Lucene search
K

309 matches found

OSV
OSV
added 2025/12/05 5:16 p.m.4 views

CVE-2025-14093

A vulnerability was detected in Edimax BR-6478AC V3 1.0.15. Impacted is the function sub416990 of the file /boafrm/formTracerouteDiagnosticRun. The manipulation of the argument host results in os command injection. The attack can be launched remotely. The exploit is now public and may be used. Th...

9.8CVSS5.7AI score0.17632EPSS
Exploits1References4
CVE
CVE
added 2025/12/05 4:2 p.m.10 views

CVE-2025-14092

Edimax BR-6478AC V3 (firmware 1.0.15) is affected by an OS command injection in the sub_416898 function of /boafrm/formDebugDiagnosticRun. The vulnerability can be triggered remotely over the network by manipulating the host argument, with public exploit details available. Multiple connected sour...

7.2CVSS5.1AI score0.15225EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2025/12/05 12:0 a.m.4 views

Edimax BR-6478AC 操作系统命令注入漏洞

Edimax BR-6478AC is a dual-band gigabit router from China Xunzhou Edimax. An OS command injection vulnerability exists in the Edimax BR-6478AC V3 version 1.0.15, which stems from the incorrect operation of the parameter host in the file /boafrm/formDebugDiagnosticRun, which can lead to os command...

7.2CVSS5.5AI score0.15225EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/12/01 12:0 a.m.5 views

orion-ops 安全漏洞

orion-ops is a one-stop automated operation and maintenance and automated deployment platform by Jiahang Li, an individual developer. A security vulnerability exists in orion-ops, which stems from the misuse of the parameters host/sshPort/username/password/authType in the file...

6.5CVSS6.4AI score0.00292EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.4 views

D-Link多款产品 命令注入漏洞

The D-Link DWR-M920 and others are a router from China-based AUO D-Link. A command injection vulnerability exists in various D-Link products. The vulnerability stems from incorrect manipulation of the parameter host in the file /boafrm/formDebugDiagnosticRun, which can lead to command injection...

8.8CVSS6.9AI score0.07315EPSS
Exploits1References9
CVE
CVE
added 2025/11/17 10:32 p.m.22 views

CVE-2025-13304

CVE-2025-13304 affects multiple D-Link routers: DWR-M920, DWR-M921, DWR-M960, DWR-M961, and DIR-825M (firmware 1.01.07/1.1.47). The flaw lies in the file path /boafrm/formPingDiagnosticRun; adversarial manipulation of the “host” argument can cause a buffer overflow, enabling a remote attack. Docu...

9CVSS8.7AI score0.0074EPSS
Exploits1References9Affected Software1
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.3 views

D-Link多款产品 安全漏洞

D-Link DWR-M920 and others are a router from China-based AUO D-Link. A security vulnerability exists in various D-Link products, which stems from incorrect manipulation of the parameter host in the file /boafrm/formPingDiagnosticRun, which may result in a buffer overflow. The following products a...

9CVSS9AI score0.0074EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.13 views

PT-2025-47230

Name of the Vulnerable Software and Affected Versions D-Link DWR-M920 version 1.1.5 D-Link DWR-M921 version 1.1.5 D-Link DIR-822K version 1.1.5 D-Link DIR-825M version 1.1.5 Description A security issue exists in D-Link devices that allows for command injection. The system function within the...

6.5CVSS6.8AI score0.07315EPSS
Exploits1References10
NVD
NVD
added 2025/11/13 8:15 p.m.3 views

CVE-2025-60699

A buffer overflow vulnerability exists in the TOTOLINK A950RG Router firmware V5.9c.4592B20191022ALL within the global.so binary. The getSaveConfig function retrieves the httphost parameter from user input via websGetVar and copies it into a fixed-size stack buffer v13 using strcpy without...

6.5CVSS0.00767EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/11/09 12:0 a.m.9 views

PT-2025-47212

Name of the Vulnerable Software and Affected Versions D-Link DWR-M920, DWR-M921, DWR-M960, DWR-M961, and DIR-825M versions 1.01.07 through 1.1.47 Description A security issue has been identified in D-Link routers, specifically affecting the models DWR-M920, DWR-M921, DWR-M960, DWR-M961, and...

9CVSS8.6AI score0.0074EPSS
Exploits1References21
RedhatCVE
RedhatCVE
added 2025/11/01 12:25 a.m.7 views

CVE-2025-63468

Totolink LR350 v9.3.5u.6369B20220309 was discovered to contain a stack overflow via the httphost parameter in the sub426EF8 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS7.4AI score0.00376EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/31 6:31 p.m.4 views

EUVD-2025-37373

Totolink LR350 v9.3.5u.6369B20220309 was discovered to contain a stack overflow via the httphost parameter in the sub426EF8 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS6.8AI score0.00376EPSS
Exploits1References2
NVD
NVD
added 2025/10/31 4:15 p.m.4 views

CVE-2025-63468

Totolink LR350 v9.3.5u.6369B20220309 was discovered to contain a stack overflow via the httphost parameter in the sub426EF8 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS0.00376EPSS
Exploits1References1
CVE
CVE
added 2025/10/31 12:0 a.m.13 views

CVE-2025-63468

Totolink LR350, version 9.3.5u.6369_B20220309, has a stack overflow in the http_host handling within sub_426EF8. The vulnerability enables Denial of Service through a crafted request sent over the network. Public details consistently describe a stack-buffer/stack overflow without evidence of a fi...

7.5CVSS7AI score0.00376EPSS
Exploits1References1Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2014-3746

Malware in sbrugna...

4.3CVSS6.4AI score0.01862EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-4543

Malware in sbrugna...

10CVSS6.1AI score0.08437EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-16869

Malware in sbrugna...

6.1CVSS7.6AI score0.009EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-7349

Malware in sbrugna...

7.2CVSS7AI score0.02279EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-4462

Malicious code in bioql PyPI...

6.6AI score
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-37557

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00992EPSS
Exploits1References1
Rows per page
Query Builder