Lucene search
K

404 matches found

CISA KEV Catalog
CISA KEV Catalog
added 2025/09/03 12:0 a.m.8 views

TP-Link TL-WR841N Authentication Bypass by Spoofing Vulnerability

TP-Link TL-WR841N contains an authentication bypass by spoofing vulnerability within the httpd service, which listens on TCP port 80 by default, leading to the disclose of stored credentials. The impacted products could be end-of-life EoL and/or end-of-service EoS. Users should discontinue produc...

6.5CVSS7AI score0.1745EPSS
In wildExploits0
EUVD
EUVD
added 2025/08/07 4:44 p.m.7 views

EUVD-2025-23927

An unauthenticated OS command injection vulnerability exists in the Shenzhen Aitemi M300 Wi-Fi Repeater hardware model MT02 via the 'time' parameter of the '/protocol.csp?' endpoint. The input is processed by the internal date '-s' command without rebooting or disrupting HTTP service. Unlike othe...

9.4CVSS7.3AI score0.60875EPSS
Exploits5References2
CVE
CVE
added 2025/08/07 4:44 p.m.49 views

CVE-2025-34152

The CVE-2025-34152 entry concerns the Shenzhen Aitemi M300 Wi‑Fi Repeater (MT02). The vulnerability is an unauthenticated OS command injection exposed via the time parameter of the /protocol.csp? endpoint. Reported impact is remote code execution with root privileges without requiring authenticat...

9.4CVSS7.3AI score0.60875EPSS
In wildExploits5References3
RedhatCVE
RedhatCVE
added 2025/08/02 8:22 p.m.5 views

CVE-2025-2813

An unauthenticated remote attacker can cause a Denial of Service by sending a large number of requests to the http service on port 80...

7.5CVSS6.5AI score0.00602EPSS
Exploits0References1
NVD
NVD
added 2025/07/31 10:15 a.m.9 views

CVE-2025-2813

An unauthenticated remote attacker can cause a Denial of Service by sending a large number of requests to the http service on port 80...

7.5CVSS0.00602EPSS
Exploits0References1
CVE
CVE
added 2025/07/31 10:8 a.m.22 views

CVE-2025-2813

Technical details about CVE-2025-2813 are not publicly available in the provided documents; no affected products, versions, root cause, or remediation are specified here. Monitor for updates.

7.5CVSS6.7AI score0.00602EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/31 10:8 a.m.3 views

CVE-2025-2813 HTTP Service DoS Vulnerability

An unauthenticated remote attacker can cause a Denial of Service by sending a large number of requests to the http service on port 80...

7.5CVSS6.9AI score0.00602EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/31 10:8 a.m.10 views

CVE-2025-2813 HTTP Service DoS Vulnerability

An unauthenticated remote attacker can cause a Denial of Service by sending a large number of requests to the http service on port 80...

7.5CVSS0.00602EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/31 12:0 a.m.7 views

PT-2025-31499 · Unknown · Http Service

Name of the Vulnerable Software and Affected Versions: versions affected versions not specified Description: An unauthenticated remote attacker can cause a Denial of Service by sending a large number of requests to the http service on port 80. Recommendations: At the moment, there is no informati...

7.5CVSS6.3AI score0.00602EPSS
Exploits0References6
Gitee
Gitee
added 2025/07/06 3:21 a.m.133 views

Pentest-and-Development-Tips

Pentest-and-Development-Tips A collection of pentest and development tips Author: 3gstudent Click on me to view the English version 声明 以下技巧不应用于非法用途 --- Tips 1. 手动端口探测 nmap的-sV可以探测出服务版本,但有些情况下必须手动探测去验证 使用Wireshark获取响应包未免大材小用,可通过nc简单判断 eg. 对于8001端口,nc连接上去,随便输入一个字符串,得到了以下结果: $ nc -vv localhost 8001...

7.4AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/27 8:20 a.m.7 views

CVE-2024-51977

An unauthenticated attacker who can access either the HTTP service TCP port 80, the HTTPS service TCP port 443, or the IPP service TCP port 631, can leak several pieces of sensitive information from a vulnerable device. The URI path /etc/mntinfo.csv can be accessed via a GET request and no...

