CVE-2026-7609

TRENDnet TEW-821DAP firmware up to 1.12B01 is affected by a flaw in the Firmware Update component. The vulnerable function is tools_diagnostic in /tmp/diagnostic, enabling OS command injection. Remote exploitation is possible and exploits have been published. The vendor notes the firmware version...

CVE-2025-8890

Firmware in SDMC NE6037 routers prior to version 7.1.12.2.44 has a network diagnostics tool vulnerable to a shell command injection attacks. In order to exploit this vulnerability, an attacker has to log in to the router's administrative portal, which by default is reachable only via LAN ports...

EUVD-2025-199825

Firmware in SDMC NE6037 routers prior to version 7.1.12.2.44 has a network diagnostics tool vulnerable to a shell command injection attacks. In order to exploit this vulnerability, an attacker has to log in to the router's administrative portal, which by default is reachable only via LAN ports...

CVE-2025-8890

Firmware in SDMC NE6037 routers prior to version 7.1.12.2.44 has a network diagnostics tool vulnerable to a shell command injection attacks. In order to exploit this vulnerability, an attacker has to log in to the router's administrative portal, which by default is reachable only via LAN ports...

CVE-2025-8890

The CVE-2025-8890 entry applies to SDMC NE6037 routers. Affected firmware is prior to version 7.1.12.2.44, where the Network Diagnostics tool is vulnerable to a shell command injection. Exploitation requires authentication to the router’s administrative portal, which is typically reachable only v...

CVE-2025-8890 Authenticated RCE in SDMC NE6037 router

Firmware in SDMC NE6037 routers prior to version 7.1.12.2.44 has a network diagnostics tool vulnerable to a shell command injection attacks. In order to exploit this vulnerability, an attacker has to log in to the router's administrative portal, which by default is reachable only via LAN ports...

CVE-2025-8890 Authenticated RCE in SDMC NE6037 router

Firmware in SDMC NE6037 routers prior to version 7.1.12.2.44 has a network diagnostics tool vulnerable to a shell command injection attacks. In order to exploit this vulnerability, an attacker has to log in to the router's administrative portal, which by default is reachable only via LAN ports...

PT-2025-48267

Name of the Vulnerable Software and Affected Versions SDMC NE6037 routers versions prior to 7.1.12.2.44 Description The firmware in SDMC NE6037 routers contains a network diagnostics tool susceptible to shell command injection attacks. Exploitation requires an attacker to log in to the router's...

Bosscomm IF740 安全漏洞

Bosscomm IF740 is an OBD2 scanner for automotive diagnostics from Bosscomm. It can read codes for automotive engine, SRS, ABS, TCM, etc. A security vulnerability exists in the Bosscomm IF740 that stems from communications being sent in clear text, which could lead to a man-in-the-middle attack...

CVE-2023-28802

An Improper Validation of Integrity Check Value in Zscaler Client Connector on Windows allows an authenticated user to disable ZIA/ZPA by interrupting the service restart from Zscaler Diagnostics. This issue affects Client Connector: before 4.2.0.149...

Update now! Microsoft fixes two zero-days in August's Patch Tuesday

Microsoft has published fixes for 141 separate vulnerabilities in its batch of August updates, fixing a total of 118 CVEs in multiple products. This is a new monthly record if you look at the CVE count. Publicly disclosed computer security flaws are listed in the Common Vulnerabilities and...

Microsoft Patch Tuesday, June 2022 Edition

Microsoft on Tuesday released software updates to fix 60 security vulnerabilities in its Windows operating systems and other software, including a zero-day flaw in all supported Microsoft Office versions on all flavors of Windows thats seen active exploitation for at least two months now. On a...

VulnCheck KEV: CVE-2022-30190

A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run code with the privileges of the calling application...

SD-WAN Diagnostics Tool traffic (ping, traceroute and iperf) is being dropped by firewall policy

SD-WAN Diagnostics Tool traffic ping, traceroute and iperf is being dropped by a firewall policy manually configured to drop traffic that has not been explicitly allowed...

XDDBDiag for XenDesktop

XDDBDiag for XenDesktop Created Date: 1/21/11 Updated Date: 01/17/15 Where to download ? Certain legacy Citrix tools are now available on request only. Please submit the request here - https://forms.gle/obA39PEz5qpDiSPq8 Once we verify your request, we will provide access to the download location...

Citrix Receiver Diagnostics Tool - For Windows

Citrix Receiver Diagnostics Tool for Windows Created Date: December 16, 2014 Updated Date:September 13, 2023 Please note: You can download the required file from the Citrix downloads website by visiting the following link:https://www.citrix.com/downloads/citrix-tools Description The Receiver...

CVE-2015-2746

The network diagnostics tool CommandLineServlet in the Appliance Manager command line utility CLU in Websense TRITON 7.8.3 and V-Series appliances before 7.8.4 Hotfix 02 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the "second" parameter of a command...

CVE-2015-2746

The CVE-2015-2746 entry applies to Websense TRITON AP-WEB 7.8.3 and V-Series appliances (pre-7.8.4 Hotfix 02). The vulnerability is a command-injection in the Appliance Manager CommandLineServlet where remote authenticated users can inject shell metacharacters via the second parameter (demonstrat...