Lucene search
K

356 matches found

Positive Technologies
Positive Technologies
added 2025/05/08 12:0 a.m.4 views

PT-2025-20437 · H3C · H3C Gr-1800Ax

Name of the Vulnerable Software and Affected Versions: H3C GR-1800AX versions up to 100R008 Description: A critical issue was found, affecting the function EnableIpv6 of the file "/goform/aspForm". The manipulation of the argument param leads to a buffer overflow. Access to the local network is...

8.6CVSS7.8AI score0.00531EPSS
Exploits0References11
CNNVD
CNNVD
added 2025/05/08 12:0 a.m.5 views

H3C GR-1800AX 安全漏洞

The H3C GR-1800AX is an enterprise-class wireless router from China's Xinhua San H3C. A security vulnerability exists in the H3C GR-1800AX 100R008 and prior versions, which originates from a buffer overflow due to the param parameter manipulation of the EnableIpv6 function in the /goform/aspForm...

8.6CVSS8AI score0.00531EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/04/25 6:41 p.m.17 views

CVE-2025-3854

A vulnerability, which was classified as critical, was found in H3C GR-3000AX up to V100R006. Affected is the function EnableIpv6/UpdateWanModeMulti/UpdateIpv6Params/EditWlanMacList/EditListSSID of the file /goform/aspForm of the component HTTP POST Request Handler. The manipulation of the argume...

8.6CVSS7AI score0.0049EPSS
Exploits0References1
NVD
NVD
added 2025/04/22 1:15 a.m.22 views

CVE-2025-3854

A vulnerability, which was classified as critical, was found in H3C GR-3000AX up to V100R006. Affected is the function EnableIpv6/UpdateWanModeMulti/UpdateIpv6Params/EditWlanMacList/EditListSSID of the file /goform/aspForm of the component HTTP POST Request Handler. The manipulation of the argume...

8.6CVSS0.0049EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/04/22 12:31 a.m.24 views

CVE-2025-3854 H3C GR-3000AX HTTP POST Request aspForm Edit_List_SSID buffer overflow

A vulnerability, which was classified as critical, was found in H3C GR-3000AX up to V100R006. Affected is the function EnableIpv6/UpdateWanModeMulti/UpdateIpv6Params/EditWlanMacList/EditListSSID of the file /goform/aspForm of the component HTTP POST Request Handler. The manipulation of the argume...

8.6CVSS6.8AI score0.0049EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/04/22 12:31 a.m.21 views

CVE-2025-3854 H3C GR-3000AX HTTP POST Request aspForm Edit_List_SSID buffer overflow

A vulnerability, which was classified as critical, was found in H3C GR-3000AX up to V100R006. Affected is the function EnableIpv6/UpdateWanModeMulti/UpdateIpv6Params/EditWlanMacList/EditListSSID of the file /goform/aspForm of the component HTTP POST Request Handler. The manipulation of the argume...

8.6CVSS0.0049EPSS
Exploits0References6
CVE
CVE
added 2025/04/22 12:31 a.m.78 views

CVE-2025-3854

CVE-2025-3854 affects H3C GR-3000AX (up to V100R006). The vulnerability lies in the HTTP POST Request Handler, specifically the functions EnableIpv6, UpdateWanModeMulti, UpdateIpv6Params, EditWlanMacList, and Edit_List_SSID in the file /goform/aspForm. Manipulation of the param argument leads to ...

8.6CVSS8AI score0.0049EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/04/22 12:0 a.m.12 views

PT-2025-17476 · H3C · H3C Gr-3000Ax

Name of the Vulnerable Software and Affected Versions: H3C GR-3000AX versions up to V100R006 Description: A critical vulnerability was found in the HTTP POST Request Handler component of H3C GR-3000AX. The affected function is EnableIpv6/UpdateWanModeMulti/UpdateIpv6Params/EditWlanMacList/Edit Li...

