Lucene search
K

219 matches found

Vulnrichment
Vulnrichment
added 2025/08/20 12:0 a.m.5 views

CVE-2024-57154

Incorrect access control in dts-shop v0.0.1-SNAPSHOT allows attackers to bypass authentication via sending a crafted payload to /admin/auth/index...

7.3AI score0.00397EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.5 views

dts-mall 安全漏洞

dts-mall is a WeChat small program mall by qiguliuxing individual developer. A security vulnerability exists in dts-mall version v0.0.1-SNAPSHOT, which stems from improper access control and could lead to authentication bypass...

9.8CVSS6.8AI score0.00397EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/20 12:0 a.m.11 views

CVE-2024-57154

Incorrect access control in dts-shop v0.0.1-SNAPSHOT allows attackers to bypass authentication via sending a crafted payload to /admin/auth/index...

0.00397EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.8 views

PT-2025-34150 · Dts-Shop · Dts-Shop

Name of the Vulnerable Software and Affected Versions: dts-shop version 0.0.1-SNAPSHOT Description: Incorrect access control in dts-shop allows attackers to bypass authentication by sending a crafted payload to the /admin/auth/index API endpoint. Recommendations: As a temporary workaround, restri...

9.8CVSS6.6AI score0.00397EPSS
Exploits0References5
CVE
CVE
added 2025/08/20 12:0 a.m.17 views

CVE-2024-57154

CVE-2024-57154 concerns dts-shop v0.0.1-SNAPSHOT, where an improper access control mechanism allows an attacker to bypass authentication by sending a crafted payload to the /admin/auth/index endpoint. The vulnerability affects the authentication flow in the dts-shop application (version v0.0.1-SN...

9.8CVSS7.3AI score0.00397EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/06/19 3:39 a.m.3 views

SUSE CVE-2022-50195

In the Linux kernel, the following vulnerability has been resolved: ARM: dts: qcom: replace gcc PXO with pxoboard fixed clock Replace gcc PXO phandle to pxoboard fixed clock declared in the dts. gcc driver doesn't provide PXOSRC as it's a fixed-clock. This cause a kernel panic if any driver...

5.5CVSS6.5AI score0.00179EPSS
Exploits0References3
OSV
OSV
added 2025/06/18 11:15 a.m.4 views

UBUNTU-CVE-2022-50195

In the Linux kernel, the following vulnerability has been resolved: ARM: dts: qcom: replace gcc PXO with pxoboard fixed clock Replace gcc PXO phandle to pxoboard fixed clock declared in the dts. gcc driver doesn't provide PXOSRC as it's a fixed-clock. This cause a kernel panic if any driver...

5.5CVSS5.7AI score0.00179EPSS
Exploits0References4
OSV
OSV
added 2025/06/18 11:3 a.m.7 views

CVE-2022-50195 ARM: dts: qcom: replace gcc PXO with pxo_board fixed clock

In the Linux kernel, the following vulnerability has been resolved: ARM: dts: qcom: replace gcc PXO with pxoboard fixed clock Replace gcc PXO phandle to pxoboard fixed clock declared in the dts. gcc driver doesn't provide PXOSRC as it's a fixed-clock. This cause a kernel panic if any driver...

5.5CVSS6.1AI score0.00179EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/06/02 12:0 a.m.9 views

The vulnerability in the arch/arm64/boot/dts/freescale/imx8mm-verdin.dtsi module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the arch/arm64/boot/dts/freescale/imx8mm-verdin.dtsi module of the Linux operating system is related to the use of memory after deallocation. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.8CVSS6.3AI score0.00204EPSS
Exploits0References6Affected Software4
RedhatCVE
RedhatCVE
added 2025/05/23 4:24 a.m.7 views

CVE-2023-43527

Information disclosure while parsing dts header atom in Video...

6.8CVSS6.9AI score0.00116EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:52 a.m.9 views

CVE-2023-33271

An issue was discovered in DTS Monitoring 3.57.0. The parameter commonname within the SSL Certificate check function is vulnerable to OS command injection blind...

9.8CVSS7.4AI score0.01559EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:52 a.m.9 views

CVE-2023-33270

An issue was discovered in DTS Monitoring 3.57.0. The parameter url within the Curl check function is vulnerable to OS command injection blind...

9.8CVSS7.4AI score0.02503EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:51 a.m.7 views

CVE-2023-33273

An issue was discovered in DTS Monitoring 3.57.0. The parameter url within the WGET check function is vulnerable to OS command injection blind...

9.8CVSS7.4AI score0.02503EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:51 a.m.8 views

CVE-2023-33269

An issue was discovered in DTS Monitoring 3.57.0. The parameter options within the WGET check function is vulnerable to OS command injection blind...

9.8CVSS7.4AI score0.01994EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:3 a.m.8 views

CVE-2023-33268

An issue was discovered in DTS Monitoring 3.57.0. The parameter port within the SSL Certificate check function is vulnerable to OS command injection blind...

9.8CVSS7.4AI score0.01241EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:2 a.m.9 views

CVE-2023-33272

An issue was discovered in DTS Monitoring 3.57.0. The parameter ip within the Ping check function is vulnerable to OS command injection blind...

9.8CVSS7.4AI score0.02503EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:26 a.m.10 views

CVE-2019-10590

Out of bound access while parsing dts atom, which is non-standard as it does not have valid number of tracks in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

10CVSS7.3AI score0.00907EPSS
Exploits0References1
OSV
OSV
added 2025/04/08 9:15 a.m.21 views

UBUNTU-CVE-2025-22012

In the Linux kernel, the following vulnerability has been resolved: Revert "arm64: dts: qcom: sdm845: Affirm IDR0.CCTW on appssmmu" There are reports that the pagetable walker cache coherency is not a given across the spectrum of SDM845/850 devices, leading to lock-ups and resets. It works fine o...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References5
CVE
CVE
added 2025/04/08 8:18 a.m.145 views

CVE-2025-22011

CVE-2025-22011 describes a Linux kernel issue on ARM/bcm2711 in Raspberry Pi CM4 during s2idle when the xHCI power-domain resume triggers a VPU firmware crash. The root cause is the mixed usage of raspberrypi-power and bcm2835-power power domains; the fix is to avoid the VPU power-domain driver, ...

5.5CVSS7.2AI score0.00181EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2025/03/27 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a kernel crash when the arm64 dts imx8mm-verdin component attempts to turn off eth-phy...

5.5CVSS5.8AI score0.00204EPSS
Exploits0References4
Rows per page
Query Builder