CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-16925

Malware in sbrugna...

7.8CVSS7.6AI score0.00306EPSS

Exploits3References7

OSV•added 2025/04/30 9:15 a.m.•0 views

CVE-2025-4124

Delta Electronics ISPSoft version 3.20 is vulnerable to an Out-Of-Bounds Write vulnerability that could allow an attacker to execute arbitrary code when parsing ISP file...

9.8CVSS6.1AI score

Exploits0References1

OSV•added 2025/04/30 9:15 a.m.•0 views

CVE-2025-4125

Delta Electronics ISPSoft version 3.20 is vulnerable to an Out-Of-Bounds Write vulnerability that could allow an attacker to execute arbitrary code when parsing ISP file...

9.8CVSS6.1AI score

Exploits0References1

CNNVD•added 2025/04/30 12:0 a.m.•1 views

Delta Electronics ISPSoft 安全漏洞

Delta Electronics ISPSoft is a set of PLC Programmable Logic Controller programming software from Delta Electronics, China. An out-of-bounds write vulnerability exists in Delta Electronics ISPSoft, which can be exploited by an attacker to execute arbitrary code while parsing an ISP file...

9.8CVSS7.8AI score0.00287EPSS

Exploits0References1

Prion•added 2019/03/21 4:1 p.m.•7 views

Command injection

An issue was discovered on Systrome Cumilon ISG-600C, ISG-600H, and ISG-800W devices with firmware V1.1-R2.1TRUNK-20181105.bin. A shell command injection occurs by editing the description of an ISP file. The file network/isp/ispupdateedit.php does not properly validate user input, which leads to...

7.2CVSS7.9AI score0.00306EPSS

Exploits3References5Affected Software3

Cvelist•added 2019/03/17 7:4 p.m.•10 views

CVE-2019-7383

8AI score0.00306EPSS

Exploits3References5

CVE•added 2019/03/17 7:4 p.m.•41 views

CVE-2019-7383

CVE-2019-7383 affects Systrome Cumilon ISG-600C, ISG-600H and ISG-800W with firmware V1.1-R2.1_TRUNK-20181105.bin. The issue is a shell command injection in network/isp/isp_update_edit.php caused by improper validation of the des parameter, enabling arbitrary commands when the ISP file descriptio...

7.8CVSS7.9AI score0.00306EPSS

Exploits3References5Affected Software1

Packet Storm•added 2019/02/13 12:0 a.m.•67 views

SYSTORME ISG Command Injection

===================================== Authenticated Shell Command Injection ===================================== . contents:: Table Of Content Overview ======== Title : Authenticated Shell command Injection Author: Kaustubh G. Padwad CVE ID: CVE-2019-7383 Vendor: Systrome Networks...

7.8AI score0.00306EPSS

Exploits3

NVD•added 2010/08/27 7:0 p.m.•15 views

CVE-2010-3140

Untrusted search path vulnerability in Microsoft Windows Internet Communication Settings on Windows XP SP3 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse schannel.dll that is located in the same folder as an ISP fi...

9.3CVSS7.4AI score0.07297EPSS

Exploits1References2

CVE•added 2001/09/12 4:0 a.m.•39 views

CVE-1999-1128

The CVE-1999-1128 entry describes Internet Explorer 3.01 on Windows 95 as vulnerable. A .isp file is automatically downloaded and executed from remote malicious sites without user prompts, allowing remote arbitrary command execution. The available documents do not specify a remediation or patch, ...

5.1CVSS8.3AI score0.06077EPSS

Exploits0References2Affected Software1

NVD•added 1997/03/01 5:0 a.m.•8 views

CVE-1999-1128

Internet Explorer 3.01 on Windows 95 allows remote malicious web sites to execute arbitrary commands via a .isp file, which is automatically downloaded and executed without prompting the user...

5.1CVSS0.06077EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by