Lucene search
K

5 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/20 10:13 p.m.4 views

CVE-2026-2035

Deciso OPNsense diagbackup.php filename Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Deciso OPNsense. Authentication is required to exploit this vulnerability. The specific flaw...

6.8CVSS6.5AI score0.01535EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/02/20 10:13 p.m.24 views

CVE-2026-2035

The CVE-2026-2035 entry concerns Deciso OPNsense, specifically the diag_backup.php file. The flaw stems from insufficient validation of a user-supplied string before it is used in a system call, enabling a network-adjacent attacker to achieve remote code execution with root privileges. Exploitati...

6.8CVSS7.3AI score0.01535EPSS
Exploits0References2
NVD
NVD
added 2025/12/23 10:15 p.m.5 views

CVE-2025-13698

Deciso OPNsense diagbackup.php filename Directory Traversal Arbitrary File Creation Vulnerability. This vulnerability allows network-adjacent attackers to create arbitrary files on affected installations of Deciso OPNsense. Authentication is required to exploit this vulnerability. The specific fl...

4.5CVSS0.00461EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.10 views

Debian: Security Advisory (DSA-804-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.0367EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.22 views

Debian Security Advisory DSA 804-2 (kdelibs)

The remote host is missing an update to kdelibs announced via advisory DSA 804-2. Lennert Buytenhek discoverd that that patch to cure this information leak was only included but not applied, hence, this update. For completeness we're copying the original advisory text: KDE developers have reporte...

5CVSS0.0367EPSS
Exploits0
Rows per page
Query Builder