Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-59146

Malicious code in bioql PyPI...

3CVSS6.6AI score0.00211EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-59145

Malicious code in bioql PyPI...

5.2CVSS6.6AI score0.00236EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/04/06 12:0 a.m.5 views

The vulnerability of the HTTP service of DJI Mavic Mini 3 Pro microprogramming software allows a intruder to gain unauthorized access to protected information.

The vulnerability of the HTTP service in DJI Mavic Mini 3 Pro microprogrammed software systems is related to the absence of authentication for critical functions. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

5.5CVSS5.5AI score0.00236EPSS
Exploits0References3
NVD
NVD
added 2024/04/02 11:15 a.m.4 views

CVE-2023-6949

A Missing Authentication for Critical Function issue affecting the HTTP service running on the DJI Mavic Mini 3 Pro on the standard port 80 could allow an attacker to enumerate and download videos and pictures saved on the drone internal or external memory without requiring any kind of...

5.2CVSS5.3AI score0.00236EPSS
Exploits0References1
NVD
NVD
added 2024/04/02 11:15 a.m.7 views

CVE-2023-6950

An Improper Input Validation vulnerability affecting the FTP service running on the DJI Mavic Mini 3 Pro could allow an attacker to craft a malicious packet containing a malformed path provided to the FTP SIZE command that leads to a denial-of-service attack of the FTP service itself...

3CVSS3.9AI score0.00211EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/02 10:27 a.m.7 views

CVE-2023-6950

An Improper Input Validation vulnerability affecting the FTP service running on the DJI Mavic Mini 3 Pro could allow an attacker to craft a malicious packet containing a malformed path provided to the FTP SIZE command that leads to a denial-of-service attack of the FTP service itself...

3CVSS7.2AI score0.00211EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/02 10:27 a.m.15 views

CVE-2023-6949

A Missing Authentication for Critical Function issue affecting the HTTP service running on the DJI Mavic Mini 3 Pro on the standard port 80 could allow an attacker to enumerate and download videos and pictures saved on the drone internal or external memory without requiring any kind of...

5.2CVSS5.6AI score0.00236EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/02 10:27 a.m.12 views

CVE-2023-6949

A Missing Authentication for Critical Function issue affecting the HTTP service running on the DJI Mavic Mini 3 Pro on the standard port 80 could allow an attacker to enumerate and download videos and pictures saved on the drone internal or external memory without requiring any kind of...

5.2CVSS7AI score0.00236EPSS
Exploits0References1
CVE
CVE
added 2024/04/02 10:27 a.m.51 views

CVE-2023-6949

CVE-2023-6949 affects the HTTP service on DJI Mavic Mini 3 Pro. A Missing Authentication for Critical Function vulnerability on port 80 allows an attacker to enumerate and download videos and pictures stored in drone memory without authentication. Connected sources corroborate the issue and ident...

5.2CVSS6.9AI score0.00236EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/03/29 12:0 a.m.6 views

PT-2024-2603 · Dji · Dji Mavic Mini 3 Pro

Name of the Vulnerable Software and Affected Versions: DJI Mavic Mini 3 Pro affected versions not specified Description: The issue is related to an Improper Input Validation vulnerability in the FTP service. It could allow an attacker to craft a malicious packet with a malformed path provided to...

3CVSS7AI score0.00211EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2024/03/29 12:0 a.m.45 views

PT-2024-2606 · Dji · Dji Mavic Mini 3 Pro

Name of the Vulnerable Software and Affected Versions: DJI Mavic Mini 3 Pro affected versions not specified Description: A Missing Authentication for Critical Function issue affects the HTTP service running on the standard port 80, allowing an attacker to enumerate and download videos and picture...

5.5CVSS7.3AI score0.00236EPSS
Exploits0References14
Rows per page
Query Builder