Lucene search
+L

32 matches found

RedhatCVE
RedhatCVE
added 2025/12/04 12:11 a.m.8 views

CVE-2025-57200

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the testmail function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

6.5CVSS8.4AI score0.02126EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/12/04 12:11 a.m.11 views

CVE-2025-57201

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the SMB server function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

8.8CVSS8.4AI score0.15359EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/12/04 12:11 a.m.12 views

CVE-2025-57198

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the Machine.cgi endpoint. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

8.8CVSS8.4AI score0.02494EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/04 12:11 a.m.11 views

CVE-2025-57199

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the NetFailDetectD binary. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

8.8CVSS8.4AI score0.02957EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/12/04 12:11 a.m.11 views

CVE-2025-57202

A stored cross-site scripting XSS vulnerability in the PwdGrp.cgi endpoint of AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the username field...

6.1CVSS5.7AI score0.00419EPSS
Exploits2References1
NVD
NVD
added 2025/12/03 4:15 p.m.12 views

CVE-2025-57201

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the SMB server function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

8.8CVSS0.15359EPSS
Exploits2References1
NVD
NVD
added 2025/12/03 4:15 p.m.6 views

CVE-2025-57202

A stored cross-site scripting XSS vulnerability in the PwdGrp.cgi endpoint of AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the username field...

6.1CVSS0.00419EPSS
Exploits2References1
NVD
NVD
added 2025/12/03 4:15 p.m.12 views

CVE-2025-57198

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the Machine.cgi endpoint. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

8.8CVSS0.02494EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/03 3:30 p.m.8 views

EUVD-2025-200969

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the testmail function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

6.5CVSS7.8AI score0.02126EPSS
Exploits2References4
NVD
NVD
added 2025/12/03 3:15 p.m.9 views

CVE-2025-57200

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the testmail function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

6.5CVSS0.02126EPSS
Exploits2References1
CNNVD
CNNVD
added 2025/12/03 12:0 a.m.6 views

AVTech DGM1104 安全漏洞

AVTech DGM1104 is a network video recorder from AVTech Corporation of Taiwan, China. A security vulnerability exists in the AVTech DGM1104 FullImg-1015-1004-1006-1003 version, which originates from the presence of stored cross-site scripting in the PwdGrp.cgi endpoint, which could lead to the...

6.1CVSS5.9AI score0.00419EPSS
Exploits2References4
CVE
CVE
added 2025/12/03 12:0 a.m.21 views

CVE-2025-57202

CVE-2025-57202 describes a stored XSS in the PwdGrp.cgi endpoint of AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003. The vulnerability allows an attacker to inject arbitrary web scripts/HTML via a crafted payload in the username field. According to the provided metrics, the CVSS v...

6.1CVSS5.2AI score0.00419EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/03 12:0 a.m.3 views

CVE-2025-57199

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the NetFailDetectD binary. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

8AI score0.02957EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2025/12/03 12:0 a.m.4 views

CVE-2025-57202

A stored cross-site scripting XSS vulnerability in the PwdGrp.cgi endpoint of AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the username field...

5.2AI score0.00419EPSS
Exploits2References2
CVE
CVE
added 2025/12/03 12:0 a.m.24 views

CVE-2025-57198

Summary: CVE-2025-57198 affects AVTECH SECURITY Corporation DGM1104 devices (FullImg-1015-1004-1006-1003). A vulnerability in the Machine.cgi endpoint allows authenticated attackers to inject commands and execute arbitrary code. The exploited input is crafted to trigger the command injection. The...

8.8CVSS8AI score0.02494EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/03 12:0 a.m.6 views

PT-2025-48819

Name of the Vulnerable Software and Affected Versions AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 Description The software contains an authenticated command injection flaw in the NetFailDetectD binary. This allows attackers to execute arbitrary commands via a crafted input...

8.8CVSS7.6AI score0.02957EPSS
Exploits2References9
CNNVD
CNNVD
added 2025/12/03 12:0 a.m.7 views

AVTech DGM1104 安全漏洞

AVTech DGM1104 is a network video recorder from AVTech Corporation of Taiwan, China. A security vulnerability exists in the AVTech DGM1104 FullImg-1015-1004-1006-1003 version, which stems from a command injection in the Machine.cgi endpoint that could lead to the execution of arbitrary commands...

8.8CVSS7.5AI score0.02494EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/12/03 12:0 a.m.23 views

CVE-2025-57199

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the NetFailDetectD binary. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

0.02957EPSS
Exploits2References1
Cvelist
Cvelist
added 2025/12/03 12:0 a.m.25 views

CVE-2025-57198

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the Machine.cgi endpoint. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

0.02494EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/12/03 12:0 a.m.25 views

CVE-2025-57200

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the testmail function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

0.02126EPSS
Exploits2References1
Rows per page
Query Builder