Lucene search
+L

143 matches found

RedhatCVE
RedhatCVE
added 2026/05/19 1:58 a.m.12 views

CVE-2026-8733

A vulnerability was found in Investintech SlimPDFReader up to 2.0.13. Affected by this vulnerability is the function sub3B4610 of the file SlimPDFReader.exe. The manipulation results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and...

7.5CVSS6AI score0.00261EPSS
Exploits0References1
NVD
NVD
added 2026/05/17 5:16 a.m.27 views

CVE-2026-8733

A vulnerability was found in Investintech SlimPDFReader up to 2.0.13. Affected by this vulnerability is the function sub3B4610 of the file SlimPDFReader.exe. The manipulation results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and...

7.5CVSS0.00261EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/17 4:30 a.m.9 views

CVE-2026-8733 Investintech SlimPDFReader SlimPDFReader.exe sub_3B4610 stack-based overflow

A vulnerability was found in Investintech SlimPDFReader up to 2.0.13. Affected by this vulnerability is the function sub3B4610 of the file SlimPDFReader.exe. The manipulation results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and...

7.5CVSS6.9AI score0.00261EPSS
Exploits0References4
CVE
CVE
added 2026/05/17 4:30 a.m.27 views

CVE-2026-8733

Investintech SlimPDFReader up to 2.0.13 is affected by a vulnerability in SlimPDFReader.exe, function sub_3B4610, causing a stack-based buffer overflow. The issue is exploitable remotely, and public exploits exist. The vendor notes the product is discontinued (no longer maintained). No remediatio...

7.5CVSS6.9AI score0.00261EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/17 4:30 a.m.23 views

EUVD-2026-30682

A vulnerability was found in Investintech SlimPDFReader up to 2.0.13. Affected by this vulnerability is the function sub3B4610 of the file SlimPDFReader.exe. The manipulation results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and...

7.5CVSS6.9AI score0.00261EPSS
Exploits0References4
NVD
NVD
added 2026/04/06 4:16 p.m.4 views

CVE-2024-14032

Twitch Studio version 0.114.8 and prior contain a privilege escalation vulnerability in its privileged helper tool that allows local attackers to execute arbitrary code as root by exploiting an unprotected XPC service. Attackers can invoke the installFromPath:toPath:withReply: method to overwrite...

8.5CVSS0.00177EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/04/03 5:0 p.m.7 views

CVE-2026-5352

A security vulnerability has been detected in Trendnet TEW-657BRM 1.00.1. This impacts the function Edit of the file /setup.cgi. Such manipulation of the argument pcdblist leads to os command injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used...

8.8CVSS6.4AI score0.04123EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/03 5:0 p.m.4 views

CVE-2026-5353

A vulnerability was detected in Trendnet TEW-657BRM 1.00.1. Affected is the function pingtest of the file /setup.cgi. Performing a manipulation of the argument c4IPAddr results in os command injection. Remote exploitation of the attack is possible. The exploit is now public and may be used. The...

8.8CVSS6.3AI score0.04778EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/03 5:0 p.m.4 views

CVE-2026-5354

A flaw has been found in Trendnet TEW-657BRM 1.00.1. Affected by this vulnerability is the function vpnconnect of the file /setup.cgi. Executing a manipulation of the argument policyname can lead to os command injection. The attack can be executed remotely. The exploit has been published and may ...

8.8CVSS6.4AI score0.04778EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/03 5:0 p.m.4 views

CVE-2026-5355

A vulnerability has been found in Trendnet TEW-657BRM 1.00.1. Affected by this issue is the function vpndrop of the file /setup.cgi. The manipulation of the argument policyname leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the...

8.8CVSS6.3AI score0.04778EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/03 5:0 p.m.5 views

CVE-2026-5351

A weakness has been identified in Trendnet TEW-657BRM 1.00.1. This affects the function addwpsclient of the file /setup.cgi. This manipulation of the argument wlenroleepin causes os command injection. The attack may be initiated remotely. The exploit has been made available to the public and coul...

