Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series

Overview FutureNet MA and IP-K series provided by Century Systems Co., Ltd. contain multiple vulnerabilities listed below. OS command Injection CWE-78 - CVE-2025-54763 Files or directories acessible to external parties CWE-552 - CVE-2025-58152 Chuya Hayakawa of 00One, Inc. reported these...

CVE-2025-58152

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. put the firmware version and the garbage collection information on the internal web page. With some crafted HTTP request, they can be accessed without authentication...

CVE-2025-58152

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. put the firmware version and the garbage collection information on the internal web page. With some crafted HTTP request, they can be accessed without authentication...

CVE-2025-54763

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. contain an OS command Injection vulnerability. A user who logs in to the Web UI of the product may execute an arbitrary OS command...

CVE-2025-54763

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. contain an OS command Injection vulnerability. A user who logs in to the Web UI of the product may execute an arbitrary OS command...

EUVD-2025-37304

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. contain an OS command Injection vulnerability. A user who logs in to the Web UI of the product may execute an arbitrary OS command...

CVE-2025-58152

The CVE-2025-58152 entry concerns Century Systems FutureNet MA and IP-K series devices. According to connected sources, the vulnerability involves exposing firmware version and garbage collection information on an internal web page, which can be accessed via crafted HTTP requests without authenti...

EUVD-2025-37302

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. put the firmware version and the garbage collection information on the internal web page. With some crafted HTTP request, they can be accessed without authentication...

CVE-2025-58152

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. put the firmware version and the garbage collection information on the internal web page. With some crafted HTTP request, they can be accessed without authentication...

Century Systems FutureNet MA-X series 安全漏洞

Century Systems FutureNet MA-X series is a series of industrial communication module devices from Century Systems, Japan. A security vulnerability exists in the Century Systems FutureNet MA-X series that originates from an internal web page that exposes firmware version and garbage collection...

Century Systems FutureNet MA-X series 操作系统命令注入漏洞

Century Systems FutureNet MA-X series is a series of industrial communication module devices from Century Systems, Japan. An operating system command injection vulnerability exists in the Century Systems FutureNet MA-X series, which stems from an OS command injection vulnerability in the Web UI...

EUVD-2008-6419

Malware in sbrugna...

EUVD-2024-36123

Malicious code in bioql PyPI...

EUVD-2025-5804

Malicious code in bioql PyPI...

EUVD-2024-45180

Malicious code in bioql PyPI...

EUVD-2025-5806

Malicious code in bioql PyPI...

CVE-2024-36475

FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. contain an active debug code vulnerability. If a user who knows how to use the debug function logs in to the product, the debug function may be used and an arbitrary OS command may be executed...

CVE-2025-25280

Buffer overflow vulnerability exists in FutureNet AS series Industrial Routers and FA series Protocol Conversion Machine provided by Century Systems Co., Ltd. If this vulnerability is exploited, a remote unauthenticated attacker may reboot the device by sending a specially crafted request...

CVE-2025-25280

Buffer overflow vulnerability exists in FutureNet AS series Industrial Routers and FA series Protocol Conversion Machine provided by Century Systems Co., Ltd. If this vulnerability is exploited, a remote unauthenticated attacker may reboot the device by sending a specially crafted request...

CVE-2025-24846

Authentication bypass vulnerability exists in FutureNet AS series Industrial Routers provided by Century Systems Co., Ltd. If this vulnerability is exploited, a remote unauthenticated attacker may obtain the device information such as MAC address by sending a specially crafted request...