Lucene search
K

14 matches found

Vulnrichment
Vulnrichment
added 2026/03/03 1:17 p.m.4 views

CVE-2026-3344 WatchGuard Firebox System Integrity Check Bypass

A vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS filesystem integrity check and maintain limited persistence via a maliciously-crafted firmware update package.This issue affects Fireware OS 12.0 up to and including 12.11.7, 12.5.9 up to and including...

6.9CVSS5.9AI score0.00258EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.5 views

PT-2026-22734

A vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS filesystem integrity check and maintain limited persistence via a maliciously-crafted firmware update package.This issue affects Fireware OS 12.0 up to and including 12.11.7, 12.5.9 up to and including...

6.9CVSS5.9AI score0.00258EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/19 12:0 a.m.7 views

PT-2025-47463

Name of the Vulnerable Software and Affected Versions Sound4 FIRST affected versions not specified Description The Sound4 FIRST web-based management interface is susceptible to Remote Code Execution RCE through a maliciously crafted firmware update package. The system’s update process does not...

7.2CVSS7.5AI score0.00404EPSS
Exploits1References9
Cvelist
Cvelist
added 2025/11/18 12:0 a.m.7 views

CVE-2025-63215

The Sound4 IMPACT web-based management interface is vulnerable to Remote Code Execution RCE via a malicious firmware update package. The update mechanism fails to validate the integrity of manual.sh, allowing an attacker to inject arbitrary commands by modifying this script and repackaging the...

0.00404EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/11/18 12:0 a.m.5 views

PT-2025-47408

Name of the Vulnerable Software and Affected Versions Sound4 IMPACT affected versions not specified Description The Sound4 IMPACT web-based management interface contains a flaw that allows for Remote Code Execution RCE through a specially crafted firmware update package. The system does not...

7.3AI score0.00404EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-20826

Malware in sbrugna...

9.3CVSS7.7AI score0.01204EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-7613

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00406EPSS
Exploits0References1
Prion
Prion
added 2022/12/26 6:15 a.m.20 views

Code injection

fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows an Unauthenticated Remote attacker to send a malicious firmware update via BLE and brick the device...

5CVSS7.6AI score0.00891EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/12/26 12:0 a.m.76 views

CVE-2021-35951

The CVE-2021-35951 issue affects fastrack Reflex 2.0 W307S_REFLEX_v90.89 Activity Tracker. A remote, unauthenticated attacker can send a malicious firmware update over Bluetooth Low Energy (BLE), potentially brick the device. The connected sources describe the vulnerability but do not provide a c...

7.5CVSS7.5AI score0.00891EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/12/26 12:0 a.m.14 views

CVE-2021-35951

fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows an Unauthenticated Remote attacker to send a malicious firmware update via BLE and brick the device...

7AI score0.00891EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/09/13 2:54 p.m.8 views

CVE-2022-36385 Contec Health CMS8000

A threat actor with momentary access to the device can plug in a USB drive and perform a malicious firmware update, resulting in permanent changes to device functionality. No authentication or controls are in place to prevent a threat actor from maliciously modifying firmware and performing a...

6.8CVSS6.7AI score0.00359EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/29 12:0 a.m.2 views

NETGEAR Man-in-the-Middle Attack Vulnerability

The NETGEAR R7000 is a wireless router from NETGEAR. A security vulnerability exists in the NETGEAR R7000 versions 1.0.9.61.2.19 through 1.0.11.10010.2.10, which stems from a lack of SSL certificate validation. An attacker can exploit this vulnerability by performing a man-in-the-middle attack to...

5.9CVSS6.8AI score0.00498EPSS
Exploits1
Exploit DB
Exploit DB
added 2019/07/10 12:0 a.m.66 views

Siemens TIA Portal - Remote Command Execution

Exploit Title: Siemens TIA Portal unauthenticated remote command execution Date: 06/11/2019 Exploit Author: Joseph Bingham CVE : CVE-2019-10915 Vendor Homepage: www.siemens.com Software Link: https://new.siemens.com/global/en/products/automation/industry-software/automation-software/tia-portal.ht...

7.8CVSS7AI score0.00897EPSS
Exploits1
myhack58
myhack58
added 2017/07/26 12:0 a.m.35 views

The Segway miniPRO balance of the car vulnerability research-exploit warning-the black bar safety net

Segway miniPRO Electric balance car presence of a critical security vulnerability, a malicious attacker could exploit the vulnerability may completely control the balance of the car. IOActive latest study found that Segway miniPRO Electric balance of the car in the presence of a critical security...

0.7AI score
Exploits0
Rows per page
Query Builder