Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-3231

Malware in sbrugna...

9.8CVSS9.3AI score0.03983EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-5952

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.0036EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-37930

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00599EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2025/08/22 12:0 a.m.9 views

VulnCheck KEV: CVE-2020-14993

A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vigor300B devices before 1.5.1.1 allows remote attackers to execute arbitrary code via the formuserphonenumber parameter in an authusersms action to mainfunction.cgi...

9.8CVSS6.6AI score0.05328EPSS
In wildExploits1References2
RedhatCVE
RedhatCVE
added 2025/03/01 12:23 a.m.11 views

CVE-2024-41338

A NULL pointer dereference in Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860/2925 prior to v3.9.7, Vigor 2862/2926 prior to v3.9.9.4, Vigor 2133/2762/2832 prior to v3.9.8, Vigor 2135/2765/2766 prior to v4.4.5.1, Vigor 2865/2866/2927 prior to...

7.5CVSS6.7AI score0.00434EPSS
Exploits0References4
OSV
OSV
added 2025/02/27 9:15 p.m.4 views

CVE-2024-41334

Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860/2925 prior to v3.9.7, Vigor 2862/2926 prior to v3.9.9.4, Vigor 2133/2762/2832 prior to v3.9.8, Vigor 2135/2765/2766 prior to v4.4.5.1, Vigor 2865/2866/2927 prior to v4.4.5.3, Vigor 2962/3910 prior to...

8.8CVSS5.9AI score0.0036EPSS
Exploits0References2
CVE
CVE
added 2025/02/27 12:0 a.m.75 views

CVE-2024-41340

The CVE-2024-41340 issue affects multiple Draytek Vigor devices, where an attacker can upload crafted APP Enforcement modules, leading to arbitrary code execution. Affected models and minimum patched versions include: Vigor 165/166 before 4.2.6 (update to 4.2.6+), Vigor 2620/LTE200 before 3.9.8.8...

8.4CVSS7.4AI score0.00212EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/12/27 4:15 p.m.5 views

CVE-2024-12987

A vulnerability, which was classified as critical, was found in DrayTek Vigor2960 and Vigor300B 1.5.1.4. Affected is an unknown function of the file /cgi-bin/mainfunction.cgi/apmcfgupload of the component Web Management Interface. The manipulation of the argument session leads to os command...

9.8CVSS5.5AI score0.98125EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2023/08/21 5:15 p.m.5 views

CVE-2023-31447

userlogin.cgi on Draytek Vigor2620 devices before 3.9.8.4 and on all versions of Vigor2925 devices allows attackers to send a crafted payload to modify the content of the code segment, insert shellcode, and execute arbitrary code...

9.8CVSS7.7AI score0.0086EPSS
Exploits0References3
OSV
OSV
added 2020/06/23 12:15 p.m.4 views

CVE-2020-14993

A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vigor300B devices before 1.5.1.1 allows remote attackers to execute arbitrary code via the formuserphonenumber parameter in an authusersms action to mainfunction.cgi...

9.8CVSS8AI score0.05328EPSS
Exploits1References3
OSV
OSV
added 2020/03/26 5:15 p.m.5 views

CVE-2020-10828

A stack-based buffer overflow in cvmd on Draytek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1 allows remote attackers to achieve code execution via a remote HTTP request...

9.8CVSS8AI score0.20881EPSS
Exploits1References2
OSV
OSV
added 2020/03/26 5:15 p.m.4 views

CVE-2020-10825

A stack-based buffer overflow in /cgi-bin/activate.cgi while base64 decoding ticket parameter on Draytek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1 allows remote attackers to achieve code execution via a remote HTTP request issue 3 of 3...

9.8CVSS8AI score0.03983EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2020/03/26 4:4 p.m.8 views

CVE-2020-10825

A stack-based buffer overflow in /cgi-bin/activate.cgi while base64 decoding ticket parameter on Draytek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1 allows remote attackers to achieve code execution via a remote HTTP request issue 3 of 3...

9.9AI score0.03983EPSS
Exploits1References2
Rows per page
Query Builder