Lucene search
K

42 matches found

RedhatCVE
RedhatCVE
added 2026/06/09 8:59 a.m.12 views

CVE-2026-11494

A security vulnerability has been detected in TOTOLINK AC1200 T8 4.1.5cu.8611. This affects an unknown function of the file /etc/vsftpd.conf of the component vsftpd. The manipulation leads to least privilege violation. The attack may be initiated remotely. The exploit has been disclosed publicly...

5.3CVSS5.1AI score0.00215EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/09 8:59 a.m.12 views

CVE-2026-11497

A vulnerability has been found in D-Link DCS-5615 1.01.00. Affected by this vulnerability is an unknown functionality of the file /etc/conf.d/boa/boa.conf of the component Boa Webserver. Such manipulation leads to least privilege violation. The attack can be executed remotely. The exploit has bee...

8.8CVSS5.4AI score0.00432EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/08 5:30 p.m.10 views

CVE-2026-11554 TOTOLINK CP450 vsftpd vsftpd.conf least privilege violation

A vulnerability was determined in TOTOLINK CP450 4.1.0cu.747. This vulnerability affects unknown code of the file /etc/vsftpd.conf of the component vsftpd. This manipulation causes least privilege violation. The attack may be initiated remotely. The exploit has been publicly disclosed and may be...

5.3CVSS5.2AI score0.00206EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/08 5:30 p.m.52 views

CVE-2026-11554 TOTOLINK CP450 vsftpd vsftpd.conf least privilege violation

A vulnerability was determined in TOTOLINK CP450 4.1.0cu.747. This vulnerability affects unknown code of the file /etc/vsftpd.conf of the component vsftpd. This manipulation causes least privilege violation. The attack may be initiated remotely. The exploit has been publicly disclosed and may be...

5.3CVSS0.00206EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/08 5:30 a.m.55 views

CVE-2026-11492 D-Link DIR-823G vsftpd vsftpd.conf least privilege violation

A security flaw has been discovered in D-Link DIR-823G 1.0.2B05. The affected element is an unknown function of the file /etc/vsftpd.conf of the component vsftpd. Performing a manipulation results in least privilege violation. The attack can be initiated remotely. The exploit has been released to...

5.3CVSS0.00511EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.13 views

PT-2026-47256

A security vulnerability has been detected in TOTOLINK AC1200 T8 4.1.5cu.8611. This affects an unknown function of the file /etc/vsftpd.conf of the component vsftpd. The manipulation leads to least privilege violation. The attack may be initiated remotely. The exploit has been disclosed publicly...

5.3CVSS5.1AI score0.00215EPSS
Exploits0References7
OSV
OSV
added 2026/01/26 10:16 a.m.13 views

CVE-2025-59106

The binary serving the web server and executing basically all actions launched from the Web UI is running with root privileges. This is against the least privilege principle. If an attacker is able to execute code on the system via other vulnerabilities it is possible to directly execute commands...

8.8CVSS6AI score0.00684EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/26 10:6 a.m.6 views

EUVD-2025-206378

The binary serving the web server and executing basically all actions launched from the Web UI is running with root privileges. This is against the least privilege principle. If an attacker is able to execute code on the system via other vulnerabilities it is possible to directly execute commands...

8.8CVSS6AI score0.00684EPSS
Exploits0References3
CVE
CVE
added 2026/01/26 10:6 a.m.18 views

CVE-2025-59106

CVE-2025-59106 concerns the binary that serves the web server for the dormakaba access manager Web UI, which runs with root privileges. The underlying issue is least-privilege violation due to the Web UI binary executing actions with highest privileges, enabling direct command execution at root i...

8.8CVSS6AI score0.00684EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/07 9:12 a.m.16 views

CVE-2025-1384

Least Privilege Violation CWE-272 Vulnerability exists in the communication function between the NJ/NX-series Machine Automation Controllers and the Sysmac Studio Software. An attacker may use this vulnerability to perform unauthorized access and to execute unauthorized code remotely to the...

7CVSS6.9AI score0.00221EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/16 5:47 p.m.4 views

CVE-2025-62382

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Prior to 0.16.2, Frigate's export workflow allows an authenticated operator to nominate any filesystem location as the thumbnail source for a video export. Because that path is copied verbatim into the...

7.7CVSS5.8AI score0.00284EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-4293

Malware in sbrugna...

10CVSS9.3AI score0.01621EPSS
Exploits3References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-6173

Malicious code in bioql PyPI...

6.9CVSS6.6AI score0.00526EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-6171

Malicious code in bioql PyPI...

6.9CVSS6.6AI score0.00493EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-21287

Malicious code in bioql PyPI...

7CVSS6.9AI score0.00221EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-25915

Malicious code in bioql PyPI...

7.8CVSS6.5AI score0.00178EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/11 4:32 p.m.16 views

CVE-2025-8758

A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been classified as problematic. This affects an unknown part of the component vsftpd. The manipulation leads to least privilege violation. Attacking locally is a requirement. The complexity of an attack is rather high. The...

7.3CVSS7AI score0.00147EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/11 3:35 p.m.15 views

CVE-2025-8757

A vulnerability was found in TRENDnet TV-IP110WN 1.2.2 and classified as problematic. Affected by this issue is some unknown functionality of the file /server/boa.conf of the component Embedded Boa Web Server. The manipulation leads to least privilege violation. Local access is required to approa...

7.3CVSS7AI score0.00139EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/09 4:2 p.m.32 views

CVE-2025-8758 TRENDnet TEW-822DRE vsftpd least privilege violation

A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been classified as problematic. This affects an unknown part of the component vsftpd. The manipulation leads to least privilege violation. Attacking locally is a requirement. The complexity of an attack is rather high. The...

7.3CVSS0.00147EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/08/09 3:2 p.m.16 views

CVE-2025-8757 TRENDnet TV-IP110WN Embedded Boa Web Server boa.conf least privilege violation

A vulnerability was found in TRENDnet TV-IP110WN 1.2.2 and classified as problematic. Affected by this issue is some unknown functionality of the file /server/boa.conf of the component Embedded Boa Web Server. The manipulation leads to least privilege violation. Local access is required to approa...

7.3CVSS0.00139EPSS
Exploits0References4
Rows per page
Query Builder