Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/10/20 6:23 p.m.11 views

CVE-2025-11911

A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. This impacts the function Query of the file /DeviceFault.do?Action=Query. The manipulation of the argument sortField results in sql injection. It is possible to launch the attack remotely. The exploit is now publi...

8.8CVSS6.5AI score0.00461EPSS
Exploits1References1
NVD
NVD
added 2025/10/17 8:15 p.m.9 views

CVE-2025-11911

A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. This impacts the function Query of the file /DeviceFault.do?Action=Query. The manipulation of the argument sortField results in sql injection. It is possible to launch the attack remotely. The exploit is now publi...

8.8CVSS0.00461EPSS
Exploits1References4
CVE
CVE
added 2025/10/17 7:32 p.m.16 views

CVE-2025-11911

CVE-2025-11911 affects Shenzhen Ruiming Technology’s Streamax Crocus 1.3.40. The vulnerability resides in the function handling the URL path /DeviceFault.do?Action=Query, where manipulating the argument sortField triggers a SQL injection. It is exploitable remotely, and public exploits exist. Mul...

8.8CVSS6.7AI score0.00461EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/10/17 7:32 p.m.14 views

CVE-2025-11911 Shenzhen Ruiming Technology Streamax Crocus DeviceFault.do Query sql injection

A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. This impacts the function Query of the file /DeviceFault.do?Action=Query. The manipulation of the argument sortField results in sql injection. It is possible to launch the attack remotely. The exploit is now publi...

6.5CVSS0.00461EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/10/17 7:32 p.m.2 views

CVE-2025-11911 Shenzhen Ruiming Technology Streamax Crocus DeviceFault.do Query sql injection

A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. This impacts the function Query of the file /DeviceFault.do?Action=Query. The manipulation of the argument sortField results in sql injection. It is possible to launch the attack remotely. The exploit is now publi...

6.5CVSS6.7AI score0.00461EPSS
Exploits1References4
Rows per page
Query Builder