Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2026/05/27 8:13 p.m.17 views

CVE-2026-9348

A vulnerability was found in Edimax EW-7438RPn up to 1.31. Affected by this vulnerability is an unknown functionality of the file /goform/mp of the component webs. The manipulation of the argument webs results in stack-based buffer overflow. It is possible to launch the attack remotely. The explo...

9CVSS7.7AI score0.00445EPSS
Exploits0References1
NVD
NVD
added 2026/05/24 1:16 a.m.13 views

CVE-2026-9344

A security vulnerability has been detected in Edimax EW-7438RPn up to 1.31. The impacted element is an unknown function of the file /goform/formWpsStart of the component webs. Such manipulation of the argument pinCode/wlan-url leads to stack-based buffer overflow. The attack can be executed...

9CVSS0.00445EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/02 8:45 a.m.5 views

CVE-2026-7608 TRENDnet TEW-821DAP tools_diagnostic os command injection

A vulnerability was detected in TRENDnet TEW-821DAP up to 1.12B01. The affected element is the function toolsdiagnostic. The manipulation results in os command injection. The exploit is now public and may be used. The vendor explains: "That firmware version will only work on our hardware version...

5.5CVSS5.8AI score0.05189EPSS
Exploits1References4
OSV
OSV
added 2025/10/16 6:15 p.m.6 views

CVE-2025-34518

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain a relative path traversal vulnerability in getfilecontent.php that allows an attacker to read arbitrary files. Ilevia has declined to service this vulnerability, and recommends that customers not expose port 8080 to the internet...

7.5CVSS5.9AI score0.00599EPSS
Exploits3References3
NVD
NVD
added 2025/10/16 6:15 p.m.5 views

CVE-2025-34515

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an execution with unnecessary privileges vulnerability in syncproject.sh that allows an attacker to escalate privileges to root. Ilevia has declined to service this vulnerability, and recommends that customers not expose port 8080 to...

9.8CVSS0.07285EPSS
Exploits3References3
Vulnrichment
Vulnrichment
added 2025/10/16 5:54 p.m.4 views

CVE-2025-34515 Ilevia EVE X1 Server 4.7.18.0.eden Root Privilege Escalation

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an execution with unnecessary privileges vulnerability in syncproject.sh that allows an attacker to escalate privileges to root. Ilevia has declined to service this vulnerability, and recommends that customers not expose port 8080 to...

9.3CVSS6.9AI score0.07285EPSS
Exploits3References3
Cvelist
Cvelist
added 2025/10/12 2:2 p.m.7 views

CVE-2025-11635 Tomofun Furbo 360 File Upload resource consumption

A weakness has been identified in Tomofun Furbo 360 up to FB0035FW036. This vulnerability affects unknown code of the component File Upload. This manipulation causes resource consumption. Remote exploitation of the attack is possible. The vendor was contacted early about this disclosure but did n...

5.3CVSS0.00418EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/03/07 4:24 a.m.3 views

SUSE CVE-2024-26623

In the Linux kernel, the following vulnerability has been resolved: pdscore: Prevent race issues involving the adminq There are multiple paths that can result in using the pdsc's adminq. 1 pdscadminqisr and the resulting work from queuework, i.e. pdscworkthread-pdscprocessadminq 2 pdscadminqpost...

5.5CVSS6.8AI score0.00213EPSS
Exploits0References10
OSV
OSV
added 2024/03/06 7:15 a.m.2 views

DEBIAN-CVE-2024-26623

In the Linux kernel, the following vulnerability has been resolved: pdscore: Prevent race issues involving the adminq There are multiple paths that can result in using the pdsc's adminq. 1 pdscadminqisr and the resulting work from queuework, i.e. pdscworkthread-pdscprocessadminq 2 pdscadminqpost...

4.7CVSS5.3AI score0.00213EPSS
Exploits0References1
OSV
OSV
added 2024/03/06 7:15 a.m.4 views

UBUNTU-CVE-2024-26623

In the Linux kernel, the following vulnerability has been resolved: pdscore: Prevent race issues involving the adminq There are multiple paths that can result in using the pdsc's adminq. 1 pdscadminqisr and the resulting work from queuework, i.e. pdscworkthread-pdscprocessadminq 2 pdscadminqpost...

4.7CVSS6.3AI score0.00213EPSS
Exploits0References14
OSV
OSV
added 2020/02/21 10:15 a.m.4 views

CVE-2020-5534

Aterm WG2600HS firmware Ver1.3.2 and earlier allows an authenticated attacker on the same network segment to execute arbitrary OS commands with root privileges via unspecified vectors...

8CVSS7.5AI score0.0087EPSS
Exploits0References2
OSV
OSV
added 2019/09/23 2:15 p.m.5 views

CVE-2019-3416

All versions up to V81511329.1008 of ZTE ZXV10 B860A products are impacted by input validation vulnerability. Due to input validation, unauthorized users can take advantage of this vulnerability to control the user terminal system...

9.8CVSS7.2AI score0.01053EPSS
Exploits0References1
OSV
OSV
added 2019/08/29 1:15 a.m.4 views

CVE-2019-13407

A XSS found in Advan VD-1 firmware versions up to 230. VD-1 responses a path error message when a requested resource was not found in page cgibin/ssi.cgi. It leads to a reflected XSS because the error message does not escape properly...

6.1CVSS6.2AI score0.01053EPSS
Exploits1References3
OSV
OSV
added 2017/06/09 4:29 p.m.5 views

CVE-2016-7825

Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted commands...

6.5CVSS5.9AI score
Exploits0References3
OSV
OSV
added 2017/03/06 2:59 a.m.5 views

CVE-2017-6334

dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the hostname field of an HTTP POST request, a different vulnerability than CVE-2017-6077...

8.8CVSS6.1AI score0.72199EPSS
Exploits11References5
Rows per page
Query Builder