17 matches found
EUVD-2025-9497
Malicious code in bioql PyPI...
CVE-2025-26055
An OS Command Injection vulnerability exists in the Infinxt iEdge 100 2.1.32 Troubleshoot module, specifically in the tracertVal parameter of the Tracert function...
CVE-2025-26054
Infinxt iEdge 100 2.1.32 is vulnerable to Cross Site Scripting XSS via the "Description" field during LAN configuration...
CVE-2025-26056
A command injection vulnerability exists in the Infinxt iEdge 100 2.1.32 in the Troubleshoot module "MTR" functionality. The vulnerability is due to improper validation of user-supplied input in the mtrIp parameter. An attacker can exploit this flaw to execute arbitrary operating system commands ...
CVE-2025-26054
Infinxt iEdge 100 2.1.32 is vulnerable to Cross Site Scripting XSS via the "Description" field during LAN configuration...
CVE-2025-26055
An OS Command Injection vulnerability exists in the Infinxt iEdge 100 2.1.32 Troubleshoot module, specifically in the tracertVal parameter of the Tracert function...
Infinxt iEdge 100 安全漏洞
Infinxt iEdge 100 is a next-generation secure SD-WAN appliance for small and medium-sized branch offices from Infinxt. A security vulnerability exists in the Infinxt iEdge 100 version 2.1.32, which stems from improper validation of user input for the mtrIp parameter in the MTR function of the...
PT-2025-14379 · Infinxt · Infinxt Iedge 100
Name of the Vulnerable Software and Affected Versions: Infinxt iEdge 100 version 2.1.32 Description: A command injection issue exists in the Troubleshoot module's "MTR" functionality due to improper validation of user-supplied input in the mtrIp parameter. This allows an attacker to execute...
CVE-2025-26056
A command injection vulnerability exists in the Infinxt iEdge 100 2.1.32 in the Troubleshoot module "MTR" functionality. The vulnerability is due to improper validation of user-supplied input in the mtrIp parameter. An attacker can exploit this flaw to execute arbitrary operating system commands ...
CVE-2025-26054
CVE-2025-26054 affects Infinxt iEdge 100 (version 2.1.32). The vulnerability is a Cross Site Scripting (XSS) flaw exploitable via the Description field during LAN configuration, caused by unsanitized user-controlled input in that field. CVSS v3.1 base score 5.4 (Medium) with Network attack vector...
PT-2025-14378 · Infinxt · Infinxt Iedge 100
Name of the Vulnerable Software and Affected Versions: Infinxt iEdge 100 version 2.1.32 Description: An OS Command Injection issue exists in the Troubleshoot module, specifically in the tracertVal parameter of the Tracert function. Recommendations: For Infinxt iEdge 100 version 2.1.32, consider...
CVE-2025-26055
An OS Command Injection vulnerability exists in the Infinxt iEdge 100 2.1.32 Troubleshoot module, specifically in the tracertVal parameter of the Tracert function...
Infinxt iEdge 100 跨站脚本漏洞
Infinxt iEdge 100 is a next-generation secure SD-WAN appliance for small and medium-sized branch offices from Infinxt. A cross-site scripting vulnerability exists in Infinxt iEdge 100 version 2.1.32, which originates from cross-site scripting in the description field in the LAN configuration...
CVE-2025-26056
A command injection vulnerability exists in the Infinxt iEdge 100 2.1.32 in the Troubleshoot module "MTR" functionality. The vulnerability is due to improper validation of user-supplied input in the mtrIp parameter. An attacker can exploit this flaw to execute arbitrary operating system commands ...
CVE-2025-26055
An OS Command Injection vulnerability exists in the Infinxt iEdge 100 2.1.32 Troubleshoot module, specifically in the tracertVal parameter of the Tracert function...
CVE-2025-26054
Infinxt iEdge 100 2.1.32 is vulnerable to Cross Site Scripting XSS via the "Description" field during LAN configuration...
Infinxt iEdge 100 安全漏洞
Infinxt iEdge 100 is a next-generation secure SD-WAN appliance for small and medium-sized branch offices from Infinxt. A security vulnerability exists in Infinxt iEdge 100 version 2.1.32, which stems from a command injection in the tracertVal parameter in the Tracert function...