Lucene search
K

101 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-44875

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00276EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-39741

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00855EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-44791

Malicious code in bioql PyPI...

8CVSS7.8AI score0.0035EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-47289

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.01205EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-43986

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00623EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-47288

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.01119EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-36408

Malicious code in bioql PyPI...

7.5CVSS7.8AI score0.00913EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-39739

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00855EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/06 1:18 a.m.4 views

CVE-2025-8653 Kenwood DMX958XR JKRadioService Stack-based Buffer Overflow Remote Code Execution Vulnerability

Kenwood DMX958XR JKRadioService Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Kenwood DMX958XR. Authentication is not required to exploit this vulnerability. The specific...

8.8CVSS9AI score0.00326EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/08/01 12:0 a.m.6 views

(0Day) (Pwn2Own) Alpine iLX-507 Command Injection Remote Code Execution

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Tidal music streaming application. The issue results from the lack ...

8CVSS8AI score0.0067EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2025/07/31 12:0 a.m.6 views

(Pwn2Own) QNAP TS-464 reset_password.cgi Hard-coded Cryptographic Key Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of QNAP TS-464. Authentication is not required to exploit this vulnerability. The specific flaw exists within the resetpassword.cgi endpoint. The issue results from the use of a hard-coded...

7.5CVSS7AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/07/31 12:0 a.m.5 views

(Pwn2Own) QNAP TS-464 Active Directory Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of QNAP TS-464 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Active Directory integration. The issue results from the improper...

8.8CVSS7.1AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/07/31 12:0 a.m.17 views

(Pwn2Own) QNAP TS-464 privWizard.cgi Authentication CRLF Injection Privilege Escalation Vulnerability

This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of QNAP TS-464 devices. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the privWizard.cg...

8CVSS7.2AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/07/21 12:0 a.m.7 views

(Pwn2Own) Phoenix Contact CHARX SEC-3100 Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Phoenix Contact CHARX SEC-3100 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the defaultroutemetric parameter to the...

7.5CVSS7.5AI score0.01404EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/27 6:18 p.m.7 views

CVE-2025-5827

Autel MaxiCharger AC Wallbox Commercial bleprocessesp32msg Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Autel MaxiCharger AC Wallbox Commercial EV chargers. Authenticati...

8.8CVSS9.1AI score0.00326EPSS
Exploits0References1
NVD
NVD
added 2025/06/25 6:15 p.m.7 views

CVE-2025-5827

Autel MaxiCharger AC Wallbox Commercial bleprocessesp32msg Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Autel MaxiCharger AC Wallbox Commercial EV chargers. Authenticati...

8.8CVSS0.00326EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/21 12:9 a.m.7 views

CVE-2025-5476 Sony XAV-AX8500 Bluetooth Improper Isolation Authentication Bypass Vulnerability

Sony XAV-AX8500 Bluetooth Improper Isolation Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected Sony XAV-AX8500 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

6.3CVSS0.00311EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2025/06/11 12:0 a.m.8 views

(Pwn2Own) Autel MaxiCharger AC Wallbox Commercial ble_process_esp32_msg Misinterpretation of Input Vulnerability

This vulnerability allows network-adjacent attackers to inject arbitrary AT commands on affected installations of Autel MaxiCharger AC Wallbox Commercial charging stations. Authentication is not required to exploit this vulnerability. The specific flaw exists within the bleprocessesp32msg functio...

6.3CVSS7.3AI score0.00227EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/06/06 12:0 a.m.8 views

PT-2025-24282 · Wolfbox · Wolfbox Level 2 Ev Charger

Name of the Vulnerable Software and Affected Versions: WOLFBOX Level 2 EV Charger affected versions not specified Description: This vulnerability allows network-adjacent attackers to execute arbitrary code on affected WOLFBOX Level 2 EV Charger devices. Authentication is required for exploitation...

8CVSS8AI score0.0036EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/23 10:8 a.m.8 views

CVE-2024-25579

OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent attacker with an administrative privilege to execute arbitrary OS commands by sending a specially crafted request to the product. Note that WMC-X1800GST-B is also included in e-Mesh Starter Kit "WMC-2LX-B"...

6.8CVSS8.2AI score0.00838EPSS
Exploits0References1
Rows per page
Query Builder