Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

RedhatCVE
RedhatCVEadded 2026/02/12 7:28 p.m.2 views

CVE-2026-25084

Authentication for ZLAN5143D can be bypassed by directly accessing internal URLs...

9.8CVSS5.4AI score0.00134EPSS
Exploits0References1
NVD
NVDadded 2026/02/11 5:16 p.m.2 views

CVE-2026-25084

Authentication for ZLAN5143D can be bypassed by directly accessing internal URLs...

9.8CVSS0.00134EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/02/11 4:17 p.m.20 views

CVE-2026-24789 ZLAN Information Technology ZLAN5143D Missing Authentication for Critical Function

An unprotected API endpoint allows an attacker to remotely change the device password without providing authentication...

9.8CVSS0.00122EPSS
Exploits0References3
CVE
CVEadded 2026/02/11 4:17 p.m.9 views

CVE-2026-24789

CVE-2026-24789 is described in the provided documents as an unprotected API endpoint that allows remote password modification without authentication. The reports (including NVD/Red Hat/CVE lists) state a critical impact (high confidentiality, integrity, and availability effects) with CVSS scores ...

9.8CVSS5.5AI score0.00122EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/02/11 4:11 p.m.1 views

CVE-2026-25084 ZLAN Information Technology ZLAN5143D Missing Authentication for Critical Function

Authentication for ZLAN5143D can be bypassed by directly accessing internal URLs...

9.8CVSS5.4AI score0.00134EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/02/11 4:11 p.m.2 views

CVE-2026-25084

Authentication for ZLAN5143D can be bypassed by directly accessing internal URLs...

9.8CVSS5.4AI score0.00134EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2026/02/11 4:11 p.m.6 views

CVE-2026-25084

The CVE-2026-25084 entry concerns ZLAN5143D, a device whose authentication can be bypassed by directly accessing internal URLs. Connected sources provide concrete details: in addition to the basic bypass vulnerability, an unprotected API endpoint can allow an attacker to remotely change the devic...

9.8CVSS5.4AI score0.00134EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/02/11 4:11 p.m.19 views

CVE-2026-25084 ZLAN Information Technology ZLAN5143D Missing Authentication for Critical Function

Authentication for ZLAN5143D can be bypassed by directly accessing internal URLs...

9.8CVSS0.00134EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/02/11 12:0 a.m.3 views

PT-2026-7621

Name of the Vulnerable Software and Affected Versions ZLAN5143D affected versions not specified Description Authentication for the device can be bypassed by directly accessing internal URLs. Recommendations At the moment, there is no information about a newer version that contains a fix for this...

9.8CVSS5.4AI score0.00134EPSS
Exploits0References10
CNNVD
CNNVDadded 2026/02/11 12:0 a.m.2 views

ZLAN5143D 访问控制错误漏洞

ZLAN5143D is a serial port server from the Chinese company ZLAN. ZLAN5143D has an access control vulnerability, which stems from an inability to enforce authentication properly. This vulnerability allows attackers to directly access internal URLs...

9.8CVSS7.5AI score0.00134EPSS
Exploits0References4
CNNVD
CNNVDadded 2026/02/11 12:0 a.m.2 views

ZLAN5143D 访问控制错误漏洞

ZLAN5143D is a serial port server from the Chinese company ZLAN. ZLAN5143D has an access control vulnerability, which stems from unprotected API endpoints. This vulnerability could allow attackers to remotely change device passwords without requiring authentication...

9.8CVSS7.5AI score0.00122EPSS
Exploits0References4
Rows per page
Query Builder