Lucene search
K

117 matches found

Packet Storm
Packet Storm
added 2025/07/21 12:0 a.m.98 views

📄 Mouse Agent Server 3.1 Unauthenticated Remote System Control

Mouse Agent Server version 3.1 exposes a TCP control interface on port 8088 that allows remote execution of power commands shutdown, restart, sleep, logoff via unauthenticated commands. An attacker on the same network can exploit this to disrupt the system remotely without user interaction. Explo...

7.8AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/21 12:0 a.m.110 views

📄 Wifi Mouse 1.9.0.8 Unauthenticated Remote System Control

Wifi Mouse version 1.9.0.8 exposes a TCP control interface on port 1978 that allows remote execution of power commands shutdown, restart, sleep, logoff via unauthenticated commands. An attacker on the same network can exploit this to disrupt the system remotely without user interaction. Exploit...

7.8AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/15 12:0 a.m.96 views

📄 Remote Mouse 4.601 Unauthenticated Remote System Control

Remote Mouse version 4.601 for Windows is vulnerable to unauthenticated remote power control due to improper access controls on UDP port 1978. An attacker on the same network can send specially crafted packets to force shutdown, restart, or log off the target system without authentication. Exploi...

7.7AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/04 12:0 a.m.99 views

📄 AndroMouse Server 8.0 Unauthenticated Remote System Control

AndroMouse Server version 8.0 allows attackers to send UDP commands to remotely restart, shutdown, sleep, lock, or log off the target machine without authentication. This leads to unauthorized power state manipulation and potential denial of service. Exploit Title: AndroMouse Server 8.0 –...

7.5AI score
Exploits0
NVD
NVD
added 2025/07/03 9:15 a.m.6 views

CVE-2025-38137

In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Cancel outstanding rescan work when unregistering It's possible to trigger use-after-free here by: a forcing rescanworkfunc to take a long time and b utilizing a pwrctrl driver that may be unloaded for some reason...

7.8CVSS0.00155EPSS
Exploits0References2
OSV
OSV
added 2025/07/03 9:15 a.m.3 views

DEBIAN-CVE-2025-38137

In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Cancel outstanding rescan work when unregistering It's possible to trigger use-after-free here by: a forcing rescanworkfunc to take a long time and b utilizing a pwrctrl driver that may be unloaded for some reason...

7.8CVSS6.2AI score0.00155EPSS
Exploits0References1
OSV
OSV
added 2025/07/03 9:15 a.m.2 views

UBUNTU-CVE-2025-38137

In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Cancel outstanding rescan work when unregistering It's possible to trigger use-after-free here by: a forcing rescanworkfunc to take a long time and b utilizing a pwrctrl driver that may be unloaded for some reason...

7.8CVSS6.4AI score0.00155EPSS
Exploits0References12
Cvelist
Cvelist
added 2025/07/03 8:35 a.m.9 views

CVE-2025-38137 PCI/pwrctrl: Cancel outstanding rescan work when unregistering

In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Cancel outstanding rescan work when unregistering It's possible to trigger use-after-free here by: a forcing rescanworkfunc to take a long time and b utilizing a pwrctrl driver that may be unloaded for some reason...

0.00155EPSS
Exploits0References2
OSV
OSV
added 2025/07/03 8:35 a.m.4 views

CVE-2025-38137 PCI/pwrctrl: Cancel outstanding rescan work when unregistering

In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Cancel outstanding rescan work when unregistering It's possible to trigger use-after-free here by: a forcing rescanworkfunc to take a long time and b utilizing a pwrctrl driver that may be unloaded for some reason...

7.8CVSS6AI score0.00155EPSS
Exploits0References5
CVE
CVE
added 2025/07/03 8:35 a.m.61 views

CVE-2025-38137

Technical details about CVE-2025-38137 (Linux kernel PCI/pwrctrl use-after-free due to rescan handling) are not provided in the connected documents. Public disclosures here list the CVE but do not elaborate affected versions, root cause, or fixes. Monitor for updates.

