3 matches found
CVE-2025-50505
CVE-2025-50505 affects Clash Verge Rev up to 2.2.3 (fixed in 2.3.0). An unauthenticated HTTP API on 127.0.0.1:33211 (/start_clash) allows local users to submit arbitrary bin_path, config_dir, config_file, and log_file values which are passed to the service process (clash-verge-service) for execut...
D-Link DAP-1360 Elevation of Privilege Vulnerability
The D-Link DAP-136 is a wireless network signal extender from AUO D-Link of Taiwan, China. A security vulnerability exists in the D-Link DAP-1360 all Fx hardware versions using firmware version v6.13EUb01 and earlier. An attacker could exploit the vulnerability to start a remote terminal protocol...
Siemens SIMATIC S7-300 PLC Privilege Bypass Vulnerability
The Siemens SIMATIC S7-300 CPU is a modular general-purpose controller from Siemens for the manufacturing industry. The Siemens SIMATIC S7-300 PLC module is vulnerable to an unauthorized, execute CPU attack via privilege bypass. An attacker can construct special application layer data messages th...