CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

349 matches found

NVD•added 2025/12/12 8:15 p.m.•2 views

CVE-2024-58314

Atcom 100M IP Phones firmware version 2.7.x.x contains an authenticated command injection vulnerability in the web configuration CGI script that allows attackers to execute arbitrary system commands. Attackers can inject shell commands through the 'cmd' parameter in webcgimain.cgi, enabling remot...

8.8CVSS0.00226EPSS

Exploits0References3

EUVD•added 2025/12/12 7:57 p.m.•3 views

EUVD-2024-55349

8.8CVSS8.6AI score0.00226EPSS

Exploits0References4

Positive Technologies•added 2025/12/12 12:0 a.m.•2 views

PT-2025-50974

Name of the Vulnerable Software and Affected Versions Atcom 100M IP Phones versions 2.7.x.x Description The software contains an authenticated command injection issue in the web configuration CGI script. This allows attackers to execute arbitrary system commands. The cmd parameter within the 'web...

8.8CVSS8.6AI score0.00226EPSS

Exploits0References6

OSV•added 2025/10/15 5:15 p.m.•2 views

CVE-2025-20350

A vulnerability in the web UI of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 running Cisco SIP Software could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to a buffer overflow...

7.5CVSS6.1AI score0.00041EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2005-4787

Malware in sbrugna...

5CVSS6.4AI score0.03021EPSS

Exploits0References13

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2007-5611

Malware in sbrugna...

7.1CVSS6.4AI score0.01211EPSS

Exploits1References7