WAVLINK WN535K3 安全漏洞

WAVLINK WN535K3 is a wireless router from China Ruiyin WAVLINK. A security vulnerability exists in the Wavlink WN535K3 version 20191010, which stems from the improper handling of the command parameter in the setsyscmd function, which could lead to the execution of arbitrary commands...

CVE-2025-53508

Multiple products provided by iND Co.,Ltd contain an OS command injection vulnerability. If exploited, an arbitrary OS command may be executed and sensitive information may be obtained. As for the details of affected product names and versions, refer to the information under Product Status...

CVE-2025-53508

CVE-2025-53508 affects iND Co.,Ltd embedded devices including HL330-DLS (MC7700/MC7330 variants), HL320-DLS, LM-100, LM-200 (AMP570/EC25-J variants), L2X Assist, L2X Assist-RS-A/E, F2L Assist-SS-A/E. Root cause is OS command injection allowing an arbitrary OS command to be executed, potentially l...

CVE-2025-53508

Multiple products provided by iND Co.,Ltd contain an OS command injection vulnerability. If exploited, an arbitrary OS command may be executed and sensitive information may be obtained. As for the details of affected product names and versions, refer to the information under Product Status...

QNAP Systems QuRouter 安全漏洞

QNAP Systems QuRouter is a router management system from China Weilian Technology QNAP Systems. A security vulnerability exists in QNAP Systems QuRouter version 2.5.1 that originates from command injection and could lead to the execution of arbitrary commands...

QNAP HybridDesk Station 安全漏洞

QNAP HybridDesk Station is a software credential from Taiwan, China-based QNAP Technology QNAP. A security vulnerability exists in QNAP HybridDesk Station that stems from susceptibility to a command injection attack that could result in the execution of arbitrary commands...

D-Link DSL-7740C ping6 function command injection vulnerability

The D-Link DSL-7740C is a modem from China-based AUO D-Link. A command injection vulnerability exists in the D-Link DSL-7740C ping6 function. The vulnerability stems from the ping6 function failing to properly filter construct command special characters, commands, etc. The vulnerability can be...

D-Link DSL-7740C EXE Parameter Command Injection Vulnerability

The D-Link DSL-7740C is a modem from China-based AUO D-Link. A command injection vulnerability exists in the D-Link DSL-7740C EXE parameter, which can be exploited by an attacker to execute arbitrary commands by serving a crafted GET request...

D-Link DSL-7740C backup function command injection vulnerability

The D-Link DSL-7740C is a modem from China-based AUO D-Link. A command injection vulnerability exists in the D-Link DSL-7740C backup function, which can be exploited by an attacker to execute arbitrary commands...

CVE-2025-20294

Multiple vulnerabilities in the CLI and web-based management interface of Cisco UCS Manager Software could allow an authenticated, remote attacker with administrative privileges to perform command injection attacks on an affected system and elevate privileges to root. These vulnerabilities are du...

CVE-2025-57797

Concretely, CVE-2025-57797 affects ScanSnap Manager installers prior to V6.5L61. The root cause is an incorrect privilege assignment (CWE-266) which could allow an authenticated local attacker to escalate privileges and execute arbitrary commands. Affected component: ScanSnap Manager installers. ...

CVE-2025-29519

A command injection vulnerability in the EXE parameter of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to execute arbitrary commands via supplying a crafted GET request...

D-Link DSL-7740C 安全漏洞

The D-Link DSL-7740C is a modem from China-based AUO D-Link. A command injection vulnerability exists in the D-Link DSL-7740C backup function, which can be exploited by an attacker to execute arbitrary commands...

D-Link DSL-7740C 安全漏洞

The D-Link DSL-7740C is a modem from China-based AUO D-Link. A command injection vulnerability exists in the D-Link DSL-7740C traceroute6 function, which can be exploited by an attacker to cause arbitrary command execution...

TOTOLINK A3002R devicemac parameter command injection vulnerability

The TOTOLINK A3002R is a wireless router manufactured by China's Gion Electronics TOTOLINK, whose main function is to provide wireless network connectivity for home or small office environments. The TOTOLINK A3002R suffers from an OS command injection vulnerability, which stems from a command...

D-Link DSL-7740C 安全漏洞

The D-Link DSL-7740C is a modem from China-based AUO D-Link. A command injection vulnerability exists in the D-Link DSL-7740C ping function. The vulnerability stems from the ping function failing to properly filter constructed command special characters, commands, etc. The vulnerability can be...

Linux Distros Unpatched Vulnerability : CVE-2018-0493

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - remctld in remctl before 3.14, when an attacker is authorized to execute a command that uses the sudo option, has a use-after-free that leads to a daemon crash,...

CVE-2025-57105

The DI-7400G+ router has a command injection vulnerability, which allows attackers to execute arbitrary commands on the device. The sub478D28 function in in mngplatform.asp, and sub4A12DC function in wayosacserver.asp of the jhttpd program, with the parameter acmngsrvhost...

DEBIAN-CVE-2025-29366

In mupen64plus v2.6.0 there is an array overflow vulnerability in the writerdramregs and writerdramregs functions, which enables executing arbitrary commands on the host machine...

Siemens RUGGEDCOM APE1808 Nozomi Guardian/CMC Vulnerability

RUGGEDCOM APE1808 is an industrial-grade application hosting platform. The Siemens RUGGEDCOM APE1808 suffers from a Nozomi Guardian/CMC vulnerability that can be exploited by an attacker to execute unauthorized arbitrary operating system commands...