23 matches found
CVE-2025-69542
A Command Injection Vulnerability has been discovered in the DHCP daemon service of D-Link DIR895LA1 v102b07. The vulnerability exists in the lease renewal processing logic where the DHCP hostname parameter is directly concatenated into a system command without proper sanitization. When a DHCP...
CVE-2025-14910
A vulnerability was detected in Edimax BR-6208AC 1.02. This impacts the function handleretr of the component FTP Daemon Service. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used. Edimax confirms this issue: "This product is...
CVE-2025-14910
A vulnerability was detected in Edimax BR-6208AC 1.02. This impacts the function handleretr of the component FTP Daemon Service. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used. Edimax confirms this issue: "This product is...
CVE-2025-14910 Edimax BR-6208AC FTP Daemon Service handle_retr path traversal
A vulnerability was detected in Edimax BR-6208AC 1.02. This impacts the function handleretr of the component FTP Daemon Service. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used. Edimax confirms this issue: "This product is...
CVE-2025-14910
The CVE-2025-14910 entry concerns Edimax BR-6208AC (firmware 1.02) with a path traversal flaw in the FTP Daemon Service’s handle_retr function. The vulnerability allows remote manipulation to traverse filesystem paths. Public exploits exist, and the issue is tied to a discontinued device with no ...
Edimax BR-6208AC 路径遍历漏洞
The Edimax BR-6208AC is a wireless router from Edimax Taiwan, China. A path traversal vulnerability exists in the Edimax BR-6208AC version 1.02, which originates from a misbehavior of the function handleretr in the FTP Daemon Service component, and could lead to a path traversal attack...
RHSA-2025:19851 Red Hat Security Advisory: sssd security update
Bulletin has no description...
RHSA-2025:19610 Red Hat Security Advisory: sssd security update
Bulletin has no description...
Eclipse BlueChi 安全漏洞
Eclipse BlueChi is an open source service control and state management software for Eclipse. A security vulnerability exists in Eclipse BlueChi that originates from a user with root privileges being able to create or overwrite systemd service unit files on managed nodes, which could lead to...
EUVD-2024-39598
Malicious code in bioql PyPI...
PT-2025-23416 · Mageia · Deluge
Limited unauthenticated file read in /flag. CVE-2025-46561 New version check over unencrypted channel. CVE-2025-46562 SSRF with information leak and limited unauthenticated file write. CVE-2025-46563 Unauthenticated file read in /js may lead to RCE. CVE-2025-46564 Mageia internal bug:...
CVE-2025-29660
A vulnerability exists in the daemon process of the Yi IOT XY-3820 v6.0.24.10, which exposes a TCP service on port 6789. This service lacks proper input validation, allowing attackers to execute arbitrary scripts present on the device by sending specially crafted TCP requests using directory...
PT-2024-5704 · Microsoft · Windows Line Printer Daemon (Lpd) Service +1
Name of the Vulnerable Software and Affected Versions: Windows Line Printer Daemon LPD Service affected versions not specified Description: The vulnerability in the Windows Line Printer Daemon LPD Service is related to the use of memory after it has been freed. This issue can be exploited by a...
CVE-2024-42393 Unauthenticated Stack-Based Buffer Overflow Remote Command Execution (RCE) in the Soft AP Daemon Service Accessed by the PAPI Protocol
There are vulnerabilities in the Soft AP Daemon Service which could allow a threat actor to execute an unauthenticated RCE attack. Successful exploitation could allow an attacker to execute arbitrary commands on the underlying operating system leading to complete system compromise...
CVE-2024-42393 Unauthenticated Stack-Based Buffer Overflow Remote Command Execution (RCE) in the Soft AP Daemon Service Accessed by the PAPI Protocol
There are vulnerabilities in the Soft AP Daemon Service which could allow a threat actor to execute an unauthenticated RCE attack. Successful exploitation could allow an attacker to execute arbitrary commands on the underlying operating system leading to complete system compromise...
CVE-2024-42393
Technical details for CVE-2024-42393 are not publicly available in the provided documents. Monitor for updates from NVD/CVE and vendor advisories.
CVE-2024-42394 Unauthenticated Stack-Based Buffer Overflow Remote Command Execution (RCE) in the Soft AP Daemon Service Accessed by the PAPI Protocol
There are vulnerabilities in the Soft AP Daemon Service which could allow a threat actor to execute an unauthenticated RCE attack. Successful exploitation could allow an attacker to execute arbitrary commands on the underlying operating system leading to complete system compromise...
Siemens Scalance W1750D Improper Input Validation (CVE-2023-45622)
Unauthenticated Denial-of-Service DoS vulnerabilities exist in the BLE daemon service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to interrupt the normal operation of the affected access point. This plugin only works with Tenable.ot. Plea...
CVE-2022-36925 Insecure key generation for Zoom Rooms for macOS Clients
Zoom Rooms for macOS clients before version 5.11.4 contain an insecure key generation mechanism. The encryption key used for IPC between the Zoom Rooms daemon service and the Zoom Rooms client was generated using parameters that could be obtained by a local low-privileged application. That key ca...
The vulnerability of the ALD service in the Astra Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the ALD service in the Astra Linux operating system is related to an error that causes excessive network traffic generation. Exploiting this vulnerability allows a malicious actor to cause a failure in the slapd service or the entire system...