Lucene search
K

120950 matches found

CNNVD
CNNVD
added 2025/10/13 12:0 a.m.3 views

Ericsson RAN Compute和Ericsson Site Controller 6610 安全漏洞

Ericsson RAN Compute and Ericsson Site Controller 6610 are both products of Ericsson, a Swedish company.Ericsson RAN Compute is a cloud-native software solution for handling computing functions in a RAN.Ericsson Site Controller 6610 is an intelligent power management controller for site...

8.4CVSS6.9AI score0.00266EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/13 12:0 a.m.4 views

PT-2025-41773

Name of the Vulnerable Software and Affected Versions SOOP-CLM affected versions not specified Description SOOP-CLM, developed by PiExtract, contains a Hidden Functionality issue. Privileged remote attackers can exploit this functionality to execute arbitrary code on the server. Recommendations A...

8.6CVSS7.5AI score0.00529EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/10/13 12:0 a.m.4 views

Dassault Systèmes 3DSwymer 安全漏洞

Dassault Systèmes 3DSwymer is a platform from Dassault Systèmes, France. It helps connect employees, partners and customers across the ecosystem for collaboration. A security vulnerability exists in Dassault Systèmes 3DSwymer, which stems from vulnerability to OS command injection attacks that...

9CVSS7.5AI score0.00938EPSS
Exploits0References1
CNVD
CNVD
added 2025/10/13 12:0 a.m.3 views

Tenda AC18 newVersion Parameter Stack Buffer Overflow Vulnerability

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 has a stack buffer overflow vulnerability, which originates from the parameter newVersion in the file /goform/setNotUpgrade fails to correct...

9CVSS8.4AI score0.00745EPSS
Exploits1References1
CNVD
CNVD
added 2025/10/13 12:0 a.m.3 views

Tenda AC18 Username Parameter Stack Buffer Overflow Vulnerability

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 has a stack buffer overflow vulnerability, which originates from the parameter Username in the file /goform/fastsettingpppoeset fails to...

9CVSS8.4AI score0.00719EPSS
Exploits1References1
CNVD
CNVD
added 2025/10/13 12:0 a.m.3 views

Tenda AC18 ddnsEn Parameter Stack Buffer Overflow Vulnerability

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 has a stack buffer overflow vulnerability, which originates from the parameter ddnsEn in the file /goform/SetDDNSCfg fails to correctly...

9CVSS8.4AI score0.00988EPSS
Exploits1References1
CNVD
CNVD
added 2025/10/13 12:0 a.m.1 views

Tenda AC18 wifi_chkHz parameter stack buffer overflow vulnerability

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 has a stack buffer overflow vulnerability, which originates from the parameter wifichkHz in the file /goform/WifiMacFilterSet fails to...

9CVSS8.4AI score0.01147EPSS
Exploits1References1
CNVD
CNVD
added 2025/10/13 12:0 a.m.2 views

Tenda AC15 formfast_setting_pppoe_set function buffer overflow vulnerability

The Tenda AC15 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in the Tenda AC15 formfastsettingpppoeset function, which can be exploited by an attacker to execute arbitrary code on the system or cause a denial of service...

9CVSS8.3AI score0.00719EPSS
Exploits1References1
CNVD
CNVD
added 2025/10/13 12:0 a.m.3 views

Tenda AC18 upnpEn Parameter Stack Buffer Overflow Vulnerability

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 has a stack buffer overflow vulnerability, which originates from the parameter upnpEn in the file /goform/SetUpnpCfg fails to correctly...

9CVSS8.4AI score0.01147EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/12 10:5 a.m.8 views

CVE-2025-8593

The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to authorization bypass in versions less than, or equal to, 1.3.27. This is due to a missing capability check on the 'installplugin' function. This makes it possible for authenticated attackers, with subscriber-level access...

8.8CVSS6.6AI score0.00392EPSS
Exploits0References1
OSV
OSV
added 2025/10/11 1:20 p.m.3 views

OESA-2025-2386 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability ma...

7CVSS7.5AI score0.00193EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/11 12:30 p.m.5 views

EUVD-2025-33844

The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to authorization bypass in versions less than, or equal to, 1.3.27. This is due to a missing capability check on the 'installplugin' function. This makes it possible for authenticated attackers, with subscriber-level access...

8.8CVSS6.1AI score0.00392EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/10/11 11:20 a.m.5 views

CVE-2025-61864

A use after free vulnerability exists in VS6ComFile!loadlinkinf of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

8.4CVSS7.2AI score0.00153EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/11 11:20 a.m.7 views

CVE-2025-61862

An out-of-bounds read vulnerability exists in VS6ComFile!getovlpelementsize of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

8.4CVSS7.2AI score0.00153EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/11 10:31 a.m.6 views

CVE-2025-61858

An out-of-bounds write vulnerability exists in VS6ComFile!setAnimationItem of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

8.4CVSS7.4AI score0.00164EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/11 10:31 a.m.5 views

CVE-2025-61856

A stack-based buffer overflow vulnerability exists in VS6ComFile!CV7BaseMap::WriteV7DataToRom of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

8.4CVSS7.6AI score0.00181EPSS
Exploits0References1
NVD
NVD
added 2025/10/11 10:15 a.m.3 views

CVE-2025-8593

The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to authorization bypass in versions less than, or equal to, 1.3.27. This is due to a missing capability check on the 'installplugin' function. This makes it possible for authenticated attackers, with subscriber-level access...

8.8CVSS0.00392EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/10/11 9:28 a.m.13 views

CVE-2025-8593 GSheetConnector For Gravity Forms <= 1.3.27 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation

The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to authorization bypass in versions less than, or equal to, 1.3.27. This is due to a missing capability check on the 'installplugin' function. This makes it possible for authenticated attackers, with subscriber-level access...

8.8CVSS0.00392EPSS
Exploits0References3
Debian
Debian
added 2025/10/11 8:21 a.m.4 views

[SECURITY] [DSA 6024-1] ghostscript security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6024-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 11, 2025 https://www.debian.org/security/faq -...

5.5CVSS7.9AI score0.00388EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/11 12:0 a.m.5 views

EulerOS 2.0 SP11 : gdk-pixbuf2 (EulerOS-SA-2025-2191)

According to the versions of the gdk-pixbuf2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw exists in gdkpixbuf within the gdkpixbufjpegimageloadincrement function io-jpeg.c and in glibs gbase64encodestep glib/gbase64.c. When...

7.5CVSS7.8AI score0.01051EPSS
Exploits0References3
Rows per page
Query Builder