Lucene search
+L

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-17027

Malicious code in bioql PyPI...

5.8CVSS5AI score0.06889EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-18762

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00412EPSS
Exploits1References4
NVD
NVD
added 2025/06/19 12:15 p.m.9 views

CVE-2025-6266

A vulnerability was detected in Teledyne FLIR AX8 up to 1.46. Affected by this vulnerability is an unknown functionality of the file /upload.php. Performing manipulation of the argument File results in unrestricted upload. It is possible to initiate the attack remotely. The exploit is now public...

9.8CVSS0.00412EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/06/19 12:0 a.m.7 views

PT-2025-26215

Name of the Vulnerable Software and Affected Versions FLIR AX8 versions up to 1.46 Description A critical issue affects the FLIR AX8, where the manipulation of the File argument in the "/upload.php" API endpoint leads to unrestricted file upload. This can be initiated remotely. The estimated numb...

9.8CVSS6.2AI score0.00412EPSS
Exploits1References10
Cvelist
Cvelist
added 2025/06/05 9:0 p.m.21 views

CVE-2025-5695 Teledyne FLIR AX8 Backend subscriptions.php subscribe_to_alarm command injection

A vulnerability has been found in Teledyne FLIR AX8 up to 1.46.16. This impacts the function subscribetospot/subscribetodelta/subscribetoalarm of the file /usr/www/application/models/subscriptions.php of the component Backend. Such manipulation leads to command injection. It is possible to launch...

5.8CVSS0.06889EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2025/05/26 7:32 p.m.13 views

CVE-2025-5126

A vulnerability was found in Teledyne FLIR AX8 up to 1.46.16. This vulnerability affects the function setDataTime of the file \usr\www\application\models\settingsregional.php. Performing manipulation of the argument year/month/day/hour/minute results in command injection. The attack may be...

9CVSS8.4AI score0.04673EPSS
Exploits1References1
CVE
CVE
added 2025/05/24 3:31 p.m.57 views

CVE-2025-5127

The CVE-2025-5127 entry concerns Teledyne FLIR AX8 firmware versions up to 1.46.16. The issue arises from how /prod.php processes the cmd parameter, enabling remote cross-site scripting via input manipulation. Public disclosures exist, and exploitation is possible as described in the sources. A f...

5.4CVSS3.6AI score0.00691EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/24 12:0 a.m.8 views

PT-2025-22841 · Flir · Flir Ax8

Name of the Vulnerable Software and Affected Versions: FLIR AX8 versions up to 1.46.16 Description: A critical vulnerability was found in FLIR AX8, affecting the setDataTime function of the file usrwwwapplicationmodelssettingsregional.php. The manipulation of the arguments year, month, day, hour,...

9CVSS8.8AI score0.04673EPSS
Exploits1References14
RedhatCVE
RedhatCVE
added 2025/05/23 10:4 a.m.5 views

CVE-2024-3013

A flaw has been found in Teledyne FLIR AX8 up to 1.46.16. The impacted element is an unknown function of the file /tools/testlogin.php?action=register of the component User Registration. Executing manipulation can lead to improper authorization. The attack may be performed from remote. The exploi...

8.8CVSS6AI score0.22987EPSS
Exploits0References1
CNVD
CNVD
added 2021/05/14 12:0 a.m.5 views

Arbitrary File Download Vulnerability in FLIR-AX8

Teledyne FLIR specializes in the design, development, production, marketing and promotion of specialized technologies for enhanced situational awareness. An arbitrary file download vulnerability exists in FLIR-AX8. An attacker could exploit the vulnerability to download relevant system...

7.1AI score
Exploits0
Rows per page
Query Builder