5.3CVSS7.3AI score0.7656EPSS
Exploits0References1
NVD
NVD
added 2025/06/25 8:15 a.m.9 views

CVE-2024-51979

An authenticated attacker may trigger a stack based buffer overflow by performing a malformed request to either the HTTP service TCP port 80, the HTTPS service TCP port 443, or the IPP service TCP port 631. The malformed request will contain an empty Origin header value and a malformed Referer...

7.2CVSS0.01056EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2025/06/25 8:15 a.m.11 views

CVE-2024-51977

An unauthenticated attacker who can access either the HTTP service TCP port 80, the HTTPS service TCP port 443, or the IPP service TCP port 631, can leak several pieces of sensitive information from a vulnerable device. The URI path /etc/mntinfo.csv can be accessed via a GET request and no...

5.3CVSS7.3AI score0.7656EPSS
Exploits0References12Affected Software21
CVE
CVE
added 2025/06/25 7:20 a.m.20 views

CVE-2024-51979

CVE-2024-51979 describes a stack-based buffer overflow triggered by authenticated requests to HTTP/HTTPS/IPP services (ports 80/443/631) on multiple multifunction printer platforms. The exploit is via malformed Origin and Referer headers, with the Referer host value exceeding 64 bytes. Connected ...

7.2CVSS7.5AI score0.01056EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/06/25 7:20 a.m.11 views

CVE-2024-51979 Authenticated stack based buffer overflow affecting multiple models from Brother Industries, Ltd, FUJIFILM Business Innovation, Ricoh, and Konica Minolta, Inc.

An authenticated attacker may trigger a stack based buffer overflow by performing a malformed request to either the HTTP service TCP port 80, the HTTPS service TCP port 443, or the IPP service TCP port 631. The malformed request will contain an empty Origin header value and a malformed Referer...

7.2CVSS0.01056EPSS
Exploits0References9
EUVD
EUVD
added 2025/06/25 7:15 a.m.7 views

EUVD-2024-54705

An unauthenticated attacker who can access either the HTTP service TCP port 80, the HTTPS service TCP port 443, or the IPP service TCP port 631, can leak several pieces of sensitive information from a vulnerable device. The URI path /etc/mntinfo.csv can be accessed via a GET request and no...

5.3CVSS7.2AI score0.7656EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/06/25 12:0 a.m.8 views

PT-2025-26812 · Hewlett Packard · Hp Ipp

Name of the Vulnerable Software and Affected Versions: HP IPP versions affected versions not specified Description: An authenticated attacker can trigger a stack-based buffer overflow by sending a malformed request to the HTTP service TCP port 80, the HTTPS service TCP port 443, or the IPP servic...

7.2CVSS6.5AI score0.01056EPSS
Exploits0References15
Vulnrichment
Vulnrichment
added 2025/06/24 2:52 a.m.5 views

CVE-2025-52574 SysmonElixir path traversal in /read endpoint allows arbitrary file read

SysmonElixir is a system monitor HTTP service in Elixir. Prior to version 1.0.1, the /read endpoint reads any file from the server's /etc/passwd by default. In v1.0.1, a whitelist was added that limits reading to only files under priv/data. This issue has been patched in version 1.0.1...

7.5CVSS7AI score0.00419EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/24 1:0 a.m.8 views

CVE-2025-34036 Shenzhen TVT CCTV-DVR Command Injection

An OS command injection vulnerability exists in white-labeled DVRs manufactured by TVT, affecting a custom HTTP service called "Cross Web Server" that listens on TCP ports 81 and 82. The web interface fails to sanitize input in the URI path passed to the language extraction functionality. When th...

10CVSS7.7AI score0.25282EPSS
Exploits2References3
CVE
CVE
added 2025/06/24 1:0 a.m.55 views

CVE-2025-34036

The CVE-2025-34036 issue affects white-labeled TVT DVRs’ Cross Web Server, a custom HTTP service listening on TCP ports 81/82. The web UI fails to sanitize the [lang] parameter in the /language/[lang]/index.html path, allowing unsafely used input in a tar extraction command to enable OS command i...

10CVSS7.7AI score0.25282EPSS
In wildExploits2References3Affected Software1
Rows per page
Query Builder