8.8CVSS6.4AI score0.04457EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/03 4:59 p.m.7 views

CVE-2026-5350

A security flaw has been discovered in Trendnet TEW-657BRM 1.00.1. The impacted element is the function updatepcdb of the file /setup.cgi. The manipulation of the argument macpcdba results in stack-based buffer overflow. The attack can be launched remotely. The exploit has been released to the...

9CVSS7.8AI score0.00815EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/02 6:31 p.m.5 views

EUVD-2026-18410

A flaw has been found in Trendnet TEW-657BRM 1.00.1. Affected by this vulnerability is the function vpnconnect of the file /setup.cgi. Executing a manipulation of the argument policyname can lead to os command injection. The attack can be executed remotely. The exploit has been published and may ...

6.5CVSS6.4AI score0.04778EPSS
Exploits1References5
EUVD
EUVD
added 2026/04/02 6:31 p.m.4 views

EUVD-2026-18408

A vulnerability was detected in Trendnet TEW-657BRM 1.00.1. Affected is the function pingtest of the file /setup.cgi. Performing a manipulation of the argument c4IPAddr results in os command injection. Remote exploitation of the attack is possible. The exploit is now public and may be used. The...

6.5CVSS6.3AI score0.04778EPSS
Exploits1References5
EUVD
EUVD
added 2026/04/02 6:31 p.m.7 views

EUVD-2026-18406

A security vulnerability has been detected in Trendnet TEW-657BRM 1.00.1. This impacts the function Edit of the file /setup.cgi. Such manipulation of the argument pcdblist leads to os command injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used...

6.5CVSS6.4AI score0.04123EPSS
Exploits1References5
NVD
NVD
added 2026/04/02 5:16 p.m.6 views

CVE-2026-5354

A flaw has been found in Trendnet TEW-657BRM 1.00.1. Affected by this vulnerability is the function vpnconnect of the file /setup.cgi. Executing a manipulation of the argument policyname can lead to os command injection. The attack can be executed remotely. The exploit has been published and may ...

8.8CVSS0.04778EPSS
Exploits1References4
CVE
CVE
added 2026/04/02 4:45 p.m.14 views

CVE-2026-5355

Summary: CVE-2026-5355 affects Trendnet TEW-657BRM 1.00.1. The issue is in the vpn_drop function within /setup.cgi where misusing the policy_name parameter enables OS command injection. This allows remote execution of commands. Documents indicate the exploit has been disclosed and may be used. Th...

8.8CVSS6.3AI score0.04778EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/04/02 4:45 p.m.28 views

CVE-2026-5355 Trendnet TEW-657BRM setup.cgi vpn_drop os command injection

A vulnerability has been found in Trendnet TEW-657BRM 1.00.1. Affected by this issue is the function vpndrop of the file /setup.cgi. The manipulation of the argument policyname leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the...

6.5CVSS0.04778EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/04/02 4:30 p.m.3 views

CVE-2026-5354 Trendnet TEW-657BRM setup.cgi vpn_connect os command injection

A flaw has been found in Trendnet TEW-657BRM 1.00.1. Affected by this vulnerability is the function vpnconnect of the file /setup.cgi. Executing a manipulation of the argument policyname can lead to os command injection. The attack can be executed remotely. The exploit has been published and may ...

6.5CVSS6.4AI score0.04778EPSS
Exploits1References4
CVE
CVE
added 2026/04/02 4:30 p.m.14 views

CVE-2026-5354

Trendnet TEW-657BRM 1.00.1 is affected by CVE-2026-5354 due to a flaw in the vpn_connect function in /setup.cgi where manipulating the policy_name argument enables remote os command injection. Exploitation is possible without user interaction and remote access, with the exploit published and pote...

8.8CVSS6.4AI score0.04778EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder