Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Vulnrichment
Vulnrichmentadded 2026/05/11 12:0 a.m.3 views

CVE-2025-61305

A reflected cross-site scripted XSS vulnerability in the dfm-menufirmware.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable value...

6AI score0.00031EPSS
Exploits0References3
Redos
Redosadded 2025/10/16 12:0 a.m.4 views

ROS-20251016-03

A vulnerability in the FirmwarePerformancePei.c component of the UEFI EDK2 open source development environment is related to the lack of division by zero check. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

6CVSS6.7AI score0.00033EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 3:21 p.m.5 views

CVE-2020-25366

An issue in the component /cgi-bin/uploadfirmware.cgi of D-Link DIR-823G REVA1 1.02B05 allows attackers to cause a denial of service DoS via unspecified vectors...

9.1CVSS6.8AI score0.00549EPSS
Exploits1
RedHat Linux
RedHat Linuxadded 2025/03/06 12:32 a.m.1 views

microcode_ctl: Improper input validation in UEFI firmware CseVariableStorageSmm

Improper input validation in UEFI firmware CseVariableStorageSmm for some IntelR Processors may allow a privileged user to potentially enable escalation of privilege via local access...

8.7CVSS5.8AI score0.00022EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2024/05/17 12:0 a.m.2 views

PT-2024-14692 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to memory leaks in error paths in the Linux kernel, specifically in the qseecom firmware component. The problem occurs when error codes are returned directly inste...

5.5CVSS6.4AI score0.0002EPSS
Exploits0References9
VulnCheck KEV
VulnCheck KEVadded 2020/11/06 12:0 a.m.0 views

VulnCheck KEV: CVE-2020-24217

An issue was discovered in the box application on HiSilicon based IPTV/H.264/H.265 video encoders. The file-upload endpoint does not enforce authentication. Attackers can send an unauthenticated HTTP request to upload a custom firmware component, possibly in conjunction with command injection, to...

9.8CVSS7.2AI score0.31939EPSS
Exploits5References1
CVE
CVEadded 2020/10/06 1:5 p.m.98 views

CVE-2020-24217

HiSilicon IPTV/H.264/H.265 video encoder devices are affected by CVE-2020-24217 due to an unauthenticated file-upload endpoint that can upload a custom firmware component, potentially coupled with command injection, to achieve arbitrary code execution. The connected sources (exploit-DB entries, C...

9.8CVSS9.8AI score0.31939EPSS
Exploits5References4Affected Software1
myhack58
myhack58added 2019/03/28 12:0 a.m.127 views

Using Semmle QL vulnerability out Part2-vulnerability warning-the black bar safety net

First part of this series introduced the Semmle QL, as well as the Microsoft Security Response Center MSRC how to use it to review to our report the vulnerability. This article discusses a How do we take the initiative to use it examples, including Azure firmware component of a security audit. Th...

0.8AI score
Exploits0
Rows per page
Query Builder