Lucene search
K

897 matches found

RedhatCVE
RedhatCVE
added 2025/11/14 12:1 a.m.3 views

CVE-2025-60673

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDMZSettings' functionality, where the 'IPAddress' parameter in prog.cgi is stored in NVRAM and later used by librcm.so to construct iptables commands...

6.5CVSS8.2AI score0.03489EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/13 9:31 p.m.5 views

EUVD-2025-175374

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDMZSettings' functionality, where the 'IPAddress' parameter in prog.cgi is stored in NVRAM and later used by librcm.so to construct iptables commands...

7.7AI score0.03489EPSS
Exploits1References5
NVD
NVD
added 2025/11/13 6:15 p.m.11 views

CVE-2025-60700

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1FW102B02 within the prog.cgi and librcm.so binaries. The sub4455BC function in prog.cgi stores user-supplied SetDMZSettings/IPAddress values in NVRAM via nvramsafeset"dmzipaddr", .... These values are later...

6.5CVSS0.0273EPSS
Exploits1References4
OSV
OSV
added 2025/11/13 6:15 p.m.4 views

CVE-2025-60700

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1FW102B02 within the prog.cgi and librcm.so binaries. The sub4455BC function in prog.cgi stores user-supplied SetDMZSettings/IPAddress values in NVRAM via nvramsafeset"dmzipaddr", .... These values are later...

6.5CVSS6.2AI score0.0273EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/11/13 12:0 a.m.10 views

CVE-2025-60700

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1FW102B02 within the prog.cgi and librcm.so binaries. The sub4455BC function in prog.cgi stores user-supplied SetDMZSettings/IPAddress values in NVRAM via nvramsafeset"dmzipaddr", .... These values are later...

0.0273EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/11/13 12:0 a.m.7 views

CVE-2025-60673

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDMZSettings' functionality, where the 'IPAddress' parameter in prog.cgi is stored in NVRAM and later used by librcm.so to construct iptables commands...

0.03489EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.4 views

PT-2025-46883

Name of the Vulnerable Software and Affected Versions D-Link DIR-882 Router firmware versions prior to DIR882A1 FW102B02 Description A command injection issue exists in the D-Link DIR-882 Router firmware. The sub 4455BC function within the prog.cgi binary stores user-supplied...

6.5CVSS8.2AI score0.0273EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/11/13 12:0 a.m.4 views

CVE-2025-60700

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1FW102B02 within the prog.cgi and librcm.so binaries. The sub4455BC function in prog.cgi stores user-supplied SetDMZSettings/IPAddress values in NVRAM via nvramsafeset"dmzipaddr", .... These values are later...

8.1AI score0.0273EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/11/13 12:0 a.m.4 views

CVE-2025-60673

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDMZSettings' functionality, where the 'IPAddress' parameter in prog.cgi is stored in NVRAM and later used by librcm.so to construct iptables commands...

7.8AI score0.03489EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

Siemens SIMATIC S7-1500 Out-of-bounds Write (CVE-2019-11360)

A buffer overflow in iptables-restore in netfilter iptables 1.8.2 allows an attacker to at least crash the program or potentially gain code execution via a specially crafted iptables-save file. This is related to addparamtoargv in xshared.c. This plugin only works with Tenable.ot. Please visit...

4.2CVSS7AI score0.01809EPSS
Exploits1References4
Veracode
Veracode
added 2025/11/03 8:10 a.m.7 views

OS Command Injection

github.com/chaos-mesh/chaos-mesh is vulnerable to OS command injection. The vulnerability is due to improper input validation in the cleanIptables mutation, which allows an unauthenticated in-cluster attacker to execute arbitrary commands and achieve remote code execution across the cluster...

9.8CVSS9.1AI score0.03269EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-2254

Malware in sbrugna...

2.1CVSS7AI score0.00423EPSS
Exploits0References16
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2003-0076

Malware in sbrugna...

7.5CVSS6.4AI score0.01961EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-8210

Malware in sbrugna...

5.5CVSS5.4AI score0.00432EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-0090

Malware in sbrugna...

6.5CVSS6.7AI score0.03703EPSS
Exploits1References17
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-10403

Malware in sbrugna...

7.5CVSS7AI score0.00852EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-6313

Malware in sbrugna...

8.2CVSS8.1AI score0.03411EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-8001

Malware in sbrugna...

5CVSS6.6AI score0.05489EPSS
Exploits0References31
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-2554

Malware in sbrugna...

7.5CVSS7.6AI score0.02359EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-8770

Malware in sbrugna...

9.1CVSS9AI score0.04248EPSS
Exploits1References13
Rows per page
Query Builder