Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-40403

Malicious code in bioql PyPI...

8.3CVSS6.6AI score0.00075EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2024-40406

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.0017EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-40392

Malicious code in bioql PyPI...

9.3CVSS6.6AI score0.02698EPSS
Exploits0References3
NVD
NVDadded 2025/01/09 8:15 a.m.6 views

CVE-2024-43650

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Iocharger firmware for AC models allows OS Command Injection as root This issue affects firmware versions before 24120701. Likelihood: Moderate – The binary does not seem to be used by the web...

9.3CVSS0.03561EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/01/09 7:56 a.m.9 views

CVE-2024-43654 Authenticated command injection in the <redacted> action leads to full remote code execution as root on the charging station

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Iocharger firmware for AC models allows OS Command Injection as root This issue affects all Iocharger AC EV charger models on a firmware version before 25010801. Likelihood: Moderate – The binary do...

9.3CVSS0.0254EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/01/09 7:56 a.m.4 views

CVE-2024-43662 Authenticated arbitrary file upload to /tmp/ and /tmp/upload/

The .exe or .exe CGI binary can be used to upload arbitrary files to /tmp/upload/ or /tmp/ respectively as any user, although the user interface for uploading files is only shown to the iocadmin user. This issue affects Iocharger firmware for AC models before version 24120701. Likelihood: Moderat...

5.3CVSS7.7AI score0.0017EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/01/09 7:56 a.m.11 views

CVE-2024-43659 Plaintext default credentials in firmware

After gaining access to the firmware of a charging station, a file at can be accessed to obtain default credentials that are the same across all Iocharger AC model EV chargers. This issue affects Iocharger firmware for AC models before firmware version 25010801. The issue is addressed by requirin...

8.3CVSS0.00075EPSS
Exploits0References3
CVE
CVEadded 2025/01/09 7:56 a.m.39 views

CVE-2024-43662

CVE-2024-43662 affects Iocharger firmware for AC models prior to 24120701. A .exe CGI binary, accessible only to iocadmin users, can upload arbitrary files to /tmp/upload/ or /tmp/ as any user. Exploitation requires knowledge of the CGI binary and a low-privilege account to access it and perform ...

5.3CVSS7.3AI score0.0017EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/01/09 12:0 a.m.2 views

PT-2025-2651 · Iocharger · Iocharger

Name of the Vulnerable Software and Affected Versions: Iocharger firmware for AC models versions prior to 24120701 Description: The issue is related to an improper neutralization of special elements used in a command, also known as 'Command Injection', which allows OS Command Injection as root...

9.3CVSS7.6AI score0.03561EPSS
Exploits0References8
VulnCheck KEV
VulnCheck KEVadded 2018/07/13 12:0 a.m.1 views

VulnCheck KEV: CVE-2017-8877

ASUS RT-AC and RT-N devices with firmware through 3.0.0.4.380.7378 allow JSONP Information Disclosure such as the SSID...

6.5CVSS6.6AI score0.00259EPSS
Exploits0References1
Rows per page
Query Builder