Lucene search
K

8849 matches found

RedhatCVE
RedhatCVE
added 2025/07/10 7:20 p.m.5 views

CVE-2025-37102

An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points. A successful exploitation could allow a remote attacker with elevated privileges to execute arbitrary commands on the underlying operating system as a highly privilege...

7.2CVSS8.3AI score0.01474EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/10 12:0 a.m.3 views

PT-2025-28991 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the networking subsystem. Specifically, a NULL dereference can occur in the rtnl create link function when dev-netdev ops is NULL, potentially...

5.8AI score0.00137EPSS
Exploits0References8
OSV
OSV
added 2025/07/09 6:49 p.m.6 views

CLSA-2025-1752086959 Update of ca-certificates

update to CKBI 2.74 from NSS 3.110 - updated certificates: - Certificate "Entrust.net Premium 2048 Secure Server CA" - Certificate "Entrust Root Certification Authority" - Certificate "AffirmTrust Commercial" - Certificate "AffirmTrust Networking" - Certificate "AffirmTrust Premium" - Certificate...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/07/09 12:0 a.m.8 views

Juniper Junos OS Vulnerability (JSA100053)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA100053 advisory. - An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a logical...

7.1CVSS5.6AI score0.00258EPSS
Exploits0References2
NVD
NVD
added 2025/07/08 8:15 p.m.8 views

CVE-2025-37103

Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone with knowledge of it to bypass normal device authentication. Successful exploitation could allow a remote attacker to gain administrative access to the system...

9.8CVSS0.01003EPSS
Exploits0References1
NVD
NVD
added 2025/07/08 7:15 p.m.5 views

CVE-2025-37102

An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points. A successful exploitation could allow a remote attacker with elevated privileges to execute arbitrary commands on the underlying operating system as a highly privilege...

7.2CVSS0.01474EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/08 7:9 p.m.3 views

CVE-2025-37103 Hardcoded Credential Exposure Allows Unauthorized Access in Web Interface

Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone with knowledge of it to bypass normal device authentication. Successful exploitation could allow a remote attacker to gain administrative access to the system...

9.8CVSS7.5AI score0.01003EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/08 7:9 p.m.11 views

CVE-2025-37103 Hardcoded Credential Exposure Allows Unauthorized Access in Web Interface

Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone with knowledge of it to bypass normal device authentication. Successful exploitation could allow a remote attacker to gain administrative access to the system...

9.8CVSS0.01003EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 7:9 p.m.34 views

CVE-2025-37103

CVE-2025-37103 affects HPE Networking Instant On Access Points. The description across sources confirms hard-coded login credentials allow bypass of normal device authentication, enabling a remote attacker to gain administrative access. Affected products include HPE Networking Instant On Access P...

9.8CVSS6.9AI score0.01003EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/08 7:8 p.m.11 views

CVE-2025-37102 Authenticated Command Injection Vulnerability In Instant On Command Line Interface

An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points. A successful exploitation could allow a remote attacker with elevated privileges to execute arbitrary commands on the underlying operating system as a highly privilege...

7.2CVSS0.01474EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/08 7:8 p.m.4 views

CVE-2025-37102 Authenticated Command Injection Vulnerability In Instant On Command Line Interface

An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points. A successful exploitation could allow a remote attacker with elevated privileges to execute arbitrary commands on the underlying operating system as a highly privilege...

7.2CVSS8.2AI score0.01474EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 7:8 p.m.24 views

CVE-2025-37102

CVE-2025-37102 is an authenticated command-injection vulnerability affecting the CLI of HPE Networking Instant On Access Points. The attack could allow a remote attacker with elevated privileges to run arbitrary commands on the underlying OS as a highly privileged user (CVSS 3.1 base 7.2, NETWORK...

7.2CVSS7.7AI score0.01474EPSS
Exploits0References1
OSV
OSV
added 2025/07/08 5:15 p.m.2 views

CVE-2025-49686

Null pointer dereference in Windows TCP/IP allows an authorized attacker to elevate privileges locally...

7.8CVSS5.7AI score0.00366EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/08 12:0 a.m.2 views

HPE Networking Instant On Access Points 安全漏洞

HPE Networking Instant On Access Points is a wireless network access point from HPE America. A security vulnerability exists in HPE Networking Instant On Access Points that stems from hard-coded login credentials that could lead to bypassing device authentication...

9.8CVSS7.7AI score0.01003EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.4 views

PT-2025-28659 · Hewlett Packard · Hpe Networking Instant On Access Points

Name of the Vulnerable Software and Affected Versions: HPE Networking Instant On Access Points affected versions not specified Description: An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points. Successful exploitation cou...

9CVSS7.3AI score0.01474EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.3 views

PT-2025-28660 · Hewlett Packard · Hpe Networking Instant On Access Points

Name of the Vulnerable Software and Affected Versions: HPE Networking Instant On Access Points versions 3.2.0 and earlier HPE Aruba Instant On Access Points versions 3.2.0.1 and earlier Aruba Instant On APs versions 3.2.0 and earlier Description: HPE Networking and Aruba Instant On Access Points...

10CVSS7.9AI score0.01003EPSS
Exploits0References30
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.9 views

PT-2025-73: NULL pointer dereference in Windows TCP/IP Driver

The Null pointer dereference vulnerability was discovered in Windows TCP/IP Driver. The vulnerability allows an authorized attacker to gain SYSTEM privileges. The affected products: Windows Server 2019 & Server 2019 Server Core installation Versions to 10.0.17763.7558 Windows 10 Version 1809 for...

7.8CVSS5.8AI score0.00366EPSS
Exploits0References1
OSV
OSV
added 2025/07/04 3:20 p.m.8 views

USN-7591-5 linux-intel-iotg vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...

8.8CVSS6.8AI score0.02033EPSS
Exploits0References68
OSV
OSV
added 2025/07/04 2:43 p.m.9 views

OESA-2025-1726 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: kcm: close race conditions on skreceivequeue sk-skreceivequeue is protected by skb queue lock, but for KCM sockets its RX path takes mux-rxlock to protect more...

7.8CVSS6.6AI score0.00218EPSS
Exploits0References14
Ubuntu
Ubuntu
added 2025/07/03 6:3 p.m.9 views

USN-7585-6: Linux kernel (BlueField) vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS7.1AI score0.00246EPSS
Exploits0
Rows per page
Query Builder