217 matches found
EUVD-2026-0338
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0424
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0522
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0574
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2025-205305
A remote unauthenticated attacker may be able to bypass authentication by utilizing a specific API route to execute arbitrary OS commands...
EUVD-2025-205315
devolo dLAN 500 AV Wireless+ 3.1.0-1 contains an authentication bypass vulnerability that allows attackers to enable hidden services through the htmlmgr CGI script. Attackers can enable telnet and remote shell services, reboot the device, and gain root access without a password by manipulating...
EUVD-2025-205135
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix the error "trying to register non-static key in rxecleanuptask" In the function rxecreateqp, rxeqpfrominit is called to initialize qp, internally things like rxeinittask are not setup until rxeqpinitreq. If an error...
EUVD-2025-203964
A logging issue was addressed with improved data redaction. This issue is fixed in macOS Tahoe 26.2, iOS 26.2 and iPadOS 26.2, watchOS 26.2. An app may be able to access a user’s Safari history...
ECHO-6CC4-CC58-D5C2
Bulletin has no description...
EUVD-2025-203824
Server-Side Request Forgery SSRF vulnerability in Ctera Portal 8.1.x 8.1.1417.24 allows remote attackers to induce the server to make arbitrary HTTP requests via a crafted HTML file containing an iframe...
EUVD-2025-203409
Wp2Fac 1.0 contains an OS command injection vulnerability in the send.php endpoint that allows remote attackers to execute arbitrary system commands. Attackers can inject shell commands through the 'numara' parameter by appending shell commands with '&' operators to execute malicious code...
EUVD-2025-203414
Xlight FTP Server 3.9.3.6 contains a stack buffer overflow vulnerability in the 'Execute Program' configuration that allows attackers to crash the application. Attackers can trigger the vulnerability by inserting 294 characters into the program execution configuration, causing a denial of service...
MINI-67X4-7CF8-43F3
Bulletin has no description...
CGA-7HR7-33RG-X5H2
Bulletin has no description...
ECHO-D9C6-793C-0502
Bulletin has no description...
EUVD-2025-198189
Twonky Server 8.5.2 on Linux and Windows is vulnerable to an access control flaw. An unauthenticated attacker can bypass web service API authentication controls to leak a log file and read the administrator's username and encrypted password...
MINI-QW5J-W5M9-X9W7
Bulletin has no description...
MINI-M2R4-X8JG-MRJP
Bulletin has no description...
MINI-HXXR-Q3QJ-CJ3H
Bulletin has no description...
CGA-VMGP-P9C5-C79F
Bulletin has no description...