23 matches found
EUVD-2025-9496
Malicious code in bioql PyPI...
EUVD-2025-9498
Malicious code in bioql PyPI...
EUVD-2025-9497
Malicious code in bioql PyPI...
CVE-2025-26055
An OS Command Injection vulnerability exists in the Infinxt iEdge 100 2.1.32 Troubleshoot module, specifically in the tracertVal parameter of the Tracert function...
CVE-2025-26054
Infinxt iEdge 100 2.1.32 is vulnerable to Cross Site Scripting XSS via the "Description" field during LAN configuration...
CVE-2025-26056
A command injection vulnerability exists in the Infinxt iEdge 100 2.1.32 in the Troubleshoot module "MTR" functionality. The vulnerability is due to improper validation of user-supplied input in the mtrIp parameter. An attacker can exploit this flaw to execute arbitrary operating system commands ...
CVE-2025-26055
An OS Command Injection vulnerability exists in the Infinxt iEdge 100 2.1.32 Troubleshoot module, specifically in the tracertVal parameter of the Tracert function...
CVE-2025-26056
A command injection vulnerability exists in the Infinxt iEdge 100 2.1.32 in the Troubleshoot module "MTR" functionality. The vulnerability is due to improper validation of user-supplied input in the mtrIp parameter. An attacker can exploit this flaw to execute arbitrary operating system commands ...
CVE-2025-26054
Infinxt iEdge 100 2.1.32 is vulnerable to Cross Site Scripting XSS via the "Description" field during LAN configuration...
Infinxt iEdge 100 安全漏洞
Infinxt iEdge 100 is a next-generation secure SD-WAN appliance for small and medium-sized branch offices from Infinxt. A security vulnerability exists in the Infinxt iEdge 100 version 2.1.32, which stems from improper validation of user input for the mtrIp parameter in the MTR function of the...
PT-2025-14379 · Infinxt · Infinxt Iedge 100
Name of the Vulnerable Software and Affected Versions: Infinxt iEdge 100 version 2.1.32 Description: A command injection issue exists in the Troubleshoot module's "MTR" functionality due to improper validation of user-supplied input in the mtrIp parameter. This allows an attacker to execute...
PT-2025-14378 · Infinxt · Infinxt Iedge 100
Name of the Vulnerable Software and Affected Versions: Infinxt iEdge 100 version 2.1.32 Description: An OS Command Injection issue exists in the Troubleshoot module, specifically in the tracertVal parameter of the Tracert function. Recommendations: For Infinxt iEdge 100 version 2.1.32, consider...
CVE-2025-26055
An OS Command Injection vulnerability exists in the Infinxt iEdge 100 2.1.32 Troubleshoot module, specifically in the tracertVal parameter of the Tracert function...
CVE-2025-26055
An OS Command Injection vulnerability exists in the Infinxt iEdge 100 2.1.32 Troubleshoot module, specifically in the tracertVal parameter of the Tracert function...
Infinxt iEdge 100 安全漏洞
Infinxt iEdge 100 is a next-generation secure SD-WAN appliance for small and medium-sized branch offices from Infinxt. A security vulnerability exists in Infinxt iEdge 100 version 2.1.32, which stems from a command injection in the tracertVal parameter in the Tracert function...
CVE-2025-26056
A command injection vulnerability exists in the Infinxt iEdge 100 2.1.32 in the Troubleshoot module "MTR" functionality. The vulnerability is due to improper validation of user-supplied input in the mtrIp parameter. An attacker can exploit this flaw to execute arbitrary operating system commands ...
CVE-2025-26055
CVE-2025-26055 affects Infinxt iEdge 100, specifically the Troubleshoot module and its tracertVal parameter in the Tracert function (version 2.1.32). Descriptions consistently identify an OS command injection vulnerability, enabling potential arbitrary command execution. Public references include...
CVE-2025-26056
A command injection vulnerability exists in the Infinxt iEdge 100 2.1.32 in the Troubleshoot module "MTR" functionality. The vulnerability is due to improper validation of user-supplied input in the mtrIp parameter. An attacker can exploit this flaw to execute arbitrary operating system commands ...
CVE-2025-26056
CVE-2025-26056 affects Infinxt iEdge 100 (version 2.1.32) with a command injection in the Troubleshoot module’s MTR functionality due to improper validation of the mtrIp input. This allows an attacker to execute arbitrary OS commands with the web application’s privileges. If exploited, this could...
Infinxt iEdge 100 跨站脚本漏洞
Infinxt iEdge 100 is a next-generation secure SD-WAN appliance for small and medium-sized branch offices from Infinxt. A cross-site scripting vulnerability exists in Infinxt iEdge 100 version 2.1.32, which originates from cross-site scripting in the description field in the LAN configuration...