Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

59 matches found

Tenable Nessus
Tenable Nessusadded 6 days ago6 views

Ubuntu 24.04 LTS / 25.10 : Foomuuri vulnerabilities (USN-8326-1)

The remote Ubuntu 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8326-1 advisory. Matthias Gerstner discovered that Foomuuri's D-Bus service did not properly enforce authorization. An unprivileged local attacker could possibly...

7CVSS5.8AI score0.00043EPSS
Exploits0References3
OSV
OSVadded 2026/05/27 5:43 p.m.1 views

USN-8326-1 foomuuri vulnerabilities

Matthias Gerstner discovered that Foomuuri's D-Bus service did not properly enforce authorization. An unprivileged local attacker could possibly use this issue to manipulate the firewall configuration, contrary to expectations. CVE-2025-67603 Matthias Gerstner discovered that Foomuuri's D-Bus...

7CVSS5.8AI score0.00043EPSS
Exploits0References3
Ubuntu
Ubuntuadded 2026/05/27 5:43 p.m.11 views

USN-8326-1: Foomuuri vulnerabilities

Matthias Gerstner discovered that Foomuuri's D-Bus service did not properly enforce authorization. An unprivileged local attacker could possibly use this issue to manipulate the firewall configuration, contrary to expectations. CVE-2025-67603 Matthias Gerstner discovered that Foomuuri's D-Bus...

7CVSS5.8AI score0.00043EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2026/05/05 2:20 p.m.7 views

CVE-2026-22679

Weaver Fanwei E-cology 10.0 versions prior to 20260312 contain an unauthenticated remote code execution vulnerability in the /papi/esearch/data/devops/dubboApi/debug/method endpoint that allows attackers to execute arbitrary commands by invoking exposed debug functionality. Attackers can craft PO...

9.8CVSS6.8AI score0.00298EPSS
Exploits1References1
EUVD
EUVDadded 2026/04/07 3:30 p.m.4 views

EUVD-2026-19607

Weaver Fanwei E-cology 10.0 versions prior to 20260312 contain an unauthenticated remote code execution vulnerability in the /papi/esearch/data/devops/dubboApi/debug/method endpoint that allows attackers to execute arbitrary commands by invoking exposed debug functionality. Attackers can craft PO...

9.8CVSS6.7AI score0.00298EPSS
Exploits1References5
NVD
NVDadded 2026/04/07 1:16 p.m.3 views

CVE-2026-22679

Weaver Fanwei E-cology 10.0 versions prior to 20260312 contain an unauthenticated remote code execution vulnerability in the /papi/esearch/data/devops/dubboApi/debug/method endpoint that allows attackers to execute arbitrary commands by invoking exposed debug functionality. Attackers can craft PO...

9.8CVSS0.00298EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2026/04/07 12:51 p.m.3 views

CVE-2026-22679

Weaver Fanwei E-cology 10.0 versions prior to 20260312 contain an unauthenticated remote code execution vulnerability in the /papi/esearch/data/devops/dubboApi/debug/method endpoint that allows attackers to execute arbitrary commands by invoking exposed debug functionality. Attackers can craft PO...

9.8CVSS6.7AI score0.00298EPSS
Exploits1References5
OPENSUSE Linux
OPENSUSE Linuxadded 2026/04/02 12:0 a.m.1 views

Security update for net-tools (moderate)

openSUSE security update: security update for net-tools ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20437-1 Rating: moderate References: bsc1243581 bsc1248410 bsc1248687 bsc142461 bsc430864 bsc544339 Cross-References: CVE-2025-46836 CVSS scores:...

6.6CVSS7AI score0.00171EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2026/03/27 5:9 p.m.1 views

CVE-2026-23995

EVerest is an EV charging software stack. Prior to version 2026.02.0, stack-based buffer overflow in CAN interface initialization: passing an interface name longer than IFNAMSIZ 16 to CAN open routines overflows ifreq.ifrname, corrupting adjacent stack data and enabling potential code execution. ...

8.4CVSS6.3AI score0.00007EPSS
Exploits1References1
NVD
NVDadded 2026/03/26 3:16 p.m.1 views

CVE-2026-23995

EVerest is an EV charging software stack. Prior to version 2026.02.0, stack-based buffer overflow in CAN interface initialization: passing an interface name longer than IFNAMSIZ 16 to CAN open routines overflows ifreq.ifrname, corrupting adjacent stack data and enabling potential code execution. ...

