Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-25499

Malicious code in bioql PyPI...

8.7CVSS6.5AI score0.00932EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-25498

Malicious code in bioql PyPI...

6.8CVSS6.5AI score0.00236EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/24 3:14 a.m.5 views

CVE-2025-41451

Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command 'Command Injection' in Danfoss AK-SM8xxA Series prior to version 4.3.1, leading to a potential post-authenticated remote code execution on an attacked system...

8.7CVSS8.2AI score0.00932EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/24 3:14 a.m.5 views

CVE-2025-41452

Post-authenticated external control of system web interface configuration setting vulnerability in Danfoss AK-SM8xxA Series prior to 4.3.1, which could allow for a denial of service attack induced by improper handling of exceptional conditions...

6.8CVSS7.2AI score0.00236EPSS
Exploits0References1
NVD
NVD
added 2025/08/22 3:15 a.m.6 views

CVE-2025-41452

Post-authenticated external control of system web interface configuration setting vulnerability in Danfoss AK-SM8xxA Series prior to 4.3.1, which could allow for a denial of service attack induced by improper handling of exceptional conditions...

6.8CVSS0.00236EPSS
Exploits0References1
NVD
NVD
added 2025/08/22 3:15 a.m.5 views

CVE-2025-41451

Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command 'Command Injection' in Danfoss AK-SM8xxA Series prior to version 4.3.1, leading to a potential post-authenticated remote code execution on an attacked system...

8.7CVSS0.00932EPSS
Exploits0References1
CVE
CVE
added 2025/08/22 2:40 a.m.18 views

CVE-2025-41452

Danfoss AK-SM8xxA Series before 4.3.1 contains a post-authenticated external control of the system Web interface configuration, with improper handling of exceptional conditions that could cause a DoS. CVSS 6.8 (Network, high attack complexity, high impact on availability). Remediation: update to ...

6.8CVSS7.2AI score0.00236EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/22 2:40 a.m.10 views

CVE-2025-41452 Post auth nginx configuration injection in Danfoss AK-SM8xxA Series

Post-authenticated external control of system web interface configuration setting vulnerability in Danfoss AK-SM8xxA Series prior to 4.3.1, which could allow for a denial of service attack induced by improper handling of exceptional conditions...

6.8CVSS0.00236EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/22 2:40 a.m.3 views

CVE-2025-41452 Post auth nginx configuration injection in Danfoss AK-SM8xxA Series

Post-authenticated external control of system web interface configuration setting vulnerability in Danfoss AK-SM8xxA Series prior to 4.3.1, which could allow for a denial of service attack induced by improper handling of exceptional conditions...

6.8CVSS7.2AI score0.00236EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/22 2:40 a.m.3 views

CVE-2025-41451 Post-Authentication OS Command Injection RCE in Danfoss AK-SM8xxA Series

Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command 'Command Injection' in Danfoss AK-SM8xxA Series prior to version 4.3.1, leading to a potential post-authenticated remote code execution on an attacked system...

8.7CVSS8.2AI score0.00932EPSS
Exploits0References1
CVE
CVE
added 2025/08/22 2:40 a.m.17 views

CVE-2025-41451

CVE-2025-41451 affects Danfoss AK-SM8xxA Series prior to version 4.3.1. Root cause: improper neutralization of alarm-to-mail configuration fields in an OS shell command, enabling post-authenticated remote code execution on the attacked system. Impact: remote code execution with high severity; att...

8.7CVSS8.2AI score0.00932EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/22 2:40 a.m.7 views

CVE-2025-41451 Post-Authentication OS Command Injection RCE in Danfoss AK-SM8xxA Series

Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command 'Command Injection' in Danfoss AK-SM8xxA Series prior to version 4.3.1, leading to a potential post-authenticated remote code execution on an attacked system...

8.7CVSS0.00932EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/22 12:0 a.m.4 views

Danfoss AK-SM8xxA Series 安全漏洞

Danfoss AK-SM8xxA Series is a series of system-only managers from Danfoss, Denmark. A security vulnerability exists in Danfoss AK-SM8xxA Series versions prior to 4.3.1 that originates from improper neutralization and could lead to remote code execution...

8.7CVSS7.6AI score0.00932EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/08/22 12:0 a.m.7 views

PT-2025-34328 · Danfoss · Ak-Sm8Xxa

Name of the Vulnerable Software and Affected Versions: Danfoss AK-SM8xxA Series versions prior to 4.3.1 Description: A post-authenticated external control of system web interface configuration setting issue exists. This could allow for a denial of service attack due to improper handling of...

6.8CVSS7.3AI score0.00236EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/08/22 12:0 a.m.5 views

PT-2025-34327 · Danfoss · Ak-Sm8Xxa

Name of the Vulnerable Software and Affected Versions: Danfoss AK-SM8xxA Series versions prior to 4.3.1 Description: Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command 'Command Injection' exists in the software, potentially leading to post-authenticated remo...

8.7CVSS7.7AI score0.00932EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/08/22 12:0 a.m.6 views

Danfoss AK-SM8xxA Series 安全漏洞

Danfoss AK-SM8xxA Series is a series of system-only managers from Danfoss, Denmark. A security vulnerability exists in Danfoss AK-SM8xxA Series versions prior to 4.3.1, which stems from mishandling of exceptions and could result in a denial of service...

6.8CVSS6.4AI score0.00236EPSS
Exploits0References3
Rows per page
Query Builder