Lucene search
K

43 matches found

EUVD
EUVD
added 2026/06/12 8:56 p.m.13 views

EUVD-2026-36588

Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 0.20.0 to before version 2.0.10, an authenticated Nezha dashboard user can create or update a DDNS profile with provider webhook and configure an arbitrary webhookurl, HTTP method, request...

6.4CVSS5.4AI score0.00182EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/03 12:0 a.m.13 views

EUVD-2026-34149

Mercusys AC12G EU V1 with firmware AC12GEUV1200909 transmits DDNS credentials over plaintext HTTP with only Base64 encoding. The firmware contains no TLS implementation, allowing man-in-the-middle interception of DDNS service credentials...

5.9CVSS5.8AI score0.00147EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/29 8:13 p.m.12 views

CVE-2026-9404

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This affects the function setDdnsCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument provider leads to os command injection. The attack may be launched remotely. Th...

10CVSS7.1AI score0.01732EPSS
Exploits0References1
OSV
OSV
added 2026/05/19 9:52 p.m.11 views

MAL-2026-4741 Malicious code in aurafarmer (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 967bdc07ba43b92a320ad0ef81975a5547d24b987eda5b8cdf863fc7c18245e0 The package advertises an aurex CLI. Its login flow aurex/main.py around line 108 prompts the user for email and password and POSTs them as JSON to a...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/19 9:52 p.m.13 views

Malicious code in aurafarmer (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 967bdc07ba43b92a320ad0ef81975a5547d24b987eda5b8cdf863fc7c18245e0 The package advertises an aurex CLI. Its login flow aurex/main.py around line 108 prompts the user for email and password and POSTs them as JSON to a...

5.8AI score
Exploits0References1
The Hacker News
The Hacker News
added 2026/04/22 7:58 a.m.9 views

Mustang Panda’s New LOTUSLITE Variant Targets India Banks, South Korea Policy Circles

Cybersecurity researchers have discovered a new variant of a known malware called LOTUSLITE that's distributed via a theme related to India's banking sector. "The backdoor communicates with a dynamic DNS-based command-and-control server over HTTPS and supports remote shell access, file operations...

6AI score
Exploits0
CNNVD
CNNVD
added 2026/02/08 12:0 a.m.8 views

D-Link DIR-823X 操作系统命令注入漏洞

The D-Link DIR-823X is a wireless router produced by D-Link Corporation. The D-Link DIR-823X 250416 version has a vulnerability related to operating system command injection. This vulnerability stems from incorrect operations on the parameters ddnsType, ddnsDomainName, ddnsUserName, and ddnsPwd i...

8.6CVSS7.1AI score0.04317EPSS
Exploits1References6
CNVD
CNVD
added 2025/12/15 12:0 a.m.4 views

Siemens RUGGEDCOM ROX II Command Injection Vulnerability

Siemens RUGGEDCOM ROX II is an operating system for industrial applications from Siemens, Germany. Siemens RUGGEDCOM ROX II suffers from a command injection vulnerability that is caused by a flaw in the dynamic DNS configuration process. An attacker can exploit the vulnerability to execute...

8.8CVSS8.4AI score0.00405EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 11:33 a.m.11 views

CVE-2024-56836

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.17.0, RUGGEDCOM ROX MX5000RE All versions V2.17.0, RUGGEDCOM ROX RX1400 All versions V2.17.0, RUGGEDCOM ROX RX1500 All versions V2.17.0, RUGGEDCOM ROX RX1501 All versions V2.17.0, RUGGEDCOM ROX RX1510 All versions V2.17.0...

8.8CVSS9AI score0.00405EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.6 views

EUVD-2024-55308

A vulnerability has been identified in RUGGEDCOM ROX II family All versions V2.17.0. During the Dynamic DNS configuration of the affected product it is possible to inject additional configuration parameters. Under certain circumstances, an attacker could leverage this vulnerability to spawn a...

