Lucene search
K

20 matches found

Vulnrichment
Vulnrichment
added 2026/05/11 3:0 a.m.9 views

CVE-2026-8267 Open5GS SMF smf_nsmf_handle_created_data_in_vsmf denial of service

A flaw has been found in Open5GS up to 2.7.7. This vulnerability affects the function smfnsmfhandlecreateddatainvsmf of the component SMF. This manipulation causes denial of service. The attack may be initiated remotely. The exploit has been published and may be used. The project was informed of...

5.3CVSS5.4AI score0.00372EPSS
Exploits1References5
CVE
CVE
added 2026/04/28 6:51 a.m.13 views

CVE-2024-54011

Technical details about CVE-2024-54011 are not publicly available in the provided documents. Monitor for updates.

6.5CVSS5.4AI score0.0024EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/11/21 6:18 a.m.9 views

CVE-2025-64299

Vulnerability summary (CVE-2025-64299) : LogStare Collector improperly handles password hash data, allowing an administrative user to obtain other users’ password hashes. Affected product: LogStare Collector. Impact: disclosure of password hashes (confidentiality issue); no exploitation details a...

6.9CVSS6.7AI score0.00226EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/11 12:0 a.m.7 views

PT-2025-29200

Name of the Vulnerable Software and Affected Versions Axis Video Management Software affected versions not specified Description The communication protocol used between the client and server has a flaw that could allow an authenticated user to perform a remote code execution attack. The issue...

9CVSS7.9AI score0.00501EPSS
Exploits0References20
RedHat Linux
RedHat Linux
added 2025/07/01 2:34 p.m.3 views

com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur...

8.7CVSS7.1AI score0.00634EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2025/04/19 12:0 a.m.7 views

The vulnerability of the setNetworkDiag() function in the microprogramming software for TOTOLINK CA300-PoE allows a hacker to execute arbitrary commands.

The vulnerability of the setNetworkDiag function in TOTOLINK CA300-PoE router microprogramming software is related to the lack of measures taken to clean data at the management level when processing the NetDiagPingSize parameter. Exploiting this vulnerability allows a remote attacker to execute...

10CVSS8.1AI score0.01946EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/11 12:0 a.m.7 views

The vulnerability of the meshSlaveDlfw() function in the microprogramming software for TOTOLINK T8 allows a hacker to execute arbitrary commands.

The vulnerability of the meshSlaveDlfw function in the microprogramming software for TOTOLINK T8 routers is related to the lack of measures taken to clean data at the management level when processing the serverIp parameter. Exploiting this vulnerability allows a remote attacker to execute arbitra...

10CVSS8.1AI score0.02081EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/11 12:0 a.m.7 views

The vulnerability of the recvSlaveUpgstatus() function in the TOTOLINK T8 router’s microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the recvSlaveUpgstatus function in the microprogramming software for TOTOLINK T8 routers is related to the lack of measures taken to clean data at the management level when processing the ip parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrar...

10CVSS8.1AI score0.02109EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.6 views

The vulnerability of the cgi_photo_search() function (/cgi-bin/photocenter_mgr.cgi) in the microprogramming software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 allows a hacker to execute arbitrary commands.

The vulnerability of the cgiphotosearch function /cgi-bin/photocentermgr.cgi in the microprogramming software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4...

6.5CVSS7.3AI score0.25129EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2023/12/12 12:0 a.m.7 views

The vulnerability of Tenda IP cameras’ microprogramming software is related to improper protection of the alternative path, allowing intruders to execute arbitrary commands.

The vulnerability of Tenda IP cameras’ microprogramming software is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

10CVSS8.1AI score0.02456EPSS
Exploits1References3Affected Software14
BDU FSTEC
BDU FSTEC
added 2023/10/17 12:0 a.m.9 views

The vulnerability of the software for creating wireless routers based on Debian RaspAP, related to the lack of measures taken to clean data at the management level, allows a hacker to execute arbitrary commands.

The vulnerability of the software for creating wireless routers based on Debian RaspAP is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using a specially crafted POST request with t...

10CVSS8AI score0.34662EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/10/31 12:0 a.m.6 views

The vulnerability of D-Link DIR878 router’s microprogramming software, related to the lack of measures taken to clean data at the management level, allows a hacker to execute arbitrary code.

The vulnerability of D-Link DIR878 router’s microprogramming software is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using the /bin/proc.cgi parameter...

10CVSS8.2AI score0.01748EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/04/04 12:0 a.m.3 views

多款Qualcomm产品安全漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc., and from time to time manufactured on the surface of semiconductor wafers. A security vulnerability exists in several Qualcomm products that...

8.8CVSS7.8AI score0.0028EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/08/05 12:0 a.m.5 views

HCC Embedded InterNiche 安全漏洞

HCC Embedded InterNiche is a newsletter software. A security vulnerability exists in HCC Embedded InterNiche, which stems from a TCP emergency data handling function that may call a panic function, which can be exploited by an attacker to cause an infinite loop...

7.5CVSS5.6AI score0.01493EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/05/26 12:0 a.m.33 views

Ubuntu Apport 后置链接漏洞

Apport is a toolkit for collecting and giving feedback on error messages information that the operating system finds useful when an application crashes. A security vulnerability exists in Ubuntu Apport that stems from incorrect handling of certain information gathering operations, which can be...

7.3CVSS6AI score0.00289EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.4 views

The vulnerability of the Cisco IOx software platform for the Cisco IOS XE operating system allows a hacker to escalate their privileges and execute arbitrary code.

The vulnerability of the Cisco IOx software platform for the Cisco IOS XE operating system is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability can allow a remote attacker to enhance their privileges and execute arbitrary code...

8.5CVSS7.4AI score0.3539EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2020/11/02 12:0 a.m.4 views

PT-2020-8642 · Unknown · Juuko K-808

Name of the Vulnerable Software and Affected Versions: JUUKO K-808 versions prior to numbers ending ...9A, ...9B, ...9C, etc. Description: The issue allows remote attackers to execute commands on vulnerable installations of the equipment. No authentication is required to exploit this issue. The...

10CVSS9.3AI score0.01489EPSS
Exploits0References4
OSV
OSV
added 2017/02/07 1:34 p.m.3 views

MGASA-2017-0043 Updated irssi-otr packages fix security vulnerability

It was discovered that irssi-otr had a flaw in handing data returned by libotr. After the initiation of the OTR session only the first line was sent as a PRIVMSG, while additional data would be sent as raw commands to the IRC server. The additional data would ordinarily be a human-readable...

7.1AI score
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/01/26 12:0 a.m.6 views

Vulnerabilities in the Android operating system that allow a hacker to cause the device to freeze or restart

The multiple vulnerabilities in libmedia and libstagefright of Android operating system’s media servers are related to improper data processing. Exploiting these vulnerabilities can allow a malicious actor to cause the device to freeze or restart remotely...

7.1CVSS5.9AI score0.00626EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/11/20 12:0 a.m.8 views

The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Bluetooth component in the Android operating system is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to enhance their privileges through a specially created application...

5.1CVSS5.5AI score0.00629EPSS
Exploits0References1
Rows per page
Query Builder