CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

47 matches found

RedhatCVE•added 2026/06/05 7:19 p.m.•8 views

CVE-2026-49195

Unauthenticated Debug Service. The /sbin/mtkdut binary is exposed on TCP port 9000 without authentication, allowing any LAN-based attacker to execute arbitrary UCC commands...

8.8CVSS5.8AI score0.00215EPSS

Exploits0References1

NVD•added 2026/05/29 9:16 a.m.•13 views

CVE-2026-49195

Unauthenticated Debug Service. The /sbin/mtkdut binary is exposed on TCP port 9000 without authentication, allowing any LAN-based attacker to execute arbitrary UCC commands...

8.8CVSS0.00215EPSS

Exploits0References1

ATTACKERKB•added 2026/05/29 8:2 a.m.•10 views

CVE-2026-49195

Unauthenticated Debug Service. The /sbin/mtkdut binary is exposed on TCP port 9000 without authentication, allowing any LAN-based attacker to execute arbitrary UCC commands...

8.7CVSS6.1AI score0.00215EPSS

Exploits0References2

Vulnrichment•added 2026/05/29 8:2 a.m.•12 views

CVE-2026-49195 Predator Connect W6x: unauthenticated Debug Service

Unauthenticated Debug Service. The /sbin/mtkdut binary is exposed on TCP port 9000 without authentication, allowing any LAN-based attacker to execute arbitrary UCC commands...

8.7CVSS6.1AI score0.00215EPSS

Exploits0References1

EUVD•added 2026/05/29 8:2 a.m.•17 views

EUVD-2026-33261

Unauthenticated Debug Service. The /sbin/mtkdut binary is exposed on TCP port 9000 without authentication, allowing any LAN-based attacker to execute arbitrary UCC commands...

8.7CVSS6.1AI score0.00215EPSS

Exploits0References1

Cvelist•added 2026/05/29 8:2 a.m.•32 views

CVE-2026-49195 Predator Connect W6x: unauthenticated Debug Service

Unauthenticated Debug Service. The /sbin/mtkdut binary is exposed on TCP port 9000 without authentication, allowing any LAN-based attacker to execute arbitrary UCC commands...

8.7CVSS0.00215EPSS

Exploits0References1

Positive Technologies•added 2026/05/29 12:0 a.m.•11 views

PT-2026-44765

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An unauthenticated debug service is exposed on TCP port 9000. This allows a LAN-based attacker to execute arbitrary UCC commands via the '/sbin/mtk dut' binary...

8.8CVSS6AI score0.00215EPSS

Exploits0References5

EUVD•added 2025/11/13 6:31 p.m.•3 views

EUVD-2025-175328

A stack-based buffer overflow vulnerability exists in the mtkdut binary of Linksys E7350 routers Firmware 1.1.00.032. The function sub4045A8 reads up to 256 bytes from /sys/class/net/%s/address into a local buffer and then copies it into caller-provided buffer a1 using strcpy without boundary...

5.9CVSS7.4AI score0.00195EPSS

Exploits1References4

NVD•added 2025/11/13 5:15 p.m.•3 views

CVE-2025-60695

5.9CVSS0.00195EPSS

Exploits1References3

Positive Technologies•added 2025/11/13 12:0 a.m.•3 views

PT-2025-46869

Name of the Vulnerable Software and Affected Versions Linksys E7350 Router versions 1.1.00.032 Description A stack-based buffer overflow exists in the mtk dut binary. The sub 4045A8 function reads up to 256 bytes from /sys/class/net/%s/address into a local buffer and copies it into a...

5.9CVSS7.7AI score0.00195EPSS

Exploits1References6

CNNVD•added 2025/11/13 12:0 a.m.•2 views

Linksys E7350 安全漏洞

Linksys E7350 is a dual-band WiFi 6 router with AX1800 speeds from Linksys USA. A security vulnerability exists in the Linksys E7350 version 1.1.00.032, which originates from a stack buffer overflow in the mtkdut binary file, which could result in memory corruption, denial of service, or executio...

5.9CVSS7.5AI score0.00195EPSS

Exploits1References4

Vulnrichment•added 2025/11/13 12:0 a.m.•2 views

CVE-2025-60695

7.5AI score0.00195EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-10670

Malware in sbrugna...

9.8CVSS9.4AI score0.01493EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-10674

Malware in sbrugna...

7.8CVSS7.6AI score0.01287EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-10675

Malware in sbrugna...

10CVSS9.4AI score0.02676EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-10676

Malware in sbrugna...

7.5CVSS7.5AI score0.00814EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-10671

Malware in sbrugna...

7.5CVSS7.6AI score0.01333EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2020-10673

Malware in sbrugna...

7.5CVSS7.6AI score0.01311EPSS

Exploits1References2

BDU FSTEC•added 2025/07/02 12:0 a.m.•5 views

The vulnerability of the set_device_language() function in the portal.cgi script of Linksys E8450 Wi-Fi router software allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the setdevicelanguage function in the portal.cgi script of Linksys E8450 Wi-Fi routers is related to the issue where the operation results outside the buffer in memory when processing the dutlanguage parameter. Exploiting this vulnerability allows an attacker to compromise th...

9CVSS7.8AI score0.0064EPSS

Exploits0References4Affected Software1

CNNVD•added 2025/06/27 12:0 a.m.•3 views

Linksys E8450 安全漏洞

The Linksys E8450 is an E-Series wireless router from Linksys, Inc. A security vulnerability exists in Linksys E8450 1.2.00.360516 and earlier versions, which stems from improper manipulation of the dutlanguage parameter by the setdevicelanguage function in the portal.cgi file, which may result i...

9CVSS8.9AI score0.0064EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by