Lucene search
+L

71 matches found

redhat
redhat
added 2025/10/28 7:18 p.m.5 views

event-driven-ansible: Event Stream Test Mode Exposes Sensitive Headers in AAP EDA

A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible EDA Event Stream API. This vulnerability allows exposure of sensitive client credentials and internal infrastructure headers via the testheaders field when an event stream is in test mode. The possible outcome...

6.7CVSS5.8AI score0.00167EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-20673

Malware in sbrugna...

6.9CVSS6.5AI score0.00286EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-54339

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.0032EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-24239

Malicious code in bioql PyPI...

8.6CVSS6.4AI score0.00237EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/08/12 11:17 a.m.6 views

CVE-2025-40761

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions, RUGGEDCOM ROX MX5000RE All versions, RUGGEDCOM ROX RX1400 All versions, RUGGEDCOM ROX RX1500 All versions, RUGGEDCOM ROX RX1501 All versions, RUGGEDCOM ROX RX1510 All versions, RUGGEDCOM ROX RX1511 All versions, RUGGEDCOM R...

8.6CVSS7.2AI score0.00237EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/08/12 12:0 a.m.4 views

Siemens多款产品 安全漏洞

Siemens RUGGEDCOM ROX RX1511 and others are products of Siemens, Germany Siemens.Siemens RUGGEDCOM ROX RX1511 is a communication device.Siemens RUGGEDCOM ROX RX1512 is a communication device.Siemens RUGGEDCOM ROX RX5000 is a communication device. A security vulnerability exists in various Siemens...

8.6CVSS6.4AI score0.00237EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/04/09 11:10 a.m.15 views

CVE-2025-21423

Memory corruption occurs when handling client calls to EnableTestMode through an Escape call...

7.8CVSS7.2AI score0.001EPSS
Exploits0References1
attackerkb
attackerkb
added 2025/04/07 11:15 a.m.9 views

CVE-2025-21423

Memory corruption occurs when handling client calls to EnableTestMode through an Escape call...

7.8CVSS5.8AI score0.001EPSS
Exploits0References2
cvelist
cvelist
added 2025/04/07 10:15 a.m.26 views

CVE-2025-21423 Improper Validation of Array Index in Display

Memory corruption occurs when handling client calls to EnableTestMode through an Escape call...

7.8CVSS0.001EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/04/07 12:0 a.m.5 views

Qualcomm Chipsets 输入验证错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets, which stems from a memory corruption that occurs when handling EnableTestMode calls...

7.8CVSS6.9AI score0.001EPSS
Exploits0References3
osv
osv
added 2024/10/21 12:15 p.m.3 views

DEBIAN-CVE-2024-47719

In the Linux kernel, the following vulnerability has been resolved: iommufd: Protect against overflow of ALIGN during iova allocation Userspace can supply an iova and uptr such that the target iova alignment becomes really big and ALIGN overflows which corrupts the selected area range during...

7.8CVSS6.2AI score0.00229EPSS
Exploits0References1
osv
osv
added 2024/08/05 7:49 p.m.5 views

GHSA-V784-FJJH-F8R4 Nuxt vulnerable to remote code execution via the browser when running the test locally

Summary Due to the insufficient validation of the path parameter in the NuxtTestComponentWrapper, an attacker can execute arbitrary JavaScript on the server side, which allows them to execute arbitrary commands. Details While running the test, a special component named NuxtTestComponentWrapper is...

9.2CVSS7.9AI score0.00828EPSS
Exploits1References5
bdu_fstec
bdu_fstec
added 2024/04/19 12:0 a.m.7 views

The vulnerability of the tddpd function in the Enable_test_mode microprogramming system of Tp-Link wireless access points Tp-Link AC1350 and Tp-Link N300 allows a hacker to execute arbitrary commands.

The vulnerability of the tddpd function in the Enabletestmode microprogramming system of Tp-Link AC1350 and Tp-Link N300 wireless access points is related to the activation of functions from an unverified controlled area. Exploiting this vulnerability allows a malicious actor to send arbitrary...

8.1CVSS7.5AI score0.01749EPSS
Exploits1References5
bdu_fstec
bdu_fstec
added 2024/04/15 12:0 a.m.7 views

The vulnerability of the tddpd function in wireless access points Tp-Link AC1350 and Tp-Link N300 allows a hacker to execute arbitrary code with root privileges.

The vulnerability of the tddpd Enabletestmode function in wireless access points Tp-Link AC1350 and Tp-Link N300 lies in the activation of functions from an unverified controlled area. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with root privileges by sending...

8.1CVSS7.8AI score0.01749EPSS
Exploits1References5
osv
osv
added 2024/04/09 3:15 p.m.7 views

CVE-2023-49134

A command execution vulnerability exists in the tddpd enabletestmode functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926 and Tp-Link N300 Wireless Access Point EAP115 V4 v5.0.4 Build 20220216. A specially crafted series of network requests can lea...

9.8CVSS7.5AI score0.01749EPSS
Exploits1References2
osv
osv
added 2024/04/09 3:15 p.m.6 views

CVE-2023-49133

A command execution vulnerability exists in the tddpd enabletestmode functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926 and Tp-Link N300 Wireless Access Point EAP115 V4 v5.0.4 Build 20220216. A specially crafted series of network requests can lea...

9.8CVSS7.5AI score0.01749EPSS
Exploits1References2
cnnvd
cnnvd
added 2024/04/09 12:0 a.m.4 views

TP-LINK AC1350 命令注入漏洞

The TP-LINK AC1350/N300 is a router from China P&L TP-LINK. The TP-LINK AC1350 and TP-LINK N300 suffer from a command injection vulnerability that stems from the tddpd enabletestmode function failing to correctly filter constructed command special characters, commands, and so on. An attacker can...

9.8CVSS7.8AI score0.01749EPSS
Exploits1References3
cnnvd
cnnvd
added 2024/03/04 12:0 a.m.4 views

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from memory corruption while processing the TPC target power meter in FTM TPC...

8.4CVSS7AI score0.00111EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2023/12/11 12:0 a.m.6 views

PT-2023-8993 · Tp Link · Tp-Link N300 Wireless Access Point +1

Name of the Vulnerable Software and Affected Versions: Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 version 5.1.0 Build 20220926 Tp-Link N300 Wireless Access Point EAP115 V4 version 5.0.4 Build 20220216 Description: A command execution vulnerability exists in the tddpd enable te...

9.8CVSS8.2AI score0.01749EPSS
Exploits1References11
ptsecurity
ptsecurity
added 2023/12/11 12:0 a.m.7 views

PT-2023-9017 · Tp Link · Eap225 V3 +1

Name of the Vulnerable Software and Affected Versions: Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 version 5.1.0 Build 20220926 Tp-Link N300 Wireless Access Point EAP115 V4 version 5.0.4 Build 20220216 Description: A command execution issue exists in the tddpd enable test mode...

9.8CVSS8.1AI score0.01749EPSS
Exploits1References11
Rows per page
Query Builder