577 matches found
EUVD-2022-33896
Malicious code in bioql PyPI...
EUVD-2024-19250
Malicious code in bioql PyPI...
EUVD-2021-31510
Malicious code in bioql PyPI...
EUVD-2021-27543
Malicious code in bioql PyPI...
EUVD-2023-50399
Malicious code in bioql PyPI...
EUVD-2022-41336
Malicious code in bioql PyPI...
EUVD-2021-32287
Malicious code in bioql PyPI...
EUVD-2023-26499
Malicious code in bioql PyPI...
EUVD-2024-52018
Malicious code in bioql PyPI...
EUVD-2021-32425
Malicious code in bioql PyPI...
PT-2025-38129
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server versions prior to 25.08 Description: NVIDIA Triton Inference Server contains a vulnerability in the Python backend that allows for remote code execution. An attacker can exploit this by manipulating the model na...
MAL-2025-47033 Malicious code in @liquid-web/common (npm)
The package @liquid-web/common was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2152309995aeb57c2d293acf6ebb54fdc8e47239ba56a4b742bd00743a7468a5 Any computer that has this package installed or running should be considered fully...
CVE-2025-9356 Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 inboundFilterAdd stack-based overflow
A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this issue is the function inboundFilterAdd of the file /goform/inboundFilterAdd. Executing manipulation of the argument ruleName can le...
CVE-2025-27213
An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect devices to enable Android Debug Bridge ADB and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Pro Version 1.5.18 and earlier UniFi Connect Display Versio...
CVE-2025-8828
The CVE-2025-8828 entry affects Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 device families. The root cause is manipulation of arguments to the ipv6cmd function in /goform/setIpv6, which leads to OS command injection. A remote attacker can trigger the vulnerability without user interaction,...
CVE-2025-8820 Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 wirelessBasic stack-based overflow
A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This vulnerability affects the function wirelessBasic of the file /goform/wirelessBasic. The manipulation of the argument submitSSID1 leads to stack-based buffer overflow. The attack can be...
PT-2025-32518 · Linksys · Linksys Re7000 +5
Name of the Vulnerable Software and Affected Versions: Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 versions up to 20250801 Description: A vulnerability exists in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000. The issue is due to os command injection in the sub 3517C...
PT-2025-30693 · Lg Innotek · Lnv5110R
Name of the Vulnerable Software and Affected Versions: LG Innotek camera model LNV5110R Description: An authentication vulnerability exists in the LG Innotek camera model LNV5110R firmware that allows a malicious actor to upload an HTTP POST request to the device’s non-volatile storage. This acti...
CVE-2025-41684 Weidmueller: Root Command Injection via Unsanitized Input in tls_iotgen_setting Endpoint
An authenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of improper sanitizing of user input in the Main Web Interface endpoint tlsiotgensetting...
CVE-2025-41665
An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the PLC due to incorrect default permissions of a config file...