CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

142573 matches found

CVE•added 2026/05/29 10:57 a.m.•11 views

CVE-2025-41277

CVE-2025-41277 affects Waterfall WF-500 TX and RX Hosts (Console WebUI) running version 7.9.1.0 R2502171040. The issue is CWE-78 OS Command Injection in the Console WebUI that allows remote unauthenticated attackers to execute arbitrary operating system commands on the device. Root cause: imprope...

9.8CVSS6.1AI score0.00368EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/05/29 10:57 a.m.•32 views

CVE-2025-41277

Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to execute arbitrary operating...

9.3CVSS0.00368EPSS

Exploits0References1

Cvelist•added 2026/05/29 10:57 a.m.•33 views

CVE-2025-41276

9.3CVSS0.00368EPSS

Exploits0References1

EUVD•added 2026/05/29 10:57 a.m.•8 views

EUVD-2025-209996

9.3CVSS6.1AI score0.00368EPSS

Exploits0References1

ATTACKERKB•added 2026/05/29 10:57 a.m.•9 views

CVE-2025-41276

9.3CVSS6.1AI score0.00368EPSS

Exploits0References2

Vulnrichment•added 2026/05/29 10:57 a.m.•10 views

CVE-2025-41276

9.3CVSS6.1AI score0.00368EPSS

Exploits0References1

CVE•added 2026/05/29 10:57 a.m.•10 views

CVE-2025-41276

CVE-2025-41276 affects Waterfall WF-500 TX and RX Hosts (Console WebUI) running version 7.9.1.0 R2502171040. Nozomi Networks Labs identifies CWE-78 (OS Command Injection) allowing remote unauthenticated attackers to execute arbitrary operating system commands on the device. The vulnerability is t...

9.8CVSS6.1AI score0.00368EPSS

Exploits0References1Affected Software1

CVE•added 2026/05/29 10:56 a.m.•18 views

CVE-2025-41275

The CVE-2025-41275 entry concerns Waterfall WF-500 TX and RX Hosts (Console WebUI) with a CWE-78 OS command injection in version 7.9.1.0 R2502171040. The root cause is improper neutralization of special elements in the OS command flow, enabling remote unauthenticated attackers to execute arbitrar...

9.8CVSS6.1AI score0.00368EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/05/29 10:56 a.m.•7 views

CVE-2025-41275

9.3CVSS6.1AI score0.00368EPSS

Exploits0References1

Cvelist•added 2026/05/29 10:56 a.m.•28 views

CVE-2025-41275

9.3CVSS0.00368EPSS

Exploits0References1

ATTACKERKB•added 2026/05/29 10:56 a.m.•6 views

CVE-2025-41275

9.3CVSS6.1AI score0.00368EPSS

Exploits0References2

EUVD•added 2026/05/29 10:56 a.m.•5 views

EUVD-2025-209995

9.3CVSS6.1AI score0.00368EPSS

Exploits0References1

Vulnrichment•added 2026/05/29 10:53 a.m.•12 views

CVE-2025-41274

9.3CVSS6.1AI score0.00368EPSS

Exploits0References1

ATTACKERKB•added 2026/05/29 10:53 a.m.•9 views

CVE-2025-41274

9.3CVSS6.1AI score0.00368EPSS

Exploits0References2

EUVD•added 2026/05/29 10:53 a.m.•8 views

EUVD-2025-209994

9.3CVSS6.1AI score0.00368EPSS

Exploits0References1

CVE•added 2026/05/29 10:53 a.m.•15 views

CVE-2025-41274

Waterfall WF-500 TX and RX Hosts (Console WebUI) with version 7.9.1.0 R2502171040 is affected by a CWE-78 OS Command Injection vulnerability. Nozomi Networks Labs identifies that remote, unauthenticated attackers can execute arbitrary operating system commands on the device via the Console WebUI....

9.8CVSS6.1AI score0.00368EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/05/29 10:53 a.m.•30 views

CVE-2025-41274

9.3CVSS0.00368EPSS

Exploits0References1

Cvelist•added 2026/05/29 10:52 a.m.•32 views

CVE-2025-41272

9.3CVSS0.00368EPSS

Exploits0References1

EUVD•added 2026/05/29 10:52 a.m.•7 views

EUVD-2025-209992