Hewlett Packard Enterprise ArubaOS（HPE ArubaOS） 安全漏洞

Hewlett Packard Enterprise ArubaOS HPE ArubaOS is a networked wireless operating system from Hewlett Packard Enterprise USA. A security vulnerability exists in Hewlett Packard Enterprise ArubaOS HPE ArubaOS that stems from multiple out-of-bounds read vulnerabilities in the handling of data buffer...

HPE AOS 安全漏洞

HPE AOS is an operating system from the US-based HPE. A security vulnerability exists in HPE AOS that stems from an arbitrary file deletion vulnerability in a system function that could lead to a denial of service...

CVE-2026-22214

RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the ethos utility due to missing bounds checking when processing incoming serial frame data. The vulnerability occurs in the handlechar function, where incoming frame bytes are appended t...

CVE-2026-22214

RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the ethos utility due to missing bounds checking when processing incoming serial frame data. The vulnerability occurs in the handlechar function, where incoming frame bytes are appended t...

CVE-2026-0855 Merit LILIN｜IP Camera - OS Command Injection

Certain IP Camera models developed by Merit LILIN has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the device...

CVE-2026-0855

Merit LILIN IP Camera models are affected by an OS Command Injection vulnerability. The CVE-2026-0855 entry describes an authenticated remote attacker able to inject and execute OS commands on the device. Connected sources (Red Hat, NVD, CVE.org, EUVD, CNNVD, etc.) confirm the flaw as OS command ...

CVE-2026-0854 Merit LILIN｜NVR - OS Command Injection

Certain DVR/NVR models developed by Merit LILIN has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the device...

CVE-2026-0854 Merit LILIN｜NVR - OS Command Injection

Certain DVR/NVR models developed by Merit LILIN has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the device...

CVE-2026-0854

The CVE concerns Merit LILIN DVR/NVR devices that expose an OS Command Injection vulnerability. The affected component is the device OS on Merit LILIN DVR/NVR models; the root cause is an OS command injection vector that allows an authenticated remote attacker to inject and run arbitrary OS comma...

Merit LILIN DVR Series和Merit LILIN NVR Series 操作系统命令注入漏洞

The Merit LILIN DVR Series and Merit LILIN NVR Series are both products of Merit LILIN Corporation of Taiwan, China.The Merit LILIN DVR Series is a series of digital video recorders.The Merit LILIN NVR Series is a series of network video recorders. The Merit LILIN DVR Series and Merit LILIN NVR...

RIOT OS 安全漏洞

RIOT OS is an IoT operating system from RIOT Open Source. A security vulnerability exists in RIOT OS version 2026.01-devel-317 and earlier, which stems from a lack of boundary checking when the ethos tool handles serial frame data, which could lead to memory corruption and application crashes...

PT-2026-2044

Name of the Vulnerable Software and Affected Versions Merit LILIN DVR/NVR models affected versions not specified Merit Lilin DH032 affected versions not specified Description An authenticated remote attacker can inject arbitrary OS commands on Merit LILIN DVR/NVR devices and execute them. This is...

PT-2026-2322

Name of the Vulnerable Software and Affected Versions RIOT OS versions up to and including 2026.01-devel-317 Description RIOT OS versions up to and including 2026.01-devel-317 have a stack-based buffer overflow issue in the tapslip6 utility. This is due to unsafe string concatenation within the...

Merit LILIN IP Camera Series 操作系统命令注入漏洞

The Merit LILIN IP Camera Series is a series of IP video recorders from Merit LILIN of Taiwan, China. The Merit LILIN IP Camera Series suffers from an operating system command injection vulnerability that stems from OS command injection, which could allow an authenticated, remote attacker to inje...

Critical Photon OS Security Update - PHSA-2026-5.0-0736

Updates of 'python3-pg8000' packages of Photon OS have been released...

CVE-2025-15502

The CVE-2025-15502 entry affects Sangfor Operation and Maintenance Management System up to version 3.0.8. The vulnerability lies in the SessionController function at /isomp-protocol/protocol/session, where manipulating the Hostname argument enables OS command injection. It is exploitable remotely...

PT-2026-2128

Name of the Vulnerable Software and Affected Versions CryptoLib versions prior to 1.4.3 Description CryptoLib is a software solution that uses the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft and a ground station. Prior to...

Photon OS 5.0: Capstone PHSA-2026-5.0-0732

An update of the capstone package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0732. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 5.0: Rubygem PHSA-2026-5.0-0733

An update of the rubygem package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0733. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2026-22584

Improper Control of Generation of Code 'Code Injection' vulnerability in Salesforce Uni2TS on MacOS, Windows, Linux allows Leverage Executable Code in Non-Executable Files.This issue affects Uni2TS: through 1.2.0...