Lucene search
K

415 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-18266

Malware in sbrugna...

7.8CVSS7.6AI score0.0087EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-1787

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00332EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-52273

Malicious code in bioql PyPI...

10CVSS6.5AI score0.01811EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43239

Malicious code in bioql PyPI...

8.2CVSS6.6AI score0.00476EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-0909

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00255EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.6 views

PT-2025-37763

Name of the Vulnerable Software and Affected Versions: FreePBX versions 17.0.19.11 through 17.0.20 Description: FreePBX is a web-based graphical user interface. Authenticated users of the Administrator Control Panel ACP can execute arbitrary shell commands by manipulating the framework module's...

8.7CVSS7.1AI score0.004EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/08 6:11 p.m.12 views

CVE-2012-10046 E-Mail Security Virtual Appliance learn-msg.cgi Command Injection

The E-Mail Security Virtual Appliance ESVA tested on version ESVA2057 contains an unauthenticated command injection vulnerability in the learn-msg.cgi script. The CGI handler fails to sanitize user-supplied input passed via the id parameter, allowing attackers to inject arbitrary shell commands...

9.3CVSS0.02929EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/08/01 12:0 a.m.6 views

PT-2025-31686 · Raidsonic · Ib-Nas5220 +1

Name of the Vulnerable Software and Affected Versions: Raidsonic NAS devices versions IB-NAS5220 and IB-NAS4220 Description: An OS command injection issue exists due to improper sanitization of user-supplied input. The timeHandler.cgi API endpoint is vulnerable, allowing remote attackers to injec...

9.3CVSS7.5AI score0.01968EPSS
Exploits0References7
Veracode
Veracode
added 2025/07/02 4:35 a.m.6 views

Unauthorized Command Execution

github.com/filebrowser/filebrowser, is vulnerable to unauthorized command execution.The vulnerability is due to improper enforcement of scope restrictions on the Command Execution feature, which allows an attacker to execute arbitrary shell commands outside their assigned scope and gain...

8CVSS8.4AI score0.00885EPSS
Exploits1References9Affected Software2
RedhatCVE
RedhatCVE
added 2025/05/23 5:42 a.m.7 views

CVE-2023-39517

Joplin is a free, open source note taking and to-do application. A Cross site scripting XSS vulnerability in affected versions allows clicking on an untrusted image link to execute arbitrary shell commands. The HTML sanitizer packages/renderer/htmlUtils.ts::sanitizeHtml preserves links. However,...

8.2CVSS6.1AI score0.00476EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:30 a.m.6 views

CVE-2023-38294

Certain software builds for the Itel Vision 3 Turbo Android device contain a vulnerable pre-installed app with a package name of com.transsion.autotest.factory versionCode='7', versionName='1.8.02203101027' that allows local third-party apps to execute arbitrary shell commands in its context syst...

6.1CVSS7.2AI score0.00173EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:23 a.m.9 views

CVE-2022-46649

Acemanager in ALEOS before version 4.16 allows a user with valid credentials to manipulate the IP logging operation to execute arbitrary shell commands on the device...

8.8CVSS7.7AI score0.02297EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:1 a.m.6 views

CVE-2019-8513

This issue was addressed with improved checks. This issue is fixed in macOS Mojave 10.14.4. A local user may be able to execute arbitrary shell commands...

7.8CVSS6.5AI score0.02919EPSS
Exploits4References1
Positive Technologies
Positive Technologies
added 2025/04/15 12:0 a.m.10 views

PT-2025-31839

Name of the Vulnerable Software and Affected Versions: Shenzhen Aitemi M300 Wi-Fi Repeater hardware model MT02 Description: An unauthenticated OS command injection vulnerability exists in the device. When configuring the device in Extender mode via its captive portal, the extap2g SSID field is...

9.4CVSS7.8AI score0.01078EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2025/03/31 2:39 p.m.17 views

CVE-2022-37061

All FLIR AX8 thermal sensor cameras version up to and including 1.46.16 are vulnerable to Remote Command Injection. This can be exploited to inject and execute arbitrary shell commands as the root user through the id HTTP POST parameter in the res.php endpoint. A successful exploit could allow th...

9.8CVSS9.7AI score0.99607EPSS
Exploits9References1
Amazon
Amazon
added 2025/03/06 12:0 a.m.6 views

Important: emacs

Issue Overview: A flaw was found in the Emacs text editor. Improper handling of custom "man" URI schemes allows attackers to execute arbitrary shell commands by tricking users into visiting a specially crafted website or an HTTP URL with a redirect. CVE-2025-1244 Affected Packages: emacs Issue...

8.8CVSS8.9AI score0.0256EPSS
Exploits0
NVD
NVD
added 2025/02/14 9:15 p.m.6 views

CVE-2025-0593

The vulnerability may allow a remote low priviledged attacker to run arbitrary shell commands by using lower-level functions to interact with the device...

8.8CVSS0.00728EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/02/14 12:0 a.m.4 views

SICK Lector8xx和SICK InspectorP8xx 安全漏洞

SICK Lector8xx and SICK InspectorP8xx are both products of SICK Germany.SICK Lector8xx is a 2D laser scanning barcode reader.SICK InspectorP8xx is a high performance 2D laser scanning sensor. A security vulnerability exists in SICK InspectorP8xx versions prior to 3.11.1 and SICK Lector8xx version...

8.8CVSS6.7AI score0.00728EPSS
Exploits0References6
NVD
NVD
added 2025/02/11 11:15 a.m.18 views

CVE-2025-24499

A vulnerability has been identified in SCALANCE WAB762-1 6GK5762-1AJ00-6AA0 All versions V3.0.0, SCALANCE WAM763-1 6GK5763-1AL00-7DA0 All versions V3.0.0, SCALANCE WAM763-1 ME 6GK5763-1AL00-7DC0 All versions V3.0.0, SCALANCE WAM763-1 US 6GK5763-1AL00-7DB0 All versions V3.0.0, SCALANCE WAM766-1...

7.5CVSS0.0082EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.12 views

Azure Linux 3.0 Security Update: perl-Module-ScanDeps (CVE-2024-10224)

The version of perl-Module-ScanDeps installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-10224 advisory. - Qualys discovered that if unsanitized input was used with the library Modules::ScanDeps, befor...

7.8CVSS7.6AI score0.08598EPSS
Exploits3References2
Rows per page
Query Builder