Lucene search
K

73 matches found

NVD
NVD
added 2025/03/16 10:15 p.m.13 views

CVE-2025-2349

A vulnerability was found in IROAD Dash Cam FX2 up to 20250308. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /etc/passwd of the component Password Hash Handler. The manipulation leads to password hash with insufficient computational...

4.7CVSS0.00165EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/03/16 9:31 p.m.8 views

CVE-2025-2349 IROAD Dash Cam FX2 Password Hash passwd weak password hash

A vulnerability was found in IROAD Dash Cam FX2 up to 20250308. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /etc/passwd of the component Password Hash Handler. The manipulation leads to password hash with insufficient computational...

3.1CVSS4AI score0.00165EPSS
Exploits0References3
CVE
CVE
added 2025/03/16 9:31 p.m.84 views

CVE-2025-2349

The CVE describes a vulnerability in IROAD Dash Cam FX2 (up to 20250308) affecting an unknown function in the Password Hash Handler that processes /etc/passwd. The issue leads to a password hash with insufficient computational effort. Attack requires local network access and is characterized as h...

4.7CVSS4AI score0.00165EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2025/03/11 9:32 a.m.7 views

CVE-2025-2119

A vulnerability was found in Thinkware Car Dashcam F800 Pro up to 20250226. It has been declared as problematic. This vulnerability affects unknown code of the component Device Registration Handler. The manipulation leads to use of default credentials. It is possible to launch the attack on the...

2CVSS6.8AI score0.00245EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/11 4:53 a.m.18 views

CVE-2025-2114

A vulnerability, which was classified as problematic, has been found in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 7. This issue affects some unknown processing of the file /WebPages/Adm/OperatorStop.asp of the component Reset Password Interface. The manipulation of t...

6.3CVSS7AI score0.00581EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/10 12:31 p.m.8 views

CVE-2025-2149 PyTorch Quantized Sigmoid Module nnq_Sigmoid initialization

A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function nnqSigmoid of the component Quantized Sigmoid Module. The manipulation of the argument scale/zeropoint leads to improper initialization. The attack needs to be approached...

2.5CVSS7AI score0.00235EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/03/10 12:0 a.m.21 views

Amazon Linux 2 : gcc10-binutils (ALAS-2025-2772)

The version of gcc10-binutils installed on the remote host is prior to 2.35.2-9. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2772 advisory. A vulnerability, which was classified as problematic, was found in GNU Binutils up to 2.43. This affects the function...

7.5CVSS5.2AI score0.00732EPSS
Exploits1References4
CVE
CVE
added 2025/03/09 1:31 p.m.67 views

CVE-2025-2122

The CVE-2025-2122 entry concerns Thinkware Car Dashcam F800 Pro (up to 20250226). Affected component: Connection Handler. Vulnerability type: denial of service caused by manipulation of the Connection Handler, with attack possible only on the local network. Exploitation is described as high compl...

5.3CVSS3.8AI score0.00715EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/03/09 1:31 p.m.6 views

CVE-2025-2122 Thinkware Car Dashcam F800 Pro Connection denial of service

A vulnerability classified as problematic was found in Thinkware Car Dashcam F800 Pro up to 20250226. Affected by this vulnerability is an unknown functionality of the component Connection Handler. The manipulation leads to denial of service. The attack can only be initiated within the local...

3.1CVSS6.7AI score0.00715EPSS
Exploits1References3
NVD
NVD
added 2025/03/09 9:15 a.m.9 views

CVE-2025-2119

A vulnerability was found in Thinkware Car Dashcam F800 Pro up to 20250226. It has been declared as problematic. This vulnerability affects unknown code of the component Device Registration Handler. The manipulation leads to use of default credentials. It is possible to launch the attack on the...

2CVSS0.00245EPSS
Exploits0References4
NVD
NVD
added 2025/03/03 7:15 p.m.12 views

CVE-2025-1878

A vulnerability has been found in i-Drive i11 and i12 up to 20250227 and classified as problematic. This vulnerability affects unknown code of the component WiFi. The manipulation leads to use of default password. Access to the local network is required for this attack to succeed. The complexity ...

3.1CVSS0.00271EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/03/03 7:0 p.m.16 views

CVE-2025-1878 i-Drive i11/i12 WiFi default password

A vulnerability has been found in i-Drive i11 and i12 up to 20250227 and classified as problematic. This vulnerability affects unknown code of the component WiFi. The manipulation leads to use of default password. Access to the local network is required for this attack to succeed. The complexity ...

3.1CVSS0.00271EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2025/02/17 5:15 a.m.7 views

CVE-2025-1376

A vulnerability classified as problematic was found in GNU elfutils 0.192. This vulnerability affects the function elfstrptr in the library /libelf/elfstrptr.c of the component eu-strip. The manipulation leads to denial of service. It is possible to launch the attack on the local host. The...

4.7CVSS6.5AI score0.00287EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/02/16 2:31 p.m.6 views

CVE-2025-1352 GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption

A vulnerability has been found in GNU elfutils 0.192 and classified as critical. This vulnerability affects the function libdwthreadtail in the library libdwalloc.c of the component eu-readelf. The manipulation of the argument w leads to memory corruption. The attack can be initiated remotely. Th...

5.1CVSS6.8AI score0.00614EPSS
Exploits1References7
Cvelist
Cvelist
added 2025/02/10 5:0 p.m.66 views

CVE-2025-1151 GNU Binutils ld xmemdup.c xmemdup memory leak

A vulnerability was found in GNU Binutils 2.43. It has been rated as problematic. This issue affects the function xmemdup of the file xmemdup.c of the component ld. The manipulation leads to memory leak. The attack may be initiated remotely. The complexity of an attack is rather high. The...

3.1CVSS0.0056EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/02/10 2:31 p.m.7 views

CVE-2025-1149 GNU Binutils ld xmalloc.c xstrdup memory leak

A vulnerability was found in GNU Binutils 2.43. It has been classified as problematic. This affects the function xstrdup of the file libiberty/xmalloc.c of the component ld. The manipulation leads to memory leak. It is possible to initiate the attack remotely. The complexity of an attack is rathe...

3.1CVSS4.3AI score0.00531EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/01/20 2:0 a.m.3 views

CVE-2024-13524 obsproject OBS Studio untrusted search path

A vulnerability has been found in obsproject OBS Studio up to 30.0.2 on Windows and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to untrusted search path. The attack needs to be approached locally. The complexity of an attack is...

4.5CVSS4.6AI score0.00199EPSS
Exploits0References4
NVD
NVD
added 2024/12/16 8:15 p.m.17 views

CVE-2024-12667

A vulnerability was found in InvoicePlane up to 1.6.1 and classified as problematic. Affected by this issue is some unknown functionality of the file /invoices/view. The manipulation leads to session expiration. The attack may be launched remotely. The complexity of an attack is rather high. The...

6.3CVSS0.00511EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/06/04 2:49 p.m.21 views

CVE-2024-28996 SolarWinds Platform SWQL Injection Vulnerability

The SolarWinds Platform was determined to be affected by a SWQL Injection Vulnerability. Attack complexity is high for this vulnerability...

7.5CVSS7.1AI score0.00349EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2024/04/10 3:30 p.m.13 views

Magento Open Source allows Improper Input Validation

Adobe Commerce versions 2.4.6-p4, 2.4.5-p6, 2.4.4-p7, 2.4.7-beta3 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction, but the attack...

9CVSS7.8AI score0.01418EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder