00089EPSS

RedhatCVE•added 2025/09/08 7:31 a.m.•4 views

CVE-2025-9961

An authenticated attacker may remotely execute arbitrary code via the CWMP binary on the devices AX10 and AX1500. The exploit can only be conducted via a Man-In-The-Middle MITM attack. This issue affects AX10 V1/V1.2/V2/V2.6/V3/V3.6: before 1.2.1; AX1500 V1/V1.20/V1.26/V1.60/V1.80/V2.60/V3.6:...

8.6CVSS7.7AI score0.00419EPSS

Exploits1References1

NVD•added 2025/09/06 7:15 a.m.•2 views

CVE-2025-9961

8.6CVSS0.00419EPSS

Cvelist•added 2025/09/06 6:50 a.m.•5 views

CVE-2025-9961 Authenticated RCE by CWMP binary

8.6CVSS0.00419EPSS

Vulnrichment•added 2025/09/06 6:50 a.m.•1 views

CVE-2025-9961 Authenticated RCE by CWMP binary

8.6CVSS7.3AI score0.00419EPSS