4837 matches found
CVE-2025-9577 TOTOLINK X2000R Administrative shadow.sample default credentials
A security flaw has been discovered in TOTOLINK X2000R up to 2.0.0. The affected element is an unknown function of the file /etc/shadow.sample of the component Administrative Interface. The manipulation results in use of default credentials. Attacking locally is a requirement. Attacks of this...
CVE-2025-9577 TOTOLINK X2000R Administrative shadow.sample default credentials
A security flaw has been discovered in TOTOLINK X2000R up to 2.0.0. The affected element is an unknown function of the file /etc/shadow.sample of the component Administrative Interface. The manipulation results in use of default credentials. Attacking locally is a requirement. Attacks of this...
CVE-2025-9576
A vulnerability was identified in seeedstudio ReSpeaker LinkIt7688. Impacted is an unknown function of the file /etc/shadow of the component Administrative Interface. The manipulation leads to use of default credentials. An attack has to be approached locally. A high degree of complexity is neede...
CVE-2025-9576 seeedstudio ReSpeaker Administrative shadow default credentials
A vulnerability was identified in seeedstudio ReSpeaker LinkIt7688. Impacted is an unknown function of the file /etc/shadow of the component Administrative Interface. The manipulation leads to use of default credentials. An attack has to be approached locally. A high degree of complexity is neede...
CVE-2025-9576 seeedstudio ReSpeaker Administrative shadow default credentials
A vulnerability was identified in seeedstudio ReSpeaker LinkIt7688. Impacted is an unknown function of the file /etc/shadow of the component Administrative Interface. The manipulation leads to use of default credentials. An attack has to be approached locally. A high degree of complexity is neede...
CVE-2025-58322
NAVER MYBOX Explorer for Windows before 3.0.8.133 allows a local attacker to escalate privileges to NT AUTHORITY\SYSTEM by invoking arbitrary DLLs due to improper privilege checks...
CVE-2025-58322
NAVER MYBOX Explorer for Windows prior to v3.0.8.133 is affected by a local privilege escalation caused by improper privilege checks, allowing a local attacker to escalate to NT AUTHORITY\SYSTEM by invoking arbitrary DLLs. The issue is tied to the DLL-loading/privilige-check flow within the appli...
PT-2025-35125
Name of the Vulnerable Software and Affected Versions seeedstudio ReSpeaker LinkIt7688 affected versions not specified Description A vulnerability exists in seeedstudio ReSpeaker LinkIt7688, impacting an unknown function within the Administrative Interface component’s /etc/shadow file. This...
Seeedstudio ReSpeaker LinkIt7688 安全漏洞
Seeedstudio ReSpeaker LinkIt7688 is a voice development board from Seeedstudio, China. A security vulnerability exists in the Seeedstudio ReSpeaker LinkIt7688 that stems from the use of default credentials and could lead to a local attack...
CVE-2025-43882
Dell ThinOS 10, versions prior to 250810.0127, contains an Unverified Ownership vulnerability. A local low-privileged attacker could potentially exploit this vulnerability leading to Unauthorized Access...
Linux Distros Unpatched Vulnerability : CVE-2025-2149
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function nnqSigmoid of the component Quantized...
Linux Distros Unpatched Vulnerability : CVE-2025-6270
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as critical, has been found in HDF5 up to 1.14.6. Affected by this issue is the function H5FSsectfindnode of the file...
Linux Distros Unpatched Vulnerability : CVE-2020-15309
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in wolfSSL before 4.5.0, when single precision is not employed. Local attackers can conduct a cache-timing attack against public key...
CVE-2025-9383
A security vulnerability has been detected in FNKvision Y215 CCTV Camera 10.194.120.40. This issue affects the function crypt of the file /etc/passwd. The manipulation leads to use of weak hash. The attack can only be performed from a local environment. The complexity of an attack is rather high...
CVE-2025-9474
A vulnerability was detected in Mihomo Party up to 1.8.1 on macOS. Affected is the function enableSysProxy of the file src/main/sys/sysproxy.ts of the component Socket Handler. The manipulation results in creation of temporary file with insecure permissions. The attack requires a local approach...
Mihomo Party 安全漏洞
Mihomo Party is a web proxy tool from the Chinese company Mihomo Party. A security vulnerability exists in Mihomo Party 1.8.1 and earlier versions, which stems from improperly set permissions on temporary files and could lead to a local attack...
Linux Distros Unpatched Vulnerability : CVE-2025-5642
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as problematic has been found in Radare2 5.9.9. Affected is the function rconspalinit in the library /libr/cons/pal.c of the componen...
CVE-2025-9394
A flaw has been found in PoDoFo 1.1.0-dev. This issue affects the function PdfTokenizer::DetermineDataType of the file src/podofo/main/PdfTokenizer.cpp of the component PDF Dictionary Parser. Executing manipulation can lead to use after free. It is possible to launch the attack on the local host...
CVE-2025-9389
A vulnerability was identified in vim 9.1.0000. Affected is the function memmoveavxunalignederms of the file memmove-vec-unaligned-erms.S. The manipulation leads to memory corruption. The attack needs to be performed locally. The exploit is publicly available and might be used. Some users are not...
DEBIAN-CVE-2025-9385
A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fixipv6checksums of the file editpacket.c of the component tcprewrite. This manipulation causes use after free. The attack is restricted to local execution. The exploit has been published and may be used...