Lucene search
K

877 matches found

Cvelist
Cvelist
added 2026/02/16 4:2 a.m.36 views

CVE-2026-2534 Comfast CF-N1 V2 mbox-config sub_44AC4C command injection

A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub44AC4C of the file /cgi-bin/mbox-config?method=SET&section=ptestbandwidth. The manipulation of the argument bandwidth leads to command injection. The attack can be initiated remotely. The exploit h...

6.5CVSS0.13525EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/02/16 4:2 a.m.4 views

CVE-2026-2534

A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub44AC4C of the file /cgi-bin/mbox-config?method=SET&section=ptestbandwidth. The manipulation of the argument bandwidth leads to command injection. The attack can be initiated remotely. The exploit h...

6.5CVSS5.4AI score0.13525EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/16 4:2 a.m.5 views

CVE-2026-2534 Comfast CF-N1 V2 mbox-config sub_44AC4C command injection

A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub44AC4C of the file /cgi-bin/mbox-config?method=SET&section=ptestbandwidth. The manipulation of the argument bandwidth leads to command injection. The attack can be initiated remotely. The exploit h...

6.5CVSS5.5AI score0.13525EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/16 12:0 a.m.17 views

PT-2026-8310

Name of the Vulnerable Software and Affected Versions Comfast CF-N1 V2 version 2.6.0.2 Description A remote command injection issue exists in Comfast CF-N1 V2 2.6.0.2. The issue is located in the sub 44AC4C function within the /cgi-bin/mbox-config file. Manipulation of the bandwidth argument in t...

6.5CVSS6.7AI score0.13525EPSS
Exploits1References12
CNNVD
CNNVD
added 2026/02/16 12:0 a.m.9 views

COMFAST CF-N1 命令注入漏洞

COMFAST CF-N1 is a wireless router produced by COMFAST Corporation. The Comfast CF-N1 V2 2.6.0.2 version has a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter “bandwidth” in the function sub44AC4C within the file...

8.8CVSS6.6AI score0.13525EPSS
Exploits1References4
Packet Storm News
Packet Storm News
added 2026/02/04 12:0 a.m.34 views

Crypto-RV: High-Efficiency FPGA-Based RISC-V Cryptographic Co-Processor for IoT Security

Cryptographic operations are critical for securing IoT, edge computing, and autonomous systems. However, current RISC-V platforms lack efficient hardware support for comprehensive cryptographic algorithm families and post-quantum cryptography. This paper presents Crypto-RV, a RISC-V co-processor...

5.9AI score
Exploits0
EUVD
EUVD
added 2026/01/31 12:30 a.m.5 views

EUVD-2020-30935

10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application's registration key input, enabling...

9.8CVSS6.6AI score0.00709EPSS
Exploits0References4
NVD
NVD
added 2026/01/30 11:16 p.m.9 views

CVE-2020-37043

10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application's registration key input, enabling...

9.8CVSS0.00709EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/30 10:7 p.m.3 views

CVE-2020-37043

10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application's registration key input, enabling...

9.8CVSS6.6AI score0.00709EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/01/30 10:7 p.m.21 views

CVE-2020-37043 10-Strike Bandwidth Monitor 3.9 - Buffer Overflow

10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application's registration key input, enabling...

9.8CVSS0.00709EPSS
Exploits0References3
CVE
CVE
added 2026/01/30 10:7 p.m.12 views

CVE-2020-37043

The CVE concerns 10-Strike Bandwidth Monitor 3.9. A buffer overflow in the registration key input allows exploitation that can bypass SafeSEH, ASLR and DEP, enabling remote code execution and arbitrary system commands. Connected sources confirm the targeted software and the exploitation path, but...

9.8CVSS6.6AI score0.00709EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/30 12:0 a.m.7 views

PT-2026-5483

Name of the Vulnerable Software and Affected Versions 10-Strike Bandwidth Monitor version 3.9 Description The software contains a buffer overflow issue that allows attackers to bypass SafeSEH, ASLR, and DEP protections. Exploitation occurs through crafted input sent to the application’s...

9.8CVSS6.7AI score0.00709EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/30 12:0 a.m.7 views

10-Strike Bandwidth Monitor security vulnerability

10-Strike Bandwidth Monitor is a network bandwidth monitoring and traffic analysis tool developed by the American company 10-Strike. Version 3.9 of 10-Strike Bandwidth Monitor contains a security vulnerability; this vulnerability stems from a buffer overflow issue related to the input of...

9.8CVSS6.4AI score0.00709EPSS
Exploits0References3
NVD
NVD
added 2026/01/29 3:16 p.m.6 views

CVE-2020-37021

10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during service startup...

8.5CVSS0.00115EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/29 2:28 p.m.5 views

CVE-2020-37021

10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during service startup...

8.5CVSS5.9AI score0.00115EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/01/29 2:28 p.m.9 views

CVE-2020-37021

10-Strike Bandwidth Monitor 3.9 has an unquoted service path vulnerability allowing local privilege escalation to SYSTEM during service startup by placing a malicious executable in specific file paths. Root cause: unquoted service path in multiple services. Public details include CVSS 3.1/7.8 (HI...

8.5CVSS5.9AI score0.00115EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/29 2:28 p.m.35 views

CVE-2020-37021 Bandwidth Monitor 3.9 - 'Svc10StrikeBandMontitor' Unquoted Service Path

10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during service startup...

8.5CVSS0.00115EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/29 2:28 p.m.6 views

CVE-2020-37021 Bandwidth Monitor 3.9 - 'Svc10StrikeBandMontitor' Unquoted Service Path

10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during service startup...

8.5CVSS5.9AI score0.00115EPSS
Exploits0References3
OSV
OSV
added 2026/01/29 12:0 a.m.5 views

ALSA-2026:1595 Moderate: iperf3 security update

Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss. Security Fixes: iperf3: iperf Heap Buffer Overflow CVE-2025-54349 For more details about the security issues, including the impac...

10CVSS5.5AI score0.00365EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/29 12:0 a.m.7 views

10-Strike Bandwidth Monitor code issue vulnerability

10-Strike Bandwidth Monitor is a network bandwidth monitoring and traffic analysis tool developed by the American company 10-Strike. Version 3.9 of 10-Strike Bandwidth Monitor has a code vulnerability; this vulnerability arises from multiple service paths not being enclosed in quotes, which may...

8.5CVSS5.9AI score0.00115EPSS
Exploits0References3
Rows per page
Query Builder