Lucene search
K

532 matches found

RedhatCVE
RedhatCVE
added 2025/12/16 12:26 a.m.10 views

CVE-2025-14693

A vulnerability has been found in Ugreen DH2100+ up to 5.3.0. This affects an unknown function of the component USB Handler. Such manipulation leads to symlink following. The attack can be executed directly on the physical device. The exploit has been disclosed to the public and may be used. It i...

7CVSS6AI score0.00205EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/16 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the failure to protect dstdev access with an RCU, which could lead to reuse after release...

6.1AI score0.00172EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/13 8:16 a.m.30 views

CVE-2025-36753 SWD Interface Open on Growatt ShineLan-X

The SWD debug interface on the Growatt ShineLan-X communication dongle is available by default, allowing an attacker to attain debug access to the device and to extracting secrets or domains from within the device...

8.6CVSS0.00279EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/13 12:0 a.m.7 views

Growatt ShineLan-X 安全漏洞

Growatt ShineLan-X is a data logger for a photovoltaic inverter from Growatt, a Chinese company. A security vulnerability exists in the Growatt ShineLan-X that originates from an undocumented backup account and could result in full access to the device...

9.8CVSS6.6AI score0.00299EPSS
Exploits0References2
OSV
OSV
added 2025/11/28 10:17 a.m.8 views

CLSA-2025-1764325063 libblockdev: Fix of CVE-2025-6019

CVE-2025-6019: don't allow suid and dev set on fs resize...

7CVSS7.3AI score0.00433EPSS
Exploits18References1
Vulnrichment
Vulnrichment
added 2025/11/25 7:30 a.m.3 views

CVE-2025-59371

An authentication bypass vulnerability has been identified in the IFTTT integration feature. A remote, authenticated attacker could leverage this vulnerability to potentially gain unauthorized access to the device. This vulnerability does not affect Wi-Fi 7 series models. Refer to the 'Security...

7.5CVSS6.6AI score0.00735EPSS
Exploits0References1
CVE
CVE
added 2025/11/25 7:30 a.m.29 views

CVE-2025-59371

CVE-2025-59371 describes an authentication bypass in the ASUS Router’s IFTTT integration. A remote, authenticated attacker could exploit the flaw to potentially gain unauthorized access to the device. The vulnerability is characterized by a network attack vector with low attack complexity and req...

7.5CVSS6.6AI score0.00735EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/24 12:0 a.m.9 views

PT-2025-47957

Name of the Vulnerable Software and Affected Versions Tuya SDK version 6.5.0 Tuya Smart application Smartlife application Description A Cross-Site Request Forgery CSRF issue exists in the OAuth implementation of the Tuya SDK. This affects the Tuya Smart and Smartlife mobile applications, as well ...

8.8CVSS6.3AI score0.00135EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/11/19 10:23 a.m.4 views

CVE-2025-41734

An unauthenticated remote attacker can execute arbitrary php files and gain full access of the affected devices...

9.8CVSS7.6AI score0.00469EPSS
Exploits0References1
CVE
CVE
added 2025/11/19 12:0 a.m.16 views

CVE-2025-63224

The CVE-2025-63224 entry concerns the Itel DAB Encoder (IDEnc build 25aec8d). The root cause is improper JWT validation across devices, enabling authentication bypass: an attacker with a valid JWT from one device can authenticate as an admin on any other device running the same firmware. This lea...

10CVSS6.7AI score0.00735EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2025/11/18 11:15 a.m.7 views

CVE-2025-41734

An unauthenticated remote attacker can execute arbitrary php files and gain full access of the affected devices...

9.8CVSS0.00469EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/18 10:18 a.m.4 views

CVE-2025-41734 Unauthenticated Local File Inclusion in php module

An unauthenticated remote attacker can execute arbitrary php files and gain full access of the affected devices...

9.8CVSS7.4AI score0.00469EPSS
Exploits0References1
CVE
CVE
added 2025/11/18 10:18 a.m.23 views

CVE-2025-41734

CVE-2025-41734 affects METZ CONNECT EWIO2-M and EWIO2-BM devices. Public sources corroborate unauthenticated remote attackers can execute arbitrary PHP files and gain full control of affected devices through web/server flaws, enabling remote code execution and complete device compromise. The comm...

9.8CVSS7.4AI score0.00469EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.6 views

JVC VN-T216VPRU 安全漏洞

The JVC VN-T216VPRU is a camera from JVC USA. A security vulnerability exists in the JVC VN-T216VPRU that stems from a directory traversal issue in the checkcgi endpoint, which could lead to reading arbitrary files on the device...

8.7CVSS6.8AI score0.00918EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not properly using the RCU to protect dstdev access, which could lead to reuse after release...

6.1AI score0.00194EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/11/12 12:0 a.m.3 views

PT-2025-46645

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw where accesses to dst-dev were not protected using Read-Copy-Update RCU. This issue was addressed by utilizing RCU in functions such as sk setup caps, s...

6.2CVSS7.4AI score0.00188EPSS
Exploits0
Fedora
Fedora
added 2025/10/30 4:36 a.m.8 views

[SECURITY] Fedora 42 Update: qt6-qtmultimedia-6.9.3-1.fc42

The Qt Multimedia module provides a rich feature set that enables you to easily take advantage of a platforms multimedia capabilites and hardware. This ranges from the playback and recording of audio and video content to the use of available devices like cameras and radios...

9.4CVSS6.9AI score0.00204EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-5952

Malware in sbrugna...

6.9CVSS6.4AI score0.00299EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2018-17021

Malware in sbrugna...

7.2CVSS6.4AI score0.00392EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-18095

Malware in sbrugna...

7.1CVSS6.7AI score0.00835EPSS
Exploits0References2
Rows per page
Query Builder