CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

163 matches found

Gryphon Tower - Cross-Site Scripting

Gryphon Tower router web interface contains a reflected cross-site scripting vulnerability in the url parameter of the /cgi-bin/luci/siteaccess/ page. An attacker can exploit this issue by tricking a user into following a specially crafted link, granting the attacker JavaScript execution in the...

6.1CVSS6.3AI score0.11461EPSS

Exploits1References4

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в wireshark

In Wireshark versions 3.0.0 to 3.0.3, and 2.6.0 to 2.6.10, the Gryphon dissector could enter an infinite loop. This issue was addressed in the plugin file plugins/epan/gryphon/packet-gryphon.c by checking for a packet length of zero...

7.8CVSS6.9AI score0.00588EPSS

Exploits0References1

OSV•added 2026/04/28 9:54 a.m.•2 views

CLSA-2026-1777370059 wireshark: Fix of 7 CVEs

CVE-2021-4181: sysdig event dissector SIGSEGV fix - CVE-2021-4182: rfc7468 file parser infinite loop fix - CVE-2021-4184: bt-dht endless loop fix - CVE-2021-4186: gryphon NULL pktinfo dereference fix - CVE-2021-4190: kafka dissector varint strictness fix - CVE-2022-0581: cms dissector...

7.5CVSS7.4AI score0.00324EPSS

Exploits7References1

Tenable Nessus•added 2026/02/24 12:0 a.m.•4 views

Unity Linux 20.1060e / 20.1070e Security Update: wireshark (UTSA-2026-005367)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005367 advisory. In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite loop. This was addressed in plugins/epan/gryphon/packet-gryphon.c by...

7.8CVSS5.6AI score0.00588EPSS

Exploits0References4

RedhatCVE•added 2026/02/18 1:41 a.m.•7 views

CVE-2025-65753

An issue in the TLS certification mechanism of Guardian Gryphon v01.06.0006.22 allows attackers to execute commands as root...

7.5CVSS5.7AI score0.00028EPSS

Exploits1References1

NVD•added 2026/02/17 4:20 p.m.•7 views

CVE-2025-65753

An issue in the TLS certification mechanism of Guardian Gryphon v01.06.0006.22 allows attackers to execute commands as root...

7.5CVSS0.00028EPSS

Exploits1References2

Vulnrichment•added 2026/02/17 12:0 a.m.•4 views

CVE-2025-65753

An issue in the TLS certification mechanism of Guardian Gryphon v01.06.0006.22 allows attackers to execute commands as root...

5.7AI score0.00028EPSS

Exploits1References2

CVE•added 2026/02/17 12:0 a.m.•10 views

CVE-2025-65753

CVE-2025-65753 describes a remote code execution flaw in Guardian Gryphon v01.06.0006.22 due to improper TLS certificate validation during a TLS-protected speedtest client download, enabling root-level commands. Multiple connected sources corroborate the flaw and firmware version, including explo...

7.5CVSS5.7AI score0.00028EPSS

Exploits1References2

Cvelist•added 2026/02/17 12:0 a.m.•24 views

CVE-2025-65753

An issue in the TLS certification mechanism of Guardian Gryphon v01.06.0006.22 allows attackers to execute commands as root...

0.00028EPSS

Exploits1References2

CNNVD•added 2026/02/17 12:0 a.m.•3 views

Gryphon Guardian WiFi access point 安全漏洞

The Gryphon Guardian WiFi access point is a security WiFi access point developed by the American company Gryphon. Version 01.06.0006.22 of the Gryphon Guardian WiFi access point contains a security vulnerability. This vulnerability stems from issues with the TLS authentication mechanism, which ma...

7.5CVSS5.8AI score0.00028EPSS

Exploits1References2

Positive Technologies•added 2026/02/17 12:0 a.m.•4 views

PT-2026-20259

Name of the Vulnerable Software and Affected Versions Guardian Gryphon version 01.06.0006.22 Description An issue in the TLS certification mechanism allows attackers to execute commands as root. Recommendations At the moment, there is no information about a newer version that contains a fix for...

7.5CVSS5.6AI score0.00028EPSS

Exploits1References5