8.6CVSS7.8AI score0.0049EPSS
Exploits0References20
OSV
OSV
added 2025/03/20 10:15 a.m.6 views

CVE-2024-10707

gaizhenbiao/chuanhuchatgpt version git d4ec6a3 is affected by a local file inclusion vulnerability due to the use of the gradio component gr.JSON, which has a known issue CVE-2024-4941. This vulnerability allows unauthenticated users to access arbitrary files on the server by uploading a speciall...

6.5CVSS5.9AI score0.00669EPSS
Exploits1References1
OSV
OSV
added 2024/12/29 12:15 p.m.4 views

UBUNTU-CVE-2024-56752

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/gr/gf100: Fix missing unlock in gf100grchannew When the call to gf100grctxgenerate fails, unlock gr-fecs.mutex before returning the error. Fixes smatch warning: drivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480...

5.5CVSS6.5AI score0.00201EPSS
Exploits0References19
CNVD
CNVD
added 2024/11/26 12:0 a.m.8 views

H3C GR-1800AX Code Execution Vulnerability

The H3C GR-1800AX is an enterprise-class wireless router from China's Xinhua San H3C. The H3C GR-1800AX suffers from a code execution vulnerability that stems from the presence of a remote code execution RCE vulnerability. No detailed vulnerability details are available at this time...

9.8CVSS7.7AI score0.11208EPSS
Exploits1References1
NVD
NVD
added 2024/11/20 9:15 p.m.26 views

CVE-2024-52765

H3C GR-1800AX MiniGRW1B0V100R007 is vulnerable to remote code execution RCE via the aspForm parameter...

9.8CVSS0.11208EPSS
Exploits1References1
OSV
OSV
added 2024/11/20 9:15 p.m.4 views

CVE-2024-52765

H3C GR-1800AX MiniGRW1B0V100R007 is vulnerable to remote code execution RCE via the aspForm parameter...

9.8CVSS6.4AI score0.11208EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/11/20 12:0 a.m.6 views

H3C GR-1800AX 安全漏洞

The H3C GR-1800AX is an enterprise-class wireless router from China's Xinhua San H3C. The H3C GR-1800AX suffers from a code execution vulnerability that stems from the presence of a remote code execution RCE vulnerability. No detailed vulnerability details are available at this time...

9.8CVSS8.1AI score0.11208EPSS
Exploits1References1
CVE
CVE
added 2024/11/20 12:0 a.m.59 views

CVE-2024-52765

CVE-2024-52765 affects H3C GR-1800AX MiniGRW1B0V100R007. The vulnerability enables remote code execution via the aspForm parameter. CVSSv3.1 base score 9.8 (CRITICAL) with network attack vector, no user interaction required. Root cause details are not expanded beyond the RCE via aspForm, and ther...

9.8CVSS7.5AI score0.11208EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/11/20 12:0 a.m.17 views

CVE-2024-52765

H3C GR-1800AX MiniGRW1B0V100R007 is vulnerable to remote code execution RCE via the aspForm parameter...

0.11208EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/11/20 12:0 a.m.17 views

CVE-2024-52765

H3C GR-1800AX MiniGRW1B0V100R007 is vulnerable to remote code execution RCE via the aspForm parameter...

8.1AI score0.11208EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/11/06 6:46 p.m.3 views

Malicious code in gr-mg (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 9299ffcce3856f06a694bb95009da56415f80f19ed8b67f444edbf4f3556ec77 A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...

7.1AI score
Exploits0References1
OSV
OSV
added 2024/11/06 6:46 p.m.5 views

MAL-2024-10823 Malicious code in gr-mg (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 9299ffcce3856f06a694bb95009da56415f80f19ed8b67f444edbf4f3556ec77 A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...

7AI score
Exploits0References1
Openbugbounty
Openbugbounty
added 2024/07/22 2:22 p.m.4 views

hitfm1035.gr Cross Site Scripting vulnerability OBB-3948978

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Rows per page
Query Builder