Lucene search
K

61 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:28 a.m.24 views

CVE-2019-12510

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.26, an attacker may bypass all authentication checks on the device's "NETGEAR Genie" SOAP API "/soap/serversa" by supplying a malicious X-Forwarded-For header of the device's LAN IP address 192.168.1.1 in every request. As a result, an attacker may...

9.1CVSS7AI score0.00729EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-4694

Malware in sbrugna...

7.5CVSS6.4AI score0.00999EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-4693

Malware in sbrugna...

4.3CVSS6.4AI score0.03631EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-3136

Malware in sbrugna...

4.3CVSS6.4AI score0.01525EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-4107

Malware in sbrugna...

6.1CVSS6.3AI score0.00974EPSS
Exploits1References2
OSV
OSV
added 2025/06/13 12:15 p.m.6 views

CVE-2025-45986

Blink routers BL-WR9000 V2.4.9 , BL-AC2100AZ3 V1.0.4, BL-X10AC8 v1.0.5 , BL-LTE300 v1.2.3, BL-F1200AT1 v1.0.0, BL-X26AC8 v1.2.8, BLAC450MAE4 v4.0.0 and BL-X26DA3 v1.2.7 werediscovered to contain a command injection vulnerability via the mac parameter in the bsSetMacBlack function...

9.8CVSS5.8AI score0.0179EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:33 a.m.8 views

CVE-2019-12513

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, by sending a DHCP discover request containing a malicious hostname field, an attacker may execute stored XSS attacks against this device. When the malicious DHCP request is received, the device will generate a log entry containing the malicious...

6.1CVSS5.9AI score0.0084EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2024/02/24 6:30 a.m.4 views

bakers-registry (>=0.1.1 <=0.1.7), bitcoinlib (>=0.5.1 <=0.6.3) +12 more potentially affected by CVE-2024-21502 via fastecdsa (>=1.6.4 <=2.3.0)

fastecdsa PYPI version =1.6.4, =0.1.1, =0.5.1, =0.1.0, =0.7.3, =0.1.1, =0.1.0, =2.0.0, =0.1.0a28, =1.0.1, =1.0.0, =0.1.0, =0.4.3 - xchainpy-bitcoin =0.1.2 Source cves: CVE-2024-21502 Source advisory: OSV:GHSA-PH86-G9R3-5QW4...

7.5CVSS7.1AI score0.01025EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2024/02/24 5:15 a.m.9 views

bakers-registry (>=0.1.1 <=0.1.7), bitcoinlib (>=0.5.1 <=0.6.3) +12 more potentially affected by CVE-2024-21502 via fastecdsa (>=1.6.4 <=2.3.0)

fastecdsa PYPI version =1.6.4, =0.1.1, =0.5.1, =0.1.0, =0.7.3, =0.1.1, =0.1.0, =2.0.0, =0.1.0a28, =1.0.1, =1.0.0, =0.1.0, =0.4.3 - xchainpy-bitcoin =0.1.2 Source cves: CVE-2024-21502 Source advisory: OSV:PYSEC-2024-39...

7.5CVSS7.1AI score0.01025EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/07 7:14 p.m.27 views

Security Bulletin: This Power System update is being released to address CVE-2018-13787

Summary POWER8/POWER9: In response to a potential issue with validation checking of IBM firmware, a new firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE-2018-13787. Vulnerability Details CVEID: CVE-2018-13787 DESCRIPTION: Certain Supermicro X11S,...

7.2CVSS0.9AI score0.00417EPSS
Exploits0Affected Software2
ICS
ICS
added 2021/01/19 12:0 a.m.83 views

Reolink P2P Cameras

1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Reolink Equipment: P2P protocol Vulnerabilities: Use of Hard-coded Cryptographic Key, Cleartext Transmission of Sensitive Information 2. RISK EVALUATION Successful exploitation of these...

