CVE-2026-27520

Binardat 10G08-0800GSM network switch firmware versions before V300SP10260209 store a user password in a client-side cookie as a Base64-encoded value accessible via the web interface. Since Base64 is reversible, an attacker with cookie access can recover the plaintext password. Affected product/v...

CVE-2025-60738

An issue in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before Logic Version v6.00 - 20250721 and before allows a remote attacker to execute arbitrary code via the ping.php component does not perform secure filtering on IP parameters...

CVE-2025-52544

CVE-2025-52544 affects Copeland/ E3 Site Supervisor Control firmware versions before 2.31F01. A floor plan feature permits an unauthenticated attacker to upload floor plan files, which can be used to read arbitrary files from the E3 file system. Documented impact indicates potential arbitrary fil...

CVE-2022-22722

A CWE-798: Use of Hard-coded Credentials vulnerability exists that could result in information disclosure. If an attacker were to obtain the SSH cryptographic key for the device and take active control of the local operational network connected to the product they could potentially observe and...

CVE-2020-24500

Buffer overflow in the firmware for IntelR E810 Ethernet Controllers before version 1.4.1.13 may allow a privileged user to potentially enable a denial of service via local access...