Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

RedhatCVE
RedhatCVEadded 2025/12/19 5:30 a.m.4 views

CVE-2025-68462

Freedombox before 25.17.1 does not set proper permissions for the backups-data directory, allowing the reading of dump files of databases...

3.2CVSS6.9AI score0.00096EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/18 6:30 a.m.3 views

EUVD-2025-204034

Freedombox before 25.17.1 does not set proper permissions for the backups-data directory, allowing the reading of dump files of databases...

3.2CVSS6.4AI score0.00096EPSS
Exploits0References2
NVD
NVDadded 2025/12/18 6:15 a.m.5 views

CVE-2025-68462

Freedombox before 25.17.1 does not set proper permissions for the backups-data directory, allowing the reading of dump files of databases...

3.2CVSS0.00096EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2025/12/18 6:15 a.m.1 views

CVE-2025-68462

Freedombox before 25.17.1 does not set proper permissions for the backups-data directory, allowing the reading of dump files of databases...

3.2CVSS5.8AI score0.00096EPSS
Exploits0References3
OSV
OSVadded 2025/12/18 6:15 a.m.4 views

UBUNTU-CVE-2025-68462

Freedombox before 25.17.1 does not set proper permissions for the backups-data directory, allowing the reading of dump files of databases...

3.2CVSS5.8AI score0.00096EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/12/18 5:14 a.m.25 views

CVE-2025-68462

Freedombox before 25.17.1 does not set proper permissions for the backups-data directory, allowing the reading of dump files of databases...

3.2CVSS0.00096EPSS
Exploits0References1
CVE
CVEadded 2025/12/18 5:14 a.m.11 views

CVE-2025-68462

CVE-2025-68462 affects Freedombox prior to 25.17.1. The vulnerability arises from improper permissions on the backups-data directory, which can allow reading of database dump files stored there. The CVSS baseline indicates a local attack with high complexity and no privileges required, yielding a...

3.2CVSS6.5AI score0.00096EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/12/18 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2025-68462

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Freedombox before 25.17.1 does not set proper permissions for the backups-data directory, allowing the reading of dump files of databases. CVE-2025-68462 Note...

3.2CVSS5.8AI score0.00096EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/12/18 12:0 a.m.2 views

Freedombox 安全漏洞

Freedombox is a Debian-based freeware home server operating system. A security vulnerability exists in Freedombox versions prior to 25.17.1 that stems from improperly set permissions on the backup data directory, which could result in database dump files being read...

3.2CVSS6.4AI score0.00096EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/18 12:0 a.m.5 views

PT-2025-51993

Name of the Vulnerable Software and Affected Versions Freedombox versions prior to 25.17.1 Description Freedombox versions prior to 25.17.1 do not establish appropriate permissions for the backups-data directory. This allows unauthorized access to database dump files. Recommendations Update to...

3.2CVSS6.4AI score0.00096EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-17766

Malware in sbrugna...

5.3CVSS5.3AI score0.0214EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-25073

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection fr...

5.3CVSS5.7AI score0.0214EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/22 3:47 p.m.7 views

CVE-2020-25073

FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service or from PageKite is considered a local connection. This affects both the freedombox and plinth packages of some...

5.3CVSS6.3AI score0.0214EPSS
Exploits1
OSV
OSVadded 2020/09/02 2:15 a.m.2 views

CVE-2020-25073

FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service or from PageKite is considered a local connection. This affects both the freedombox and plinth packages of some...

5.3CVSS6.1AI score0.0214EPSS
Exploits1References1
NVD
NVDadded 2020/09/02 2:15 a.m.17 views

CVE-2020-25073

FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service or from PageKite is considered a local connection. This affects both the freedombox and plinth packages of some...

5.3CVSS5.1AI score0.0214EPSS
Exploits1References1
Prion
Prionadded 2020/09/02 2:15 a.m.17 views

Code injection

FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service or from PageKite is considered a local connection. This affects both the freedombox and plinth packages of some...

5CVSS5.1AI score0.0214EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCveadded 2020/09/02 2:15 a.m.21 views

CVE-2020-25073

FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service or from PageKite is considered a local connection. This affects both the freedombox and plinth packages of some...

5.3CVSS6.2AI score0.0214EPSS
Exploits1References2
OSV
OSVadded 2020/09/02 2:15 a.m.3 views

UBUNTU-CVE-2020-25073

FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service or from PageKite is considered a local connection. This affects both the freedombox and plinth packages of some...

5.3CVSS5.8AI score0.0214EPSS
Exploits1References3
CVE
CVEadded 2020/09/02 1:26 a.m.87 views

CVE-2020-25073

This CVE affects FreedomBox (through 20.13) and the Plinth package on some Linux distros when the Apache mod_status module is enabled. The root cause is that a Tor onion service or PageKite connection is treated as local, allowing remote attackers to read sensitive data from the Apache /server-st...

5.3CVSS5AI score0.0214EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2020/09/02 1:26 a.m.23 views

CVE-2020-25073

FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service or from PageKite is considered a local connection. This affects both the freedombox and plinth packages of some...

5.1AI score0.0214EPSS
Exploits1References1
Rows per page
Query Builder