7.7CVSS6.5AI score0.00405EPSS
Exploits0References2
NVD
NVD
added 2025/12/09 4:17 p.m.6 views

CVE-2024-56836

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.17.0, RUGGEDCOM ROX MX5000RE All versions V2.17.0, RUGGEDCOM ROX RX1400 All versions V2.17.0, RUGGEDCOM ROX RX1500 All versions V2.17.0, RUGGEDCOM ROX RX1501 All versions V2.17.0, RUGGEDCOM ROX RX1510 All versions V2.17.0...

8.8CVSS0.00405EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/13 9:31 p.m.6 views

EUVD-2025-175375

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDynamicDNSSettings' functionality, where the 'ServerAddress' and 'Hostname' parameters in prog.cgi are stored in NVRAM and later used by rc to...

7.7AI score0.03627EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.4 views

PT-2025-46881

Name of the Vulnerable Software and Affected Versions D-Link DIR-882 Router firmware version DIR882A1 FW102B02 Description A command injection issue exists in the D-Link DIR-882 Router firmware. The sub 4438A4 function within the prog.cgi binary stores user-provided DDNS parameters, ServerAddress...

7.3CVSS7.9AI score0.0382EPSS
Exploits1References6
CNVD
CNVD
added 2025/10/31 12:0 a.m.4 views

IPFire Cross-Site Scripting Vulnerability (CNVD-2025-27643)

IPFire is an open source Linux distribution from the IPFire organization, used primarily as a router and firewall. IPFire suffers from a cross-site scripting vulnerability that stems from insufficient cleanup and escaping of the SERVICE, LOGIN, and PASSWORD parameters, which could be exploited by...

5.4CVSS6.1AI score0.05013EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/28 12:0 a.m.7 views

IPFire 安全漏洞

IPFire is an open source Linux distribution from the IPFire organization, used primarily as a router and firewall. IPFire suffers from a cross-site scripting vulnerability that stems from insufficient cleanup and escaping of the SERVICE, LOGIN, and PASSWORD parameters, which could be exploited by...

5.4CVSS6AI score0.05013EPSS
Exploits0References4
CNVD
CNVD
added 2025/10/13 12:0 a.m.5 views

Tenda AC15 ddnsEn Parameter Stack Buffer Overflow Vulnerability

Tenda AC15 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in October 2015, which supports 802.11ac protocol and is mainly designed for home network environment. Tenda AC15 has a stack buffer overflow vulnerability, which originates from the parameter ddnsEn in th...

9CVSS8.4AI score0.00762EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/10/07 10:2 a.m.6 views

CVE-2025-11386 Tenda AC15 POST Parameter SetDDNSCfg stack-based overflow

A vulnerability was found in Tenda AC15 15.03.05.18. The impacted element is an unknown function of the file /goform/SetDDNSCfg of the component POST Parameter Handler. The manipulation of the argument ddnsEn results in stack-based buffer overflow. The attack can be launched remotely. The exploit...

9CVSS0.00762EPSS
Exploits1References5
CVE
CVE
added 2025/10/07 10:2 a.m.22 views

CVE-2025-11386

CVE-2025-11386 affects Tenda AC15 router (firmware 15.03.05.18) via the POST handler in the /goform/SetDDNSCfg endpoint. The root cause is a stack-based buffer overflow triggered by manipulating the ddnsEn argument, indicating an input length validation failure in an unknown function of the POST ...

9CVSS8.8AI score0.00762EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-15195

Malware in sbrugna...

7.4CVSS7.5AI score0.01147EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2025/08/27 9:28 a.m.5 views

Blind Eagle's Five Clusters Target Colombia Using RATs, Phishing Lures, and Dynamic DNS Infra

Cybersecurity researchers have discovered five distinct activity clusters linked to a persistent threat actor known as Blind Eagle between May 2024 and July 2025. These attacks, observed by Recorded Future Insikt Group, targeted various victims, but primarily within the Colombian government acros...

7AI score
Exploits0
Rows per page
Query Builder