PT-2025-28893

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The provided information indicates a potential security issue. Details regarding the nature of the issue, affected devices, or real-world exploitation are not...

CVE-2025-24006

CVE-2025-24006 describes privilege escalation via insecure SSH permissions allowing a low-privilege, local attacker to escalate to root. The central descriptions across sources confirm a local attack vector with SSH‑based permission issues; CVSS 3.1 base score 7.8 (HIGH), with LOCAL attack vector...

PT-2025-28371 · Siemens · Ruggedcom I802 +49

Name of the Vulnerable Software and Affected Versions: RUGGEDCOM i800 All versions RUGGEDCOM i801 All versions RUGGEDCOM i802 All versions RUGGEDCOM i803 All versions RUGGEDCOM M2100 All versions RUGGEDCOM M2200 All versions RUGGEDCOM M969 All versions RUGGEDCOM RMC30 All versions RUGGEDCOM RMC83...

PT-2025-28400 · Siemens · Siprotec 5 7Sa82 +16

Name of the Vulnerable Software and Affected Versions: SIPROTEC 5 6MD84 CP300 All versions SIPROTEC 5 6MD85 CP300 All versions SIPROTEC 5 6MD86 CP300 All versions SIPROTEC 5 6MD89 CP300 All versions SIPROTEC 5 6MD89 CP300 V9.6 All versions SIPROTEC 5 6MU85 CP300 All versions SIPROTEC 5 7KE85 CP30...

PT-2025-29424 · Lb Link · Lb-Link Bl-Ac3600 +5

Name of the Vulnerable Software and Affected Versions: LB-LINK BL-AC1900, BL-AC2100 AZ3, BL-AC3600, BL-AX1800, BL-AX5400P, BL-WR9000 versions up to 20250702 Description: A critical vulnerability exists in the Web Interface component of the affected devices. The vulnerability is related to the...

CVE-2025-49492 Out-of-bounds write in lte-telephony

Out-of-bounds write in ASR180x in lte-telephony, May cause a buffer underrun. This vulnerability is associated with program files apps/atcmdserver/src/devapi.C. This issue affects FalconLinux、Kestrel、LapwingLinux: before v1536...

PT-2025-27487 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A remote code execution issue was reported, but the candidate was issued in error. No further details are available about the issue, including the number of potentially affected devices or a...

D-Link DCS-5020L Buffer Overflow Vulnerability (May 2025)

D-Link DCS-5020L devices are prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2024-51983

CVE-2024-51983 is an unauthenticated DoS affecting multiple Brother/Brother-related devices (printer/ multifunction). The issue arises from improper validation of input in WS-Scan over Web Services (port 80); sending a WS-Scan SOAP request with an unexpected JobToken value crashes the device and ...

PT-2025-24404

Name of the Vulnerable Software and Affected Versions Insyde H2O UEFI firmware affected versions not specified Description A flaw exists in the digital signature verification process within Insyde H2O UEFI firmware. This issue does not properly validate variable attributes, allowing an attacker t...

PT-2025-22975 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server affected versions not specified Description: The issue concerns a credentials disclosure problem. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where...

CVE-2024-34162

The web interface of the affected devices is designed to hide the LDAP credentials even for administrative users. But configuring LDAP authentication to "SIMPLE", the device communicates with the LDAP server in clear-text. The LDAP password can be retrieved from this clear-text communication. As...

CVE-2023-31196

Missing authentication for critical function in Wi-Fi AP UNIT allows a remote unauthenticated attacker to obtain sensitive information of the affected products. Affected products and versions are as follows: AC-PD-WAPU v1.05B04 and earlier, AC-PD-WAPUM v1.05B04 and earlier, AC-PD-WAPU-P v1.05B04P...

CVE-2023-46156

Affected devices improperly handle specially crafted packets sent to port 102/tcp. This could allow an attacker to create a denial of service condition. A restart is needed to restore normal operations...

CVE-2022-29560

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions 2.15.1, RUGGEDCOM ROX MX5000RE All versions 2.15.1, RUGGEDCOM ROX RX1400 All versions 2.15.1, RUGGEDCOM ROX RX1500 All versions 2.15.1, RUGGEDCOM ROX RX1501 All versions 2.15.1, RUGGEDCOM ROX RX1510 All versions 2.15.1,...

CVE-2021-45538

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RAX75 before 1.0.3.106, RAX80 before 1.0.3.106, RBK752 before 3.2.16.6, RBR750 before 3.2.16.6, RBS750 before 3.2.16.6, RBK852 before 3.2.16.6, RBR850 before 3.2.16.6, and RBS850 before 3.2.16.6...

CVE-2021-45527

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.68, D6400 before 1.0.0.102, D7000v2 before 1.0.0.66, D8500 before 1.0.3.58, DC112A before 1.0.0.54, EX7000 before 1.0.1.94, EX7500 before 1.0.0.72, R6250 before 1.0.4.48, R6300v2...

CVE-2021-45549

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects LAX20 before 1.1.6.28, MK62 before 1.1.6.122, MR60 before 1.1.6.122, MS60 before 1.1.6.122, R6400v2 before 1.0.4.118, R6700v3 before 1.0.4.118, R6900P before 1.3.3.140, R7000 before 1.0.11.116, R7000P...

CVE-2021-45629

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR750 before 4.6.3.6, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 before 3.2.17.12...

CVE-2021-44695

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device...