Lucene search
K

55268 matches found

OSV
OSV
added 2026/07/02 12:0 a.m.3 views

UBUNTU-CVE-2026-53350

In the Linux kernel, the following vulnerability has been resolved: ASoC: wmadsp: Fix NULL dereference when removing firmware controls In wmadspcontrolremove check that the priv pointer is not NULL before attempting to cleanup what it points to. When csdsp creates a control it calls...

5.7AI score0.00161EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-53350

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: wmadsp: Fix NULL dereference when removing firmware controls In wmadspcontrolremove check that the priv pointer is not NULL before attempting to cleanup...

6AI score0.00161EPSS
Exploits0References3
OSV
OSV
added 2026/07/01 11:43 p.m.3 views

MINI-M99X-8G46-FW77

Bulletin has no description...

5.3CVSS5.7AI score0.00282EPSS
Exploits0
NVD
NVD
added 2026/07/01 5:16 p.m.8 views

CVE-2026-58452

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a...

8.8CVSS0.02422EPSS
Exploits0References3
NVD
NVD
added 2026/07/01 5:16 p.m.8 views

CVE-2026-58454

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a remote code execution vulnerability that allows authenticated attackers to execute arbitrary shell scripts by writing to the writable persistent JFFS2 storage path and triggering execution through the authenticated HTT...

7.7CVSS0.00523EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/01 3:33 p.m.6 views

EUVD-2026-41049

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerability that allows network-adjacent attackers to gain unauthorized access by using the default admin username with an empty password accepted by the anykaipc HTTP service on port 80...

9.8CVSS5.8AI score0.0169EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/07/01 3:31 p.m.32 views

CVE-2026-58452 JAIOTlink C492A-W6 4.8.30.57701411 OS Command Injection via SetMAC Endpoint

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a...

8.8CVSS0.02422EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/07/01 3:31 p.m.7 views

CVE-2026-58452

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a...

8.8CVSS6.4AI score0.02422EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/07/01 3:31 p.m.17 views

CVE-2026-58452

The CVE covers JAIOTlink C492A-W6 Wi‑Fi IP cameras running firmware 4.8.30.57701411. Affected component is the NetSDK/Factory SetMAC HTTP PUT endpoint. The root cause is an OS command injection where a malicious Wireless parameter (starting with a MAC-like prefix, then a semicolon and a shell pay...

8.8CVSS6.4AI score0.02422EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/07/01 1:32 p.m.5 views

CVE-2026-53350

In the Linux kernel, the following vulnerability has been resolved: ASoC: wmadsp: Fix NULL dereference when removing firmware controls In wmadspcontrolremove check that the priv pointer is not NULL before attempting to cleanup what it points to. When csdsp creates a control it calls...

5.7AI score0.00161EPSS
Exploits0
Nuclei
Nuclei
added 2026/07/01 3:36 a.m.155 views

TP-Link Archer C20 - Authentication Bypass

A vulnerability in the TP-Link Archer C20 router with firmware version V6.6230412 and earlier permits unauthorized individuals to bypass authentication on interfaces under the /cgi directory. When adding a Referer header with value "http://tplinkwifi.net" to requests, the router will recognize th...

7.6AI score0.03211EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/30 12:0 a.m.9 views

Axis Communications AXIS OS Improper Validation of Syntactic Correctness of Input (CVE-2024-6173)

A researcher in the AXIS OS Bug Bounty Program has found that a Guard Tour VAPIX API parameter accepted arbitrary values, which could let an attacker block access to the guard tour configuration page in the web interface of the Axis device. Axis has released patched AXIS OS versions for this flaw...

6.5CVSS6AI score0.00391EPSS
Exploits0References2
Nvidia
Nvidia
added 2026/06/30 12:0 a.m.6 views

Security Bulletin: NVIDIA Networking BlueField and ConnectX - June 2026

NVIDIA has released a software update for NVIDIA® Networking BlueField and ConnectX. To protect your system, download and install the latest NVIDIA firmware. Refer to the Security Updates section for updated versions and download links for each product. Go to NVIDIA Product Security. Details The...

9CVSS6.4AI score0.00269EPSS
Exploits0Affected Software2
RedhatCVE
RedhatCVE
added 2026/06/29 1:23 p.m.5 views

CVE-2026-53206

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds check for firmware runtime memory Validate that the firmware runtime memory specified in the image header is properly aligned and sized to hold the firmware image. This prevents errors during memory...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References4
NVD
NVD
added 2026/06/29 12:16 p.m.7 views

CVE-2026-13563

A vulnerability has been found in Edimax EW-7478APC 1.04. This impacts the function formL2TPSetup of the file /goform/formL2TPSetup of the component POST Request Handler. Such manipulation of the argument L2TPUserName leads to stack-based buffer overflow. It is possible to launch the attack...

9CVSS0.00445EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/29 10:35 a.m.7 views

CVE-2026-53289

A flaw was found in the Linux kernel's ice network driver. This vulnerability allows a local attacker to trigger a NULL pointer dereference by initiating an NVM Non-Volatile Memory firmware update while the driver is in a transitional state. This can lead to a kernel crash, resulting in a Denial ...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4
NVD
NVD
added 2026/06/29 7:16 a.m.6 views

CVE-2025-0824

Lack of validation for firmware update in Hitachi Hitachi Virtual Storage Platform One Block 23, 24, 26, 28. This issue affects Hitachi Virtual Storage Platform One Block 23, 24, 26, 28: before DKCMAIN A3-04-21-40/00, ESM A3-04-21/00...

3.7CVSS0.00083EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/29 5:34 a.m.6 views

EUVD-2025-210367

Lack of validation for firmware update in Hitachi Hitachi Virtual Storage Platform One Block 23, 24, 26, 28. This issue affects Hitachi Virtual Storage Platform One Block 23, 24, 26, 28: before DKCMAIN A3-04-21-40/00, ESM A3-04-21/00...

3.7CVSS5.8AI score0.00083EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/29 5:34 a.m.34 views

CVE-2025-0824 lack of validation for firmware update in Hitachi Virtual Storage

Lack of validation for firmware update in Hitachi Hitachi Virtual Storage Platform One Block 23, 24, 26, 28. This issue affects Hitachi Virtual Storage Platform One Block 23, 24, 26, 28: before DKCMAIN A3-04-21-40/00, ESM A3-04-21/00...

3.7CVSS0.00083EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/29 5:34 a.m.6 views

CVE-2025-0824

Lack of validation for firmware update in Hitachi Hitachi Virtual Storage Platform One Block 23, 24, 26, 28. This issue affects Hitachi Virtual Storage Platform One Block 23, 24, 26, 28: before DKCMAIN A3-04-21-40/00, ESM A3-04-21/00...

3.7CVSS5.8AI score0.00083EPSS
Exploits0References2
Rows per page
Query Builder