Lucene search
K

15 matches found

OSV
OSV
added 2026/06/23 5:17 p.m.4 views

UBUNTU-CVE-2026-50574

yt-dlp is a command-line audio/video downloader. Prior to 2026.06.09, if aria2c is used as an external downloader for a fragmented manifest format such as an HLS/DASH stream, yt-dlp passes insufficiently sanitized input to aria2c that allows an attacker to perform an arbitrary file write. On...

9.6CVSS6.5AI score0.00406EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.7 views

D-Link多款产品 命令注入漏洞

D-Link DNS-320, etc., are products of D-Link Corporation, a Chinese company. The D-Link DNS-320 is a NAS Network Attached Storage device. The D-Link DNS-325 is also a NAS device. The D-Link DNS-120 is a network storage adapter. Several D-Link products have command injection vulnerabilities, which...

9.8CVSS6.6AI score0.03831EPSS
Exploits1References13
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.8 views

D-Link多款产品 命令注入漏洞

D-Link DNS-120, etc., are products of D-Link Corporation from China. The D-Link DNS-120 is a network storage adapter. The D-Link DNR-202L is a network video camera. The D-Link DNS-315L is a network attached storage device. Several D-Link products have command injection vulnerabilities, which stem...

9.8CVSS6.6AI score0.03394EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2025/07/24 3:26 a.m.3 views

CVE-2025-4394

Medtronic MyCareLink Patient Monitor uses an unencrypted filesystem on internal storage, which allows an attacker with physical access to read and modify files. This issue affects MyCareLink Patient Monitor models 24950 and 24952: before June 25, 2025...

6.8CVSS5.9AI score0.00188EPSS
Exploits0References4
CNNVD
CNNVD
added 2020/12/30 12:0 a.m.7 views

Etherscan ERC20 Token Security Vulnerability

Etherscan ERC20 Token is a validation service organized by Etherscan for use in EtherCurrency services. A security vulnerability exists in the Etherscan ERC20 Token version 2019-06-05 and prior versions, which stems from a typo in the constructor that implements the smart contract. An attacker...

7.5CVSS5.8AI score0.01197EPSS
Exploits1References1
OSV
OSV
added 2020/07/08 4:15 p.m.2 views

CVE-2020-6938

A sensitive information disclosure vulnerability in Tableau Server 10.5, 2018.x, 2019.x, 2020.x released before June 26, 2020, could allow access to sensitive information in log files...

7.5CVSS7.1AI score0.01223EPSS
Exploits0References2
OSV
OSV
added 2019/08/26 1:15 p.m.6 views

CVE-2019-15561

FlashLingo before 2019-06-12 allows SQL injection, related to flashlingo.js and db.js...

9.8CVSS7.3AI score0.01371EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/08 12:0 a.m.4 views

Tapplock Bluetooth Low Energy Subsystem Access Control Error Vulnerability

Tapplock is a smart lock.Bluetooth Low Energy BLE subsystem is one of the low power Bluetooth subsystems. An access control error vulnerability exists in the BLE subsystem in versions of Tapplock prior to 2018-06-12, which can be exploited by an attacker to perform a replay attack...

8.8CVSS6.8AI score0.00985EPSS
Exploits1References1
OSV
OSV
added 2019/06/21 9:15 p.m.4 views

CVE-2019-10028

Denial of Service DOS in Dial Reference Source Code Used before June 18th, 2019...

7.5CVSS7.2AI score0.01116EPSS
Exploits0References1
OSV
OSV
added 2018/07/04 8:29 a.m.4 views

CVE-2018-13133

Golden Frog VyprVPN before 2018-06-21 has a vulnerability associated with the installation process on Windows...

7.8CVSS5.8AI score0.00329EPSS
Exploits0References2
CNVD
CNVD
added 2017/12/05 12:0 a.m.4 views

SAP Business Objects Financial Consolidation Cross-Site Scripting Vulnerability

SAP Business Objects is a suite of business intelligence software and enterprise performance solutions from SAP, Germany. The solution provides reporting, performance management, and data base functionality, and Financial Consolidation is one of the tools used to connect financial systems. A...

6.1CVSS6AI score0.00635EPSS
Exploits0References1
OSV
OSV
added 2017/07/17 1:18 p.m.4 views

CVE-2017-2253

Untrusted search path vulnerability in Installer of Yahoo! Toolbar for Internet explorer v8.0.0.6 and earlier, with its timestamp prior to June 13, 2017, 18:18:55 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8CVSS5.8AI score0.0108EPSS
Exploits0References1
OSV
OSV
added 2016/06/20 1:59 a.m.5 views

CVE-2016-2362

Fonality previously trixbox Pro 12.6 through 14.1i before 2016-06-01 has a hardcoded password for the FTP account, which allows remote attackers to obtain access via a 1 FTP or 2 SSH connection...

9.8CVSS5.8AI score0.02465EPSS
Exploits0References1
OSV
OSV
added 2016/06/13 1:59 a.m.3 views

CVE-2016-2468

The Qualcomm GPU driver in Android before 2016-06-01 on Nexus 5, 5X, 6, 6P, and 7 devices allows attackers to gain privileges via a crafted application, aka internal bug 27475454...

7.8CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2016/06/13 1:59 a.m.4 views

CVE-2016-2466

The Qualcomm sound driver in Android before 2016-06-01 on Nexus 6 devices allows attackers to gain privileges via a crafted application, aka internal bug 27947307...

7.8CVSS7.3AI score0.00421EPSS
Exploits0References1
Rows per page
Query Builder