CVE-2025-55582

The CVE-2025-55582 entry concerns D-Link DCS-825L firmware prior to 1.09.02. The flaw is in the watchdog script mydlink-watch-dog.sh, which blindly respawns binaries (notably dcp and signalc) without verifying integrity, authenticity, or permissions. An attacker with local filesystem access (phys...

PT-2025-34935 · D Link · Dcs-825L

Name of the Vulnerable Software and Affected Versions: D-Link DCS-825L firmware versions prior to 1.09.02 Description: The D-Link DCS-825L firmware contains a flaw in the watchdog script mydlink-watch-dog.sh. This script blindly respawns binaries, including dcp and signalc, without verifying thei...

Linux Distros Unpatched Vulnerability : CVE-2018-11375

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The instlds function in radare2 2.5.0 allows remote attackers to cause a denial of service heap- based out-of-bounds read and application crash via a crafted...

Linux Distros Unpatched Vulnerability : CVE-2017-14333

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The processversionsections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a denial of service Integer Overflow, and hang because of a...

Linux Distros Unpatched Vulnerability : CVE-2024-53429

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Open62541 v1.4.6 is has an assertion failure in fuzzbinarydecode, which leads to a crash. CVE-2024-53429 Note that Nessus relies on the presence of the package ...

Linux Distros Unpatched Vulnerability : CVE-2018-11377

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The avropanalyze function in radare2 2.5.0 allows remote attackers to cause a denial of service heap- based out-of-bounds read and application crash via a craft...

Linux Distros Unpatched Vulnerability : CVE-2020-24826

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the elf::section::asstrtab function of Libelfin v0.3 allows attackers to cause a denial of service DOS through a segmentation fault via a...

CVE-2025-1994

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the BinaryFormatter function...

gdk‑pixbuf: Heap‑buffer‑overflow in gdk‑pixbuf

A flaw exists in gdk‑pixbuf within the gdkpixbufjpegimageloadincrement function io-jpeg.c and in glib’s gbase64encodestep glib/gbase64.c. When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding, allowing out-of-bounds reads from heap memory,...

CVE-2025-50753

Mitrastar GPT-2741GNAC-N2 devices are provided with access through ssh into a restricted default shell.The command "deviceinfo show file" is supposed to be used from restricted shell to show files and directories. By providing " /bin/sh" quotes included to the argument of this command will drop a...

IBM MQIPT Redistributable Installed (Linux)

Binary data ibmmqiptportablenixinstalled.nbin...

IBM MQExplorer Standalone Installed (Linux)

Binary data ibmmqexplorerstandalonenixinstalled.nbin...

CVE-2025-50753

The CVE-2025-50753 entry concerns Mitrastar GPT-2741GNAC-N2 home gateway devices. Affected software exposes SSH access into a restricted default shell, and the command deviceinfo show file is meant for this shell. Supplying the string /bin/sh (with quotes) as the argument to this command can drop...

IBM MQ REST API and Console Installed (Linux)

Binary data ibmmqwebrestapinixinstalled.nbin...

IBM MQ Redistributable Client Installed (Linux)

Binary data ibmmqclientportablenixinstalled.nbin...

IBM MQIPT Redistributable Installed (Windows)

Binary data ibmmqiptportablewininstalled.nbin...

📄 Ilevia EVE X1/X5 Server 4.7.18.0.eden Authentication Bypass

Ilevia EVE X1/X5 Server versions 4.7.18.0.eden and below construct a shell command using unsanitized user input passed to the system function, calling an external binary for authentication. Due to improper input handling and reliance on the binary's return value for access control, an attacker ca...

Linux Distros Unpatched Vulnerability : CVE-2019-7700

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer over-read was discovered in wasm::WasmBinaryBuilder::visitCall in wasm-binary.cpp in Binaryen 1.38.22. A crafted wasm input can cause a...

Linux Distros Unpatched Vulnerability : CVE-2025-6275

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in WebAssembly wabt up to 1.0.37. It has been declared as problematic. Affected by this vulnerability is the function GetFuncOffset of...

Ilevia EVE X1/X5 Server 4.7.18.0.eden Authentication Bypass Exploit

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...