CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

170 matches found

Ubuntu•added 2026/05/27 5:43 p.m.•13 views

USN-8326-1: Foomuuri vulnerabilities

Matthias Gerstner discovered that Foomuuri's D-Bus service did not properly enforce authorization. An unprivileged local attacker could possibly use this issue to manipulate the firewall configuration, contrary to expectations. CVE-2025-67603 Matthias Gerstner discovered that Foomuuri's D-Bus...

7CVSS5.8AI score0.00022EPSS

Exploits0

OSV•added 2026/05/27 5:43 p.m.•5 views

USN-8326-1 foomuuri vulnerabilities

7CVSS5.8AI score0.00022EPSS

Exploits0References3

NVD•added 2026/02/21 8:16 p.m.•2 views

CVE-2026-2881

A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub425FF8 of the file /boafrm/formFirewallAdv of the component Advanced Firewall Configuration Endpoint. Such manipulation of the argument submit-url leads to stack-based buffer overflow. The attack...

9CVSS0.00046EPSS

Exploits1References5

RedhatCVE•added 2026/01/09 12:30 p.m.•4 views

CVE-2023-40891

Tenda AC8 v4 USAC8V4.0siV16.03.34.06cn was discovered to contain a stack overflow via parameter firewallEn at /goform/SetFirewallCfg...

9.8CVSS7.9AI score0.00151EPSS

Exploits1References1

Cvelist•added 2026/01/08 3:23 p.m.•20 views

CVE-2025-67858 A crafted "interface" input parameter can lead to integrity loss of the firewall configuration

A Improper Neutralization of Argument Delimiters vulnerability in Foomuuri can lead to integrity loss of the firewall configuration or further unspecified impact by manipulating the JSON configuration passed to nft. This issue affects Foomuuri: from ? before 0.31...

7CVSS0.00022EPSS

Exploits0References2

OSV•added 2026/01/08 3:15 p.m.•0 views

UBUNTU-CVE-2025-67603

A Improper Authorization vulnerability in Foomuuri llows arbitrary users to influence the firewall configuration.This issue affects Foomuuri: from ? before 0.31...

5.1CVSS5.9AI score0.00019EPSS

Exploits0References4

CVE•added 2026/01/08 3:4 p.m.•16 views

CVE-2025-67603

CVE-2025-67603 affects Foomuuri prior to 0.31. An improper Authorization flaw allows arbitrary users to influence firewall configuration via D-Bus methods due to missing PolicyKit authorization and insufficient input validation. Upstream fixes are in v0.31, addressing CVE-2025-67603 and CVE-2025-...

5.1CVSS6.6AI score0.00019EPSS

Exploits0References2

Tenable Nessus•added 2026/01/07 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2025-67858

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Improper Neutralization of Argument Delimiters vulnerability in Foomuuri can lead to integrity loss of the firewall configuration or further unspecified impac...

7CVSS5.8AI score0.00022EPSS

Exploits0References2