Lucene search
K

77 matches found

EUVD
EUVD
added 2026/06/15 9:30 p.m.10 views

EUVD-2026-36756

Tenda 5G03 V05.03.02.04 Version 1.0 is vulnerable to Command injection in the function actionimsonwithapn via the imsapn parameter...

5.3AI score0.01345EPSS
Exploits0References2
CVE
CVE
added 2026/06/15 12:0 a.m.14 views

CVE-2026-38065

The vulnerability CVE-2026-38065 affects Tenda 5G03 devices running firmware V05.03.02.04 (Version 1.0) . A command injection exists in the function action_ims_on_with_apn via the ims_apn parameter. This is supported by multiple connected sources (NVD, ENISA EUVD, CVE listings) confirming the sam...

9.8CVSS5.3AI score0.01345EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/15 12:0 a.m.27 views

CVE-2026-38065

Tenda 5G03 V05.03.02.04 Version 1.0 is vulnerable to Command injection in the function actionimsonwithapn via the imsapn parameter...

0.01345EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.17 views

PT-2026-49296

Name of the Vulnerable Software and Affected Versions Tenda 5G03 version V05.03.02.04 Version 1.0 Description Command injection is possible in the action ims on with apn function through the ims apn parameter. Recommendations At the moment, there is no information about a newer version that...

9.8CVSS5.8AI score0.01345EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 12:31 p.m.5 views

CVE-2023-40125

In onCreate of ApnEditor.java, there is a possible way for a Guest user to change the APN due to a permission bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7AI score0.00093EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:11 p.m.11 views

CVE-2018-18375

goform/getProfileList in Orange AirBox Y858FL01.1604 allows attackers to extract APN data name, number, username, and password via the rand parameter...

9.8CVSS6.9AI score0.013EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:14 a.m.19 views

CVE-2022-33302

Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length...

7.8CVSS6.9AI score0.00118EPSS
Exploits0References1
CVE
CVE
added 2025/12/29 12:0 a.m.15 views

CVE-2025-68706

CVE-2025-68706 affects KuWFi 4G LTE AC900 devices running firmware 1.0.13, in the GoAhead-Webs HTTP daemon. The vulnerability is in the /goform/formMultiApnSetting handler, which copies the user-provided pincode into a fixed 132-byte stack buffer using sprintf() without bounds checking. This stac...

9.8CVSS7.8AI score0.04193EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2025/12/11 8:15 p.m.5 views

CVE-2025-36921

In ProtocolPsUnthrottleApn of protocolpsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation...

5.5CVSS0.00064EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/11 7:35 p.m.17 views

CVE-2025-36921

In ProtocolPsUnthrottleApn of protocolpsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation...

0.00064EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.7 views

PT-2025-50703

In ProtocolPsUnthrottleApn of protocolpsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation...

5.5CVSS5.4AI score0.00064EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-5061

Malware in sbrugna...

5CVSS7.4AI score0.03252EPSS
Exploits1References16
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-10106

Malware in sbrugna...

9.8CVSS9.5AI score0.013EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-5241

Malware in sbrugna...

5.4CVSS5.5AI score0.00513EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-28601

Malicious code in bioql PyPI...

6.5CVSS7.1AI score0.0055EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-36345

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00118EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-3616

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00111EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-44732

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00093EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/30 6:20 p.m.5 views

CVE-2025-51643

Meitrack T366G-L GPS Tracker devices contain an SPI flash chip Winbond 25Q64JVSIQ that is accessible without authentication or tamper protection. An attacker with physical access to the device can use a standard SPI programmer to extract the firmware using flashrom. This results in exposure of...

2.4CVSS6.7AI score0.00245EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.2 views

Malicious code in @zalastax/nolb-apn (npm)

The package @zalastax/nolb-apn was found to contain malicious code...

7AI score
Exploits0
Rows per page
Query Builder