Lucene search
K

18647 matches found

EUVD
EUVD
added 2025/12/08 8:56 a.m.4 views

EUVD-2025-201681

Improper input validation in the Netconf service in Infinera MTC-9 allows remote authenticated users to crash the service and reboot the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0...

6.5CVSS6.3AI score0.0028EPSS
Exploits0References2
CVE
CVE
added 2025/12/08 8:56 a.m.12 views

CVE-2025-26489

The CVE-2025-26489 entry concerns Infinera MTC-9, where the Netconf service suffers from improper input validation. The root cause is input validation flaws in the Netconf interface, allowing remote authenticated users to crash the service and reboot the appliance, causing a DoS. Affected version...

6.5CVSS6.4AI score0.0028EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.4 views

PT-2025-49537

Name of the Vulnerable Software and Affected Versions Infinera MTC-9 versions R22.1.1.0275 through R23.0 Description A flaw exists in the Netconf service of Infinera MTC-9 that allows remotely authenticated users to cause a denial-of-service DoS condition. This is achieved by sending specially...

6.5CVSS6.4AI score0.0028EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/12/05 3:27 p.m.4 views

CVE-2025-29844

A vulnerability in FileStation file cgi allows remote authenticated users to read file metadata and path information...

4.3CVSS6.7AI score0.00406EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/05 3:27 p.m.5 views

CVE-2025-29846

A vulnerability in portenable cgi allows remote authenticated users to get the status of installed packages...

7.2CVSS6.8AI score0.00603EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/05 3:27 p.m.5 views

CVE-2025-2848

A vulnerability in Synology Mail Server allows remote authenticated attackers to read and write non-sensitive settings, and disable some non-critical functions...

6.3CVSS6.8AI score0.00382EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/05 2:27 p.m.4 views

CVE-2024-5401

Improper control of dynamically-managed code resources vulnerability in WebAPI component in Synology DiskStation Manager DSM before 7.1.1-42962-8 and 7.2.1-69057-2 and 7.2.2-72806 and Synology Unified Controller DSMUC before 3.1.4-23079 allows remote authenticated users to obtain privileges witho...

8.8CVSS7AI score0.00321EPSS
Exploits0References1
NVD
NVD
added 2025/12/04 3:15 p.m.5 views

CVE-2025-2848

A vulnerability in Synology Mail Server allows remote authenticated attackers to read and write non-sensitive settings, and disable some non-critical functions...

6.3CVSS0.00382EPSS
Exploits0References1
OSV
OSV
added 2025/12/04 3:15 p.m.5 views

CVE-2025-2848

A vulnerability in Synology Mail Server allows remote authenticated attackers to read and write non-sensitive settings, and disable some non-critical functions...

6.3CVSS5.8AI score0.00382EPSS
Exploits0References1
OSV
OSV
added 2025/12/04 3:15 p.m.4 views

CVE-2025-29846

A vulnerability in portenable cgi allows remote authenticated users to get the status of installed packages...

7.2CVSS5.8AI score0.00603EPSS
Exploits0References1
NVD
NVD
added 2025/12/04 3:15 p.m.4 views

CVE-2025-29843

A vulnerability in FileStation thumb cgi allows remote authenticated users to read/write image files...

5.4CVSS0.00346EPSS
Exploits0References1
OSV
OSV
added 2025/12/04 3:15 p.m.5 views

CVE-2024-5401

Improper control of dynamically-managed code resources vulnerability in WebAPI component in Synology DiskStation Manager DSM before 7.1.1-42962-8 and 7.2.1-69057-2 and 7.2.2-72806 and Synology Unified Controller DSMUC before 3.1.4-23079 allows remote authenticated users to obtain privileges witho...

8.8CVSS5.9AI score0.00321EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/04 3:5 p.m.22 views

CVE-2025-2848

A vulnerability in Synology Mail Server allows remote authenticated attackers to read and write non-sensitive settings, and disable some non-critical functions...

6.3CVSS0.00382EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/04 3:5 p.m.2 views

CVE-2025-2848

A vulnerability in Synology Mail Server allows remote authenticated attackers to read and write non-sensitive settings, and disable some non-critical functions...

6.3CVSS6.4AI score0.00382EPSS
Exploits0References1
CVE
CVE
added 2025/12/04 3:5 p.m.23 views

CVE-2025-2848

CVE-2025-2848 affects Synology Mail Server. Multiple sources describe remote authenticated access that allows reading and writing non-sensitive settings and disabling some non-critical functions, with potential risks to mail configuration stability. PT-Security cites affected DSM versions before ...

6.3CVSS6.4AI score0.00382EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/12/04 3:1 p.m.19 views

CVE-2025-29845

A vulnerability in VideoPlayer2 subtitle cgi allows remote authenticated users to read .srt files...

4.3CVSS0.00406EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/04 3:0 p.m.3 views

CVE-2025-29844

A vulnerability in FileStation file cgi allows remote authenticated users to read file metadata and path information...

4.3CVSS6.3AI score0.00406EPSS
Exploits0References1
CVE
CVE
added 2025/12/04 3:0 p.m.11 views

CVE-2025-29844

CVE-2025-29844 describes a vulnerability in the Synology FileStation file cgi that enables remote authenticated users to read file metadata and path information. The issue has a CVSS v3.1 base score of 4.3 (Medium) with vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N. Connected sources confi...

4.3CVSS6.3AI score0.00406EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/12/04 3:0 p.m.4 views

EUVD-2025-201175

A vulnerability in FileStation file cgi allows remote authenticated users to read file metadata and path information...

4.3CVSS6.2AI score0.00406EPSS
Exploits0References2
CVE
CVE
added 2025/12/04 3:0 p.m.11 views

CVE-2025-29843

CVE-2025-29843 describes a vulnerability in Synology FileStation thumb CGI within Synology Router Manager (SRM) that allows remote authenticated users to read and write image files. The affected component is FileStation thumb CGI; root cause details are not provided beyond the CGI exposure. Docum...

5.4CVSS6.4AI score0.00346EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder