Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2426 matches found

OSV
OSVadded 2024/05/03 2:15 a.m.3 views

CVE-2023-32172

Unified Automation UaGateway OPC UA Server Use-After-Free Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is required to exploit this vulnerability. The...

6.5CVSS5.8AI score0.01374EPSS
Exploits0References2
OSV
OSVadded 2024/05/03 2:15 a.m.3 views

CVE-2023-32173

Unified Automation UaGateway AddServer XML Injection Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is required to exploit this vulnerability when the...

5.8CVSS5.8AI score
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2024/05/03 2:15 a.m.2 views

CVE-2023-32171

Unified Automation UaGateway OPC UA Server Null Pointer Dereference Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is required to exploit this...

6.5CVSS5.8AI score0.01356EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2024/05/03 2:15 a.m.11 views

CVE-2023-32172

Unified Automation UaGateway OPC UA Server Use-After-Free Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is required to exploit this vulnerability. The...

6.5CVSS5.8AI score0.01374EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2024/05/03 2:15 a.m.1 views

CVE-2023-32171

Unified Automation UaGateway OPC UA Server Null Pointer Dereference Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is required to exploit this...

6.5CVSS5.9AI score0.01356EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2024/05/03 2:15 a.m.4 views

CVE-2023-32173

Unified Automation UaGateway AddServer XML Injection Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is required to exploit this vulnerability when the...

5.8CVSS5.8AI score0.01171EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2024/05/03 2:15 a.m.1 views

CVE-2023-32168

D-Link D-View showUser Improper Authorization Privilege Escalation Vulnerability. This vulnerability allows remote attackers to escalate privileges on affected installations of D-Link D-View. Authentication is required to exploit this vulnerability. The specific flaw exists within the showUser...

8.8CVSS5.8AI score0.01633EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2024/05/03 2:15 a.m.3 views

CVE-2023-32166

D-Link D-View uploadFile Directory Traversal Arbitrary File Creation Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of D-Link D-View. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

8.1CVSS6AI score0.74302EPSS
Exploits0References3
NVD
NVDadded 2024/05/03 2:15 a.m.17 views

CVE-2023-32167

D-Link D-View uploadMib Directory Traversal Arbitrary File Creation or Deletion Vulnerability. This vulnerability allows remote attackers to create and delete arbitrary files on affected installations of D-Link D-View. Authentication is required to exploit this vulnerability. The specific flaw...

6.5CVSS6.5AI score0.76504EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2024/05/03 2:15 a.m.2 views

CVE-2023-27333

TP-Link Archer AX21 tmpServer Command 0x422 Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Archer AX21 routers. Authentication is required to exploit this...

6.8CVSS7.1AI score0.00738EPSS
Exploits0References2
OSV
OSVadded 2024/05/03 2:15 a.m.3 views

CVE-2023-27333

TP-Link Archer AX21 tmpServer Command 0x422 Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Archer AX21 routers. Authentication is required to exploit this...

6.8CVSS6.3AI score0.00738EPSS
Exploits0References1
NVD
NVDadded 2024/05/03 2:15 a.m.10 views

CVE-2023-27333

TP-Link Archer AX21 tmpServer Command 0x422 Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Archer AX21 routers. Authentication is required to exploit this...

6.8CVSS7.2AI score0.00738EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/05/03 2:14 a.m.20 views

CVE-2023-50225 TP-Link TL-WR902AC dm_fillObjByStr Stack-based Buffer Overflow Remote Code Execution Vulnerability

TP-Link TL-WR902AC dmfillObjByStr Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link TL-WR902AC routers. Authentication is required to exploit this vulnerability. The...

6.8CVSS7.2AI score0.00537EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/05/03 2:14 a.m.21 views

CVE-2023-50225 TP-Link TL-WR902AC dm_fillObjByStr Stack-based Buffer Overflow Remote Code Execution Vulnerability

TP-Link TL-WR902AC dmfillObjByStr Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link TL-WR902AC routers. Authentication is required to exploit this vulnerability. The...

6.8CVSS7.3AI score0.00537EPSS
Exploits0References2
CVE
CVEadded 2024/05/03 2:14 a.m.59 views

CVE-2023-50225

CVE-2023-50225 affects TP-Link TL-WR902AC. The vulnerability is a stack-based buffer overflow in libcmm.so caused by improper validation of the length of user-supplied data, allowing network-adjacent attackers to execute code with root privileges. Exploitation requires authentication and is descr...

6.8CVSS7.1AI score0.00537EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2024/05/03 2:14 a.m.65 views

CVE-2023-50219

CVE-2023-50219 affects Inductive Automation Ignition, specifically the RunQuery deserialization pathway. The flaw permits deserialization of untrusted data due to inadequate validation in the RunQuery class, enabling remote code execution with SYSTEM privileges. Authentication is required to expl...

8.8CVSS9AI score0.01501EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2024/05/03 2:14 a.m.74 views

CVE-2023-50218

CVE-2023-50218 affects Inductive Automation Ignition, specifically the ModuleInvoke class, where unvalidated user-supplied data can be deserialized, enabling remote code execution with SYSTEM privileges. The vulnerability is network-accessible (attack vector: NETWORK) with low initial access requ...

8.8CVSS9AI score0.55031EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2024/05/03 2:14 a.m.31 views

CVE-2023-44448 TP-Link Archer A54 libcmm.so dm_fillObjByStr Stack-based Buffer Overflow Remote Code Execution Vulnerability

TP-Link Archer A54 libcmm.so dmfillObjByStr Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Archer A54 routers. Authentication is required to exploit this...

6.8CVSS7.3AI score0.00583EPSS
Exploits0References1
CVE
CVEadded 2024/05/03 2:13 a.m.51 views

CVE-2023-44412

The CVE-2023-44412 issue affects D-Link D-View’s addDv7Probe function, where improper restriction of XML External Entity (XXE) references allows an unauthenticated attacker to cause the XML parser to access a crafted URI and embed its contents, enabling information disclosure in the SYSTEM contex...

8.2CVSS7.7AI score0.83681EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/05/03 2:13 a.m.14 views

CVE-2023-42130 A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability

A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability. This vulnerability allows remote attackers to read and delete arbitrary files on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific fla...

8.3CVSS6.6AI score0.02066EPSS
Exploits1References2
Rows per page
Query Builder