Lucene search
K

307 matches found

OSV
OSV
added 2026/03/04 5:29 a.m.3 views

MINI-HMQ4-G427-78QV

Bulletin has no description...

8.6CVSS7AI score0.00532EPSS
Exploits0
OSV
OSV
added 2026/03/04 5:27 a.m.3 views

MINI-875R-J27C-HHQM

Bulletin has no description...

10CVSS7AI score0.00765EPSS
Exploits1
OSV
OSV
added 2026/03/04 5:24 a.m.3 views

MINI-676P-XQ3C-78MG

Bulletin has no description...

7.5CVSS5.9AI score0.00472EPSS
Exploits1
OSV
OSV
added 2026/03/04 5:19 a.m.2 views

MINI-Q734-M485-FW43

Bulletin has no description...

9.8CVSS5.9AI score0.00397EPSS
Exploits0
OSV
OSV
added 2026/02/28 2:44 a.m.4 views

MINI-822W-9M28-MV86

Bulletin has no description...

8.7CVSS5.8AI score0.00223EPSS
Exploits0
EUVD
EUVD
added 2026/02/27 9:31 p.m.8 views

EUVD-2026-9044

SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 use the cryptographically broken MD5 hash function for session cookie generation, weakening session security. Attackers can exploit predictable session tokens combined with MD5's collision vulnerabilities to forge valid session cookies an...

6.9CVSS5.9AI score0.00116EPSS
Exploits0References3
NVD
NVD
added 2026/02/27 6:16 p.m.5 views

CVE-2026-27751

SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain a default credentials vulnerability that allows remote attackers to obtain administrative access to the management interface. Attackers can authenticate using the hardcoded default credentials without password change enforcement t...

9.8CVSS0.00449EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/27 6:8 p.m.22 views

CVE-2026-27752 SODOLA SL902-SWTGW124AS <= 200.1.20 Cleartext Credential Transmission

SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 transmit authentication credentials over unencrypted HTTP, allowing attackers to capture credentials. An attacker positioned to observe network traffic between a user and the device can intercept credentials and reuse them to gain...

8.2CVSS0.00193EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/27 12:0 a.m.7 views

PT-2026-22373

Name of the Vulnerable Software and Affected Versions SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 Description The firmware contains a weakness in how session identifiers are created. This allows attackers to create valid session identifiers without logging in, potentially gaining...

9.8CVSS5.9AI score0.00402EPSS
Exploits0References8
NVD
NVD
added 2026/02/21 8:16 p.m.8 views

CVE-2026-2882

A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub46385C of the file /boafrm/formDosCfg. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been made...

9CVSS0.0062EPSS
Exploits1References5
OSV
OSV
added 2026/02/14 1:53 a.m.7 views

MINI-48VM-55RF-J4Q3

Bulletin has no description...

8.8CVSS5.1AI score0.01208EPSS
Exploits3
OSV
OSV
added 2026/02/10 10:16 a.m.3 views

MINI-WR2X-PRW2-WR36

Bulletin has no description...

10CVSS5.1AI score0.00765EPSS
Exploits1
CNNVD
CNNVD
added 2026/02/08 12:0 a.m.10 views

D-Link DI-7100G 命令注入漏洞

The D-Link DI-7100G is a wireless router produced by D-Link Corporation. The D-Link DI-7100G C1 version, released on April 18, 2014, has a command injection vulnerability. This vulnerability stems from improper handling of the parameter “usbusername” when using the setjhttpdinfo function, which m...

8.8CVSS6.6AI score0.03033EPSS
Exploits1References6
OSV
OSV
added 2026/02/07 1:22 p.m.5 views

MINI-226G-P2PW-3G3C

Bulletin has no description...

5.5CVSS4.8AI score0.00139EPSS
Exploits1
OSV
OSV
added 2026/01/29 12:49 a.m.3 views

CGA-G98H-M644-MG65

Bulletin has no description...

7.5CVSS5.8AI score0.01577EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/01/25 11:32 p.m.5 views

CVE-2026-1409 Beetel 777VR1 UART excessive authentication

A security vulnerability has been detected in Beetel 777VR1 up to 01.00.09/01.00.0955. This issue affects some unknown processing of the component UART Interface. The manipulation leads to improper restriction of excessive authentication attempts. It is possible to launch the attack on the physic...

2CVSS5.1AI score0.00348EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/13 10:52 p.m.5 views

CVE-2026-0837

A vulnerability was identified in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the file /goform/formFireWall. Such manipulation of the argument GroupName leads to buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used. The vendor...

9CVSS7AI score0.03409EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:19 a.m.10 views

CVE-2019-18844

The Device Model in ACRN before 2019w25.5-140000p relies on assert calls in devicemodel/hw/pci/core.c and devicemodel/include/pcicore.h instead of other mechanisms for propagating error information or diagnostic information, which might allow attackers to cause a denial of service assertion failu...

7.5CVSS6.8AI score0.01741EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:10 a.m.10 views

CVE-2017-18731

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects R6100 before 1.0.1.16, R7500 before 1.0.0.112, R7500v2 before 1.0.3.20, R7800 before 1.0.2.36, and WNR2000v5 before 1.0.0.58...

8.8CVSS7.1AI score0.00519EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/31 9:9 p.m.9 views

CVE-2025-15357

A vulnerability was found in D-Link DI-7400G+ 19.12.25A1. This affects an unknown function of the file /mspinfo.htm?flag=cmd. The manipulation of the argument cmd results in command injection. The attack can be launched remotely. The exploit has been made public and could be used...

6.5CVSS6.8AI score0.03801EPSS
Exploits1References1
Rows per page
Query Builder