CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-6557

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00473EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-6546

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00472EPSS

Exploits0References2

RedhatCVE•added 2025/03/19 12:30 a.m.•17 views

CVE-2025-25685

An issue was discovered in GL-INet Beryl AX GL-MT3000 v4.7.0. Attackers are able to download arbitrary files from the device's file system via adding symbolic links on an external drive used as a samba share...

7.5CVSS6.9AI score0.00473EPSS

Exploits0References1

RedhatCVE•added 2025/03/19 12:28 a.m.•15 views

CVE-2025-25684

A lack of validation in the path parameter /download of GL-INet Beryl AX GL-MT3000 v4.7.0 allows attackers to download arbitrary files from the device's file system via a crafted POST request...

7.5CVSS7AI score0.00472EPSS

Exploits0References1

NVD•added 2025/03/17 5:15 p.m.•12 views

CVE-2025-25684

A lack of validation in the path parameter /download of GL-INet Beryl AX GL-MT3000 v4.7.0 allows attackers to download arbitrary files from the device's file system via a crafted POST request...

7.5CVSS0.00472EPSS

Exploits0References1

NVD•added 2025/03/17 5:15 p.m.•9 views

CVE-2025-25685

7.5CVSS0.00473EPSS

Exploits0References1

CNNVD•added 2025/03/17 12:0 a.m.•3 views

GL.iNet Beryl AX GL-MT3000 安全漏洞

GL.iNet Beryl AX GL-MT3000 is a portable WiFi 6 router from China's Guanglian Zhitong GL.iNet. It is used to provide network connectivity and supports 2.5G network ports and a variety of features. A security vulnerability exists in GL.iNet Beryl AX GL-MT3000 version v4.7.0, which stems from...

7.5CVSS6.9AI score0.00473EPSS

Exploits0References2

CVE•added 2025/03/17 12:0 a.m.•59 views

CVE-2025-25684

CVE-2025-25684 affects GL.iNet Beryl AX GL-MT3000 (v4.7.0). A lack of validation in the /download path permits arbitrary file download from the device via a crafted POST request. Public references in the dataset confirm the vulnerability class as a path-traversal-like flaw enabling access to the ...

7.5CVSS6.9AI score0.00472EPSS

Exploits0References1

Cvelist•added 2025/03/17 12:0 a.m.•15 views

CVE-2025-25685

0.00473EPSS

Exploits0References1

Vulnrichment•added 2025/03/17 12:0 a.m.•7 views

CVE-2025-25684

A lack of validation in the path parameter /download of GL-INet Beryl AX GL-MT3000 v4.7.0 allows attackers to download arbitrary files from the device's file system via a crafted POST request...

6.5AI score0.00472EPSS

Exploits0References1

Vulnrichment•added 2025/03/17 12:0 a.m.•5 views

CVE-2025-25685

7AI score0.00473EPSS

Exploits0References1

CVE•added 2025/03/17 12:0 a.m.•56 views

CVE-2025-25685

CVE-2025-25685 affects GL.iNet Beryl AX GL-MT3000 (v4.7.0). The issue allows attackers to download arbitrary files from the device’s filesystem by adding symbolic links on an external drive that is exposed as a Samba share. Root cause described is related to the handling of symbolic links on the ...

7.5CVSS7AI score0.00473EPSS

Exploits0References1

CNNVD•added 2025/03/17 12:0 a.m.•4 views

GL.iNet Beryl AX GL-MT3000 安全漏洞

7.5CVSS6.8AI score0.00472EPSS

Exploits0References2

Cvelist•added 2025/03/17 12:0 a.m.•15 views

CVE-2025-25684

A lack of validation in the path parameter /download of GL-INet Beryl AX GL-MT3000 v4.7.0 allows attackers to download arbitrary files from the device's file system via a crafted POST request...

0.00472EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by