Lucene search
K

97 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:55 p.m.10 views

CVE-2022-43624

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.8CVSS7.3AI score0.01085EPSS
Exploits0References1
CVE
CVE
added 2025/04/23 4:44 p.m.57 views

CVE-2025-1049

CVE-2025-1049 affects Sonos Era 300 speakers. A heap-based buffer overflow in ID3 data processing allows network-adjacent attackers (no authentication) to execute code in the context of the anacapa user. Root cause: insufficient validation of user-supplied data length before heap copy. Public det...

8.8CVSS9.1AI score0.0035EPSS
Exploits0References1Affected Software2
Zero Day Initiative
Zero Day Initiative
added 2025/04/09 12:0 a.m.6 views

(Pwn2Own) Synology BeeStation BST150-4T SQL Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Synology BeeStation BST150-4T devices. Authentication is required to exploit this vulnerability. The specific flaw exists within the updatesettings command. The issue results from the lack ...

6.4CVSS7.3AI score0.24866EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/04/09 12:0 a.m.8 views

(Pwn2Own) Synology TC500 ONVIF Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Synology TC500 cameras. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the ONVIF protocol. The issue results from the la...

8.8CVSS7.2AI score0.00712EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/04/09 12:0 a.m.7 views

(Pwn2Own) Synology DiskStation DS1823xs+ Replication Service Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Synology DiskStation DS1823xs+ devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of command data in the...

7.5CVSS7.3AI score0.01337EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/04/09 12:0 a.m.7 views

(Pwn2Own) Sonos Era 300 Speaker libsmb2 Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of SMB data. The issue results from the lack of validati...

8.8CVSS7.2AI score0.00498EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2025/03/11 12:0 a.m.13 views

(0Day) (Pwn2Own) Samsung SmartThings Improper Verification of Cryptographic Signature Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Samsung SmartThings. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Hub Local API service, which listens on TCP port 8766 by default. The...

8.8CVSS6.8AI score0.0073EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 3:12 p.m.14 views

CVE-2020-10928

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads. The issue...

8.4CVSS7.1AI score0.00639EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/01/31 12:0 a.m.7 views

(Pwn2Own) Canon imageCLASS MF656Cdw TIF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF656Cdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of TIF files. The issue results from the lack o...

8.8CVSS7.2AI score0.01157EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/30 11:31 p.m.26 views

CVE-2024-23968 ChargePoint Home Flex SrvrToSmSetAutoChnlListMsg Stack-based Buffer Overflow

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of ChargePoint Home Flex charging stations. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SrvrToSmSetAutoChnlListMsg function. The issue...

8.8CVSS0.0047EPSS
Exploits0References1
NVD
NVD
added 2025/01/21 11:15 p.m.12 views

CVE-2023-37036

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Uplink NAS Transport packet missing an expected ENBUES1APID field...

6.5CVSS0.00373EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/01/21 12:0 a.m.9 views

CVE-2023-37033

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Initial UE Message packet missing an expected EUTRANCGI field...

6.5AI score0.00373EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/21 12:0 a.m.11 views

CVE-2023-37038

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Uplink NAS Transport packet missing an expected MMEUES1APID field...

0.00373EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/21 12:0 a.m.10 views

CVE-2023-37031

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP eNB Configuration Transfer packet missing its required Target eNB ID field...

0.00373EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2024/12/10 12:0 a.m.11 views

BlueZ Classic HID Missing Authentication Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of Classic HID connections. The issue results from the lack of...

8.8CVSS7.3AI score0.02033EPSS
Exploits0References2
NVD
NVD
added 2024/11/22 8:15 p.m.15 views

CVE-2024-6249

Wyze Cam v3 TCP Traffic Handling Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Wyze Cam v3 IP cameras. Authentication is not required to exploit this vulnerability. The...

8.8CVSS0.01244EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/09/17 12:0 a.m.14 views

BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of...

8.8CVSS7.1AI score0.02033EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/07/24 12:0 a.m.27 views

CVE-2024-39345

AdTran 834-5 HDC17600021F1 SmartOS 11.1.1.1 devices enable the SSH service by default and have a hidden, undocumented, hard-coded support account whose password is based on the devices MAC address. All of the devices internet interfaces share a similar MAC address that only varies in their final...

0.00534EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/07/04 12:49 a.m.26 views

CVE-2024-38471

Multiple TP-LINK products allow a network-adjacent attacker with an administrative privilege to execute arbitrary OS commