Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

29 matches found

NVD
NVDadded 2026/03/26 5:16 p.m.4 views

CVE-2026-27816

EVerest is an EV charging software stack. Prior to versions to 2026.02.0, ISO15118chargerImpl::handleupdateenergytransfermodes copies a variable-length list into a fixed-size array of length 6 without bounds checking. With schema validation disabled by default, oversized MQTT Cmd payloads can...

9.1CVSS0.00197EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-32708

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00551EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2021-9138

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.00712EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.8 views

EUVD-2021-9139

Malicious code in bioql PyPI...

8.3CVSS8.1AI score0.00937EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2021-9142

Malicious code in bioql PyPI...

5.9CVSS4.9AI score0.00685EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 7:12 p.m.4 views

CVE-2021-21971

An out-of-bounds write vulnerability exists in the URLdecode functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to an out-of-bounds write. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

5.9CVSS6.8AI score0.00685EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:20 p.m.6 views

CVE-2021-21968

A file write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to arbitrary file overwrite. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

8.3CVSS6.8AI score0.00937EPSS
Exploits1References1
OSV
OSVadded 2023/05/09 1:15 p.m.0 views

CVE-2023-29105

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1, SIMATIC Cloud Connect 7 CC716 All versions V2.1. The affected device is vulnerable to a denial of service while parsing a random non-JSON MQTT payload. This could allow an attacker who can...

7.5CVSS7AI score0.00551EPSS
Exploits0References1
Prion
Prionadded 2023/05/09 1:15 p.m.16 views

Design/Logic Flaw

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1, SIMATIC Cloud Connect 7 CC716 All versions V2.1. The affected device is vulnerable to a denial of service while parsing a random non-JSON MQTT payload. This could allow an attacker who can...

5CVSS7.1AI score0.00551EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichmentadded 2023/05/09 11:51 a.m.10 views

CVE-2023-29105

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1, SIMATIC Cloud Connect 7 CC716 All versions V2.1. The affected device is vulnerable to a denial of service while parsing a random non-JSON MQTT payload. This could allow an attacker who can...

5.9CVSS7.2AI score0.00551EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/05/09 11:51 a.m.14 views

CVE-2023-29105

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1, SIMATIC Cloud Connect 7 CC716 All versions V2.1. The affected device is vulnerable to a denial of service while parsing a random non-JSON MQTT payload. This could allow an attacker who can...

5.9CVSS7.4AI score0.00551EPSS
Exploits0References1
NVD
NVDadded 2022/04/14 8:15 p.m.8 views

CVE-2021-21967

An out-of-bounds write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to denial of service. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

7.1CVSS0.00712EPSS
Exploits1References1
Prion
Prionadded 2022/04/14 8:15 p.m.15 views

Cross site scripting

An out-of-bounds write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to denial of service. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

7.1CVSS5.6AI score0.00712EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2022/04/14 7:56 p.m.12 views

CVE-2021-21967

An out-of-bounds write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to denial of service. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

6.5CVSS5.8AI score0.00712EPSS
Exploits1References1
CNVD
CNVDadded 2022/02/11 12:0 a.m.17 views

Sealevel Systems SeaConnect 370w out-of-bounds write vulnerability (CNVD-2022-10696)

Sealevel Systems SeaConnect 370W is an Industrial Internet of Things Iiot edge device from Sealevel Systems, Inc. used to remotely monitor and control the status of actual I/O processes. The Sealevel Systems SeaConnect 370w is vulnerable to an out-of-bounds write vulnerability that could be...

8.1CVSS3.9AI score0.00877EPSS
Exploits1References1
OSV
OSVadded 2022/02/04 11:15 p.m.2 views

CVE-2021-21971

An out-of-bounds write vulnerability exists in the URLdecode functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to an out-of-bounds write. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

5.9CVSS5.8AI score0.00685EPSS
Exploits1References2
NVD
NVDadded 2022/02/04 11:15 p.m.8 views

CVE-2021-21968

A file write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to arbitrary file overwrite. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

8.3CVSS0.00937EPSS
Exploits1References1
Prion
Prionadded 2022/02/04 11:15 p.m.14 views

Arbitrary file deletion

A file write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to arbitrary file overwrite. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

6.8CVSS8.2AI score0.00937EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2022/02/04 11:15 p.m.15 views

Out-of-bounds

An out-of-bounds write vulnerability exists in the URLdecode functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to an out-of-bounds write. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

4.3CVSS5.7AI score0.00685EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2022/02/04 10:29 p.m.52 views

CVE-2021-21968

CVE-2021-21968 affects Sealevel Systems SeaConnect 370W v1.3.34. The OTA update task allows a specially crafted MQTT payload to overwrite arbitrary files due to improper input validation in the OTA download logic (notably the dest field can create/open any file). This can enable a MITM attacker t...

8.3CVSS8.1AI score0.00937EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder