CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

CVE-2026-36616

Mercusys AC12G EU V1 with firmware AC12GEUV1200909 contains hardcoded WiFi driver credentials including a RADIUS shared secret, WPS test key, and default PSK embedded in the production firmware binary...

5.9CVSS5.8AI score0.00016EPSS

Exploits0References1

NVD•added 2026/06/03 6:16 p.m.•10 views

CVE-2026-36616

5.9CVSS0.00016EPSS

Exploits0References1

EUVD•added 2026/06/03 12:0 a.m.•11 views

EUVD-2026-34154

5.8AI score0.00016EPSS

Exploits0References1

Positive Technologies•added 2026/06/03 12:0 a.m.•8 views

PT-2026-46003

Mercusys AC12G EU V1 with firmware AC12GEU V1 200909 contains hardcoded WiFi driver credentials including a RADIUS shared secret, WPS test key, and default PSK embedded in the production firmware binary...

5.8AI score0.00016EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-48916

Malicious code in bioql PyPI...

8.5CVSS6.5AI score0.0004EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-28025

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01947EPSS

Exploits1References2

BDU FSTEC•added 2025/07/24 12:0 a.m.•1 views

The vulnerability of the uploadFWBinary method in the network management system for monitoring industrial networks of Siemens SINEC NMS allows a intruder to gain unauthorized access to file writing and execute arbitrary code.

The vulnerability of the uploadFWBinary method in the network management system for monitoring industrial networks of Siemens SINEC NMS is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor, operating...

9CVSS7.9AI score0.0172EPSS

Exploits0References3Affected Software1

RedhatCVE•added 2025/05/23 8:1 a.m.•7 views

CVE-2024-29941

Insecure storage of the ICT MIFARE and DESFire encryption keys in the firmware binary allows malicious actors to create credentials for any site code and card number that is using the default ICT encryption...

8CVSS7.2AI score0.00064EPSS

Exploits0References1

RedhatCVE•added 2025/02/04 10:44 p.m.•4 views

CVE-2024-8070

CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that exposes test credentials in the firmware binary...

8.5CVSS7AI score0.0004EPSS

Exploits0References1

NVD•added 2024/10/13 8:15 p.m.•4 views

CVE-2024-8070

CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that exposes test credentials in the firmware binary...

8.5CVSS0.0004EPSS

Exploits0References1

Vulnrichment•added 2024/10/13 7:50 p.m.•7 views

CVE-2024-8070

CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that exposes test credentials in the firmware binary...

8.5CVSS7AI score0.0004EPSS

Exploits0References1

Vulnrichment•added 2023/05/09 6:58 p.m.•10 views

CVE-2021-26365

Certain size values in firmware binary headers could trigger out of bounds reads during signature validation, leading to denial of service or potentially limited leakage of information about out-of-bounds memory contents...

8.8AI score0.00511EPSS

Exploits0References1

OSV•added 2022/07/14 1:15 p.m.•2 views

CVE-2022-28377

On Verizon 5G Home LVSKIHP InDoorUnit IDU 3.4.66.162 and OutDoorUnit ODU 3.33.101.0 devices, the CRTC and ODU RPC endpoints rely on a static account username/password for access control. This password can be generated via a binary included in the firmware, after ascertaining the MAC address of th...

7.5CVSS5.8AI score0.00286EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by