8.4CVSS0.00007EPSS
Exploits1References1
OSV
OSVadded 2026/03/26 3:12 p.m.0 views

OPENSUSE-SU-2026:20437-1 Security update for net-tools

This update for net-tools fixes the following issues: - Fix stack buffer overflow in parsehex bsc1248687, GHSA-h667-qrp8-gj58. - Fix stack-based buffer overflow in procgenfmt bsc1248687, GHSA-w7jq-cmw2-cq59. - Avoid unsafe memcpy in ifconfig bsc1248687. - Prevent overflow in ax25 and netrom...

6.6CVSS6.9AI score0.00171EPSS
Exploits0References7
OSV
OSVadded 2026/03/26 3:12 p.m.1 views

SUSE-SU-2026:20940-1 Security update for net-tools

This update for net-tools fixes the following issues: - Fix stack buffer overflow in parsehex bsc1248687, GHSA-h667-qrp8-gj58. - Fix stack-based buffer overflow in procgenfmt bsc1248687, GHSA-w7jq-cmw2-cq59. - Avoid unsafe memcpy in ifconfig bsc1248687. - Prevent overflow in ax25 and netrom...

6.6CVSS6.9AI score0.00171EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 2026/03/26 2:36 p.m.0 views

CVE-2026-23995

EVerest is an EV charging software stack. Prior to version 2026.02.0, stack-based buffer overflow in CAN interface initialization: passing an interface name longer than IFNAMSIZ 16 to CAN open routines overflows ifreq.ifrname, corrupting adjacent stack data and enabling potential code execution. ...

8.4CVSS6.3AI score0.00007EPSS
Exploits1References2Affected Software1
OSV
OSVadded 2026/03/26 2:36 p.m.0 views

CVE-2026-23995 EVerest has stack buffer overflow in ifreq.ifr_name when interface name exceeds IFNAMSIZ

EVerest is an EV charging software stack. Prior to version 2026.02.0, stack-based buffer overflow in CAN interface initialization: passing an interface name longer than IFNAMSIZ 16 to CAN open routines overflows ifreq.ifrname, corrupting adjacent stack data and enabling potential code execution. ...

8.4CVSS6.3AI score0.00007EPSS
Exploits1References3
Cvelist
Cvelistadded 2026/03/26 2:36 p.m.17 views

CVE-2026-23995 EVerest has stack buffer overflow in ifreq.ifr_name when interface name exceeds IFNAMSIZ

EVerest is an EV charging software stack. Prior to version 2026.02.0, stack-based buffer overflow in CAN interface initialization: passing an interface name longer than IFNAMSIZ 16 to CAN open routines overflows ifreq.ifrname, corrupting adjacent stack data and enabling potential code execution. ...

8.4CVSS0.00007EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2026/03/26 2:36 p.m.1 views

CVE-2026-23995 EVerest has stack buffer overflow in ifreq.ifr_name when interface name exceeds IFNAMSIZ

EVerest is an EV charging software stack. Prior to version 2026.02.0, stack-based buffer overflow in CAN interface initialization: passing an interface name longer than IFNAMSIZ 16 to CAN open routines overflows ifreq.ifrname, corrupting adjacent stack data and enabling potential code execution. ...

8.4CVSS6.3AI score0.00007EPSS
Exploits1References1
CVE
CVEadded 2026/03/26 2:36 p.m.5 views

CVE-2026-23995

EVerest has a stack-based buffer overflow in the CAN interface initialization. If a CAN interface name exceeds IFNAMSIZ (16), touching CAN open routines overflows the stack via ifreq.ifr_name, potentially leading to code execution. This affects versions prior to 2026.02.0; the patch is included i...

8.4CVSS6.3AI score0.00007EPSS
Exploits1References1Affected Software1
NVD
NVDadded 2026/03/03 8:16 p.m.2 views

CVE-2024-55022

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain an authenticated command injection vulnerability via the HMI Name parameter...

8.8CVSS0.00352EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/02/04 3:15 a.m.1 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

9.8CVSS5.7AI score0.00287EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/02/03 12:0 a.m.24 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

0.00287EPSS
Exploits1References1
Rows per page
Query Builder