Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Cvelist
Cvelistadded 2026/05/05 3:23 p.m.29 views

CVE-2026-43069 Bluetooth: hci_ll: Fix firmware leak on error path

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcill: Fix firmware leak on error path Smatch reports: drivers/bluetooth/hcill.c:587 downloadfirmware warn: 'fw' from requestfirmware not released on lines: 544. In downloadfirmware, if requestfirmware succeeds but the...

0.00114EPSS
Exploits0References8
Debian CVE
Debian CVEadded 2024/05/22 8:19 a.m.19 views

CVE-2021-47479

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8712: fix use-after-free in rtl8712dlfw Syzbot reported use-after-free in rtl8712dlfw. The problem was in race condition between r871xudevremove -ndoopen callback. It's easy to see from crash log, that driver accesses...

7CVSS6.8AI score0.00228EPSS
Exploits0
CNVD
CNVDadded 2024/05/22 12:0 a.m.1 views

TOTOLINK CP450 download_firmware Method Command Injection Vulnerability

TOTOLINK CP450 is a wireless bridge from China Gion Electronics TOTOLINK. The TOTOLINK CP450 suffers from a command injection vulnerability that stems from the downloadfirmware method failing to properly filter constructed command special characters, commands, and so on. No detailed vulnerability...

7.3CVSS6.8AI score0.01171EPSS
Exploits1References1
CNNVD
CNNVDadded 2024/05/14 12:0 a.m.3 views

TOTOLINK CPE CP450 安全漏洞

TOTOLINK CP450 is a wireless bridge from China Gion Electronics TOTOLINK. The TOTOLINK CP450 suffers from a command injection vulnerability that stems from the downloadfirmware method failing to properly filter constructed command special characters, commands, and so on. No detailed vulnerability...

7.3CVSS7.5AI score0.01171EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2024/05/09 12:0 a.m.2 views

PT-2024-25740 · Totolink · Totolink Cp450

Name of the Vulnerable Software and Affected Versions: TOTOLINK CP450 version 4.1.0cu.747 B20191224 Description: A command injection issue was found in the download firmware function, which could potentially be exploited. Recommendations: For TOTOLINK CP450 version 4.1.0cu.747 B20191224, consider...

7.3CVSS7.5AI score0.01171EPSS
Exploits1References2
OSV
OSVadded 2024/02/06 1:15 a.m.2 views

CVE-2023-47353

An issue in the com.oneed.dvr.service.DownloadFirmwareService component of IMOU GO v1.0.11 allows attackers to force the download of arbitrary files...

8.8CVSS5.9AI score0.00292EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/02/06 12:0 a.m.13 views

CVE-2023-47353

An issue in the com.oneed.dvr.service.DownloadFirmwareService component of IMOU GO v1.0.11 allows attackers to force the download of arbitrary files...

8.8AI score0.00292EPSS
Exploits1References2
OSV
OSVadded 2021/10/05 9:15 p.m.2 views

CVE-2021-3625

Buffer overflow in Zephyr USB DFU DNLOAD. Zephyr versions = v2.5.0 contain Heap-based Buffer Overflow CWE-122. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-c3gr-hgvr-f363...

9.8CVSS5.5AI score
Exploits0References1
Rows per page
Query Builder