Lucene search
K

8 matches found

NVD
NVD
added 2026/06/24 5:17 a.m.11 views

CVE-2026-12850

Multiple OS command injection vulnerabilities exist in the libNetSetObj.so functionality of GeoVision GV-I/O Box 4E 2.09. A specially crafted network packet can lead to command execution. An attacker can send a network request to trigger this vulnerability. libNetSetObj.so is an internal library...

9.1CVSS0.0172EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/04 7:10 p.m.33 views

CVE-2026-41923 WDR201A WiFi Extender OS Command Injection via internet.cgi

WDR201A WiFi Extender HW V2.1, FW LFMZX28040922V1.02 contains an OS command injection vulnerability in the internet.cgi binary that allows unauthenticated remote attackers to execute arbitrary shell commands by injecting malicious input into the gateway POST parameter. Attackers can exploit...

9.3CVSS0.02615EPSS
Exploits0References3
OSV
OSV
added 2026/02/04 4:16 p.m.4 views

CVE-2025-70545

A stored cross-site scripting XSS vulnerability exists in the web management interface of the PPC Belden ONT 2K05X router running firmware v1.1.9206L. The Common Gateway Interface CGI component improperly handles user-supplied input, allowing a remote, unauthenticated attacker to inject arbitrary...

6.1CVSS5.8AI score0.00306EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : freerdp-2.1.1-5.el7 (AXSA:2021-2542:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2542:02 advisory. freerdp: improper client input validation for gateway connections allows to overwrite memory CVE-2021-41159 freerdp: improper region checks in all...

8.8CVSS5.6AI score0.01553EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 7 : freerdp-2.1.1-5.0.2.el7.AXS7 (AXSA:2024-8732:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8732:03 advisory. CVE-2021-41159: fix client out of memory CVEs: CVE-2021-41159 FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache...

8.8CVSS7.9AI score0.01346EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.10 views

The vulnerability of the control interface of the Citrix NetScaler Application Delivery Controller (formerly Citrix ADC) and the access control system for the virtual environment, Citrix NetScaler Gateway (formerly Citrix Gateway), allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the control plane of the Citrix NetScaler Application Delivery Controller previously Citrix ADC and the access control system for the virtual environment, Citrix NetScaler Gateway previously Citrix Gateway, is related to incorrect input of configuration data. Exploiting this...

9.6CVSS8AI score0.03653EPSS
Exploits0References2Affected Software2
RedHat Linux
RedHat Linux
added 2021/11/11 10:16 a.m.3 views

freerdp: improper client input validation for gateway connections allows to overwrite memory

A flaw was found in the FreeRDP client when it fails to validate input data when using gateway connections. This flaw could allow a malicious gateway to send a specially crafted input to a client leading to an out of bounds write in client memory. The highest threat from this flaw is that it coul...

8.8CVSS7.4AI score0.01346EPSS
Exploits0References4
OSV
OSV
added 2021/11/04 11:3 a.m.3 views

OESA-2021-1414 freerdp security update

A Remote Desktop Protocol Implementation Security Fixes: FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. All FreeRDP clients prior to version 2.4.1 using gateway connections fail to validate input data. A malicious gateway might allow client...

8.8CVSS6.9AI score0.01346EPSS
Exploits0References2
Rows per page
Query Builder