CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Kaleris NAVIS N4 ULC Ultra Light Client contains an unsafe Java deserialization vulnerability. An unauthenticated attacker can make specially crafted requests to execute arbitrary code on the server...

9.3CVSS8.4AI score0.00893EPSS

Exploits0References1

RedhatCVE•added 2025/06/26 7:23 p.m.•4 views

CVE-2025-5087

Kaleris NAVIS N4 ULC Ultra Light Client communicates insecurely using zlib-compressed data over HTTP. An attacker capable of observing network traffic between Ultra Light Clients and N4 servers can extract sensitive information, including plaintext credentials...

6CVSS7.2AI score0.00158EPSS

Exploits0References1

NVD•added 2025/06/24 7:15 p.m.•5 views

CVE-2025-2566

9.3CVSS0.00893EPSS

Exploits0References1

NVD•added 2025/06/24 7:15 p.m.•2 views

CVE-2025-5087

6CVSS0.00158EPSS

Exploits0References1

CVE•added 2025/06/24 6:30 p.m.•16 views

CVE-2025-5087

CVE-2025-5087 affects Kaleris NAVIS N4 ULC (Ultra Light Client). The connected documents describe an unsafe Java deserialization vulnerability and insecure transmission of zlib-compressed data over HTTP, enabling an attacker who can observe traffic between Ultra Light Clients and N4 servers to ex...

6CVSS7.1AI score0.00158EPSS

Exploits0References1

Cvelist•added 2025/06/24 6:30 p.m.•5 views

CVE-2025-5087 Cleartext Transmission of Sensitive Information in Kaleris Navis N4

6CVSS0.00158EPSS

Exploits0References1

Vulnrichment•added 2025/06/24 6:30 p.m.•6 views

CVE-2025-5087 Cleartext Transmission of Sensitive Information in Kaleris Navis N4

6CVSS7.1AI score0.00158EPSS

Exploits0References1

Cvelist•added 2025/06/24 6:27 p.m.•7 views

CVE-2025-2566 Deserialization of Untrusted Data in Kaleris Navis N4

9.3CVSS0.00893EPSS

Exploits0References1

Vulnrichment•added 2025/06/24 6:27 p.m.•4 views

CVE-2025-2566 Deserialization of Untrusted Data in Kaleris Navis N4

9.3CVSS8.3AI score0.00893EPSS

Exploits0References1

CVE•added 2025/06/24 6:27 p.m.•24 views

CVE-2025-2566

CVE-2025-2566 affects Kaleris NAVIS N4 ULC (Ultra Light Client). The vulnerability is an unsafe Java deserialization flaw that allows an unauthenticated attacker to send specially crafted requests to execute arbitrary code on the server (remote code execution). Per available documents, the issue ...

9.3CVSS8.3AI score0.00893EPSS

Exploits0References1

CISA•added 2025/06/24 12:0 p.m.•2 views

CISA Releases Eight Industrial Control Systems Advisories

CISA released eight Industrial Control Systems ICS advisories on June 24, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-175-01 Kaleris Navis N4 Terminal Operating System ICSA-25-175-02 Delta Electronics...

7AI score

Exploits0References8

CNNVD•added 2025/06/24 12:0 a.m.•1 views

Kaleris NAVIS N4 安全漏洞

Kaleris NAVIS N4 is a container terminal operating system from Kaleris Corporation, USA. A security vulnerability exists in Kaleris NAVIS N4 versions prior to 4.0 that stems from the use of zlib to compress data for transmission over HTTP, which could lead to information disclosure...

6CVSS6.2AI score0.00158EPSS

Exploits0References1

Positive Technologies•added 2025/06/24 12:0 a.m.•4 views

PT-2025-26769 · Aleris · Kaleris Navis N4 Ulc

Name of the Vulnerable Software and Affected Versions: Kaleris NAVIS N4 ULC affected versions not specified Description: The issue concerns an unsafe Java deserialization vulnerability. An unauthenticated attacker can make specially crafted requests to execute arbitrary code on the server...

9.3CVSS7.3AI score0.00893EPSS

Exploits0References7

Positive Technologies•added 2025/06/24 12:0 a.m.•1 views

PT-2025-26770 · Aleris +1 · Kaleris Navis N4 Ulc +1

Name of the Vulnerable Software and Affected Versions: Kaleris NAVIS N4 ULC Ultra Light Client affected versions not specified Description: The issue concerns insecure communication using zlib-compressed data over HTTP. An attacker capable of observing network traffic between Ultra Light Clients...

6CVSS6.1AI score0.00158EPSS

Exploits0References5

CNNVD•added 2025/06/24 12:0 a.m.•3 views

Kaleris NAVIS N4 代码问题漏洞

Kaleris NAVIS N4 is a container terminal operating system from Kaleris Corporation, USA. A code issue vulnerability exists in Kaleris NAVIS N4 versions prior to 4.0, which stems from a flaw in Java deserialization that could lead to remote execution of arbitrary code...

9.3CVSS7.2AI score0.00893EPSS

Exploits0References1

Openbugbounty•added 2022/12/05 1:40 p.m.•10 views

navis-livedata.com Cross Site Scripting vulnerability OBB-3087339

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by