7.8CVSS7.2AI score0.00155EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/07/03 8:35 a.m.5 views

CVE-2025-38137

In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Cancel outstanding rescan work when unregistering It's possible to trigger use-after-free here by: a forcing rescanworkfunc to take a long time and b utilizing a pwrctrl driver that may be unloaded for some reason...

7.8CVSS6.2AI score0.00155EPSS
Exploits0
CNNVD
CNNVD
added 2025/07/03 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from pci pwrctrl not canceling a scan job, which could lead to reuse after release...

7.8CVSS7.9AI score0.00155EPSS
Exploits0References3
OSV
OSV
added 2025/06/18 9:28 a.m.7 views

CVE-2025-38010 phy: tegra: xusb: Use a bitmask for UTMI pad power state tracking

In the Linux kernel, the following vulnerability has been resolved: phy: tegra: xusb: Use a bitmask for UTMI pad power state tracking The current implementation uses biaspadenable as a reference count to manage the shared bias pad for all UTMI PHYs. However, during system suspension with connecte...

5.5CVSS6.4AI score0.00155EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/23 7:51 a.m.7 views

CVE-2024-11305

A vulnerability classified as critical was found in Altenergy Power Control Software up to 20241108. This vulnerability affects the function getstatuszigbee of the file /index.php/display/statuszigbee. The manipulation of the argument date leads to sql injection. The attack can be initiated...

6.5CVSS6.8AI score0.03725EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:1 a.m.19 views

CVE-2024-11306

A vulnerability, which was classified as critical, has been found in Altenergy Power Control Software up to 20241108. This issue affects some unknown processing of the file /index.php/display/database/. The manipulation leads to improper authorization. The attack may be initiated remotely. The...

6.9CVSS5.3AI score0.00534EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2024/12/24 12:0 a.m.3 views

VulnCheck KEV: CVE-2024-11305

A vulnerability classified as critical was found in Altenergy Power Control Software up to 20241108. This vulnerability affects the function getstatuszigbee of the file /index.php/display/statuszigbee. The manipulation of the argument date leads to sql injection. The attack can be initiated...

6.5CVSS5.6AI score0.03725EPSS
Exploits0References1
NVD
NVD
added 2024/11/18 2:15 a.m.39 views

CVE-2024-11306

A vulnerability, which was classified as critical, has been found in Altenergy Power Control Software up to 20241108. This issue affects some unknown processing of the file /index.php/display/database/. The manipulation leads to improper authorization. The attack may be initiated remotely. The...

6.9CVSS0.00534EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/11/18 1:31 a.m.41 views

CVE-2024-11306 Altenergy Power Control Software database improper authorization

A vulnerability, which was classified as critical, has been found in Altenergy Power Control Software up to 20241108. This issue affects some unknown processing of the file /index.php/display/database/. The manipulation leads to improper authorization. The attack may be initiated remotely. The...

6.9CVSS0.00534EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/11/18 1:31 a.m.12 views

CVE-2024-11306 Altenergy Power Control Software database improper authorization

A vulnerability, which was classified as critical, has been found in Altenergy Power Control Software up to 20241108. This issue affects some unknown processing of the file /index.php/display/database/. The manipulation leads to improper authorization. The attack may be initiated remotely. The...

6.9CVSS6.8AI score0.00534EPSS
Exploits0References4
CVE
CVE
added 2024/11/18 1:31 a.m.44 views

CVE-2024-11306

The CVE-2024-11306 entry concerns Altenergy Power Control Software up to 20241108 where an improper authorization vulnerability exists in the /index.php/display/database/ endpoint. A remote attacker could exploit this to gain unauthorized processing access; the exploit has been disclosed publicly...

6.9CVSS5.3AI score0.00534EPSS
Exploits0References4
Rows per page
Query Builder