7.8CVSS8.1AI score0.00986EPSS
Exploits0References5
CNVD
CNVD
added 2020/02/25 12:0 a.m.3 views

NETGEAR Nighthawk X10-R9000 Cross-Site Scripting Vulnerability

The NETGEAR Nighthawk X10-R9000 is a wireless router from NETGEAR. A cross-site scripting vulnerability exists in the NETGEAR Nighthawk X10-R9000 using firmware prior to version 1.0.4.24. The vulnerability stems from a lack of proper validation of client data by the WEB application. An attacker c...

6.1CVSS6.4AI score0.0084EPSS
Exploits1References1
CNVD
CNVD
added 2020/02/25 12:0 a.m.4 views

NETGEAR Nighthawk X10-R9000 Cross-Site Scripting Vulnerability (CNVD-2020-13506)

The NETGEAR Nighthawk X10-R9000 is a wireless router from NETGEAR. A cross-site scripting vulnerability exists in the NETGEAR Nighthawk X10-R9000 using firmware prior to version 1.0.4.24. The vulnerability stems from a lack of proper validation of client data by the WEB application. An attacker c...

6.1CVSS6.4AI score0.00974EPSS
Exploits1References1
CNVD
CNVD
added 2020/02/25 12:0 a.m.5 views

NETGEAR Nighthawk X10-R9000 Authentication Bypass Vulnerability

The NETGEAR Nighthawk X10-R9000 is a wireless router from NETGEAR. A security vulnerability exists in the NETGEAR Nighthawk X10-R9000 using firmware versions prior to 1.0.4.26. An attacker could exploit the vulnerability to bypass authentication...

9.1CVSS6.8AI score0.00729EPSS
Exploits1References1
OSV
OSV
added 2020/02/24 7:15 p.m.5 views

CVE-2019-12511

In NETGEAR Nighthawk X10-R9000 prior to 1.0.4.26, an attacker may execute arbitrary system commands as root by sending a specially-crafted MAC address to the "NETGEAR Genie" SOAP endpoint at AdvancedQoS:GetCurrentBandwidthByMAC. Although this requires QoS being enabled, advanced QoS being enabled...

9.8CVSS7.4AI score0.02324EPSS
Exploits1References1
OSV
OSV
added 2020/02/24 7:15 p.m.6 views

CVE-2019-12512

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, an attacker may execute stored XSS attacks against this device by supplying a malicious X-Forwarded-For header while performing an incorrect login attempt. The value supplied by this header will be inserted into administrative logs, found at Advanc...

6.1CVSS6.3AI score0.00974EPSS
Exploits1References1
NVD
NVD
added 2020/02/24 7:15 p.m.22 views

CVE-2019-12513

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, by sending a DHCP discover request containing a malicious hostname field, an attacker may execute stored XSS attacks against this device. When the malicious DHCP request is received, the device will generate a log entry containing the malicious...

6.1CVSS6AI score0.0084EPSS
Exploits1References1
OSV
OSV
added 2020/02/24 7:15 p.m.4 views

CVE-2019-12513

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, by sending a DHCP discover request containing a malicious hostname field, an attacker may execute stored XSS attacks against this device. When the malicious DHCP request is received, the device will generate a log entry containing the malicious...

6.1CVSS5.8AI score0.0084EPSS
Exploits1References1
NVD
NVD
added 2020/02/24 7:15 p.m.20 views

CVE-2019-12511

In NETGEAR Nighthawk X10-R9000 prior to 1.0.4.26, an attacker may execute arbitrary system commands as root by sending a specially-crafted MAC address to the "NETGEAR Genie" SOAP endpoint at AdvancedQoS:GetCurrentBandwidthByMAC. Although this requires QoS being enabled, advanced QoS being enabled...

9.8CVSS10AI score0.02324EPSS
Exploits1References1
NVD
NVD
added 2020/02/24 7:15 p.m.17 views

CVE-2019-12512

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, an attacker may execute stored XSS attacks against this device by supplying a malicious X-Forwarded-For header while performing an incorrect login attempt. The value supplied by this header will be inserted into administrative logs, found at Advanc...

6.1CVSS6.1AI score0.00974EPSS
Exploits1References1
Rows per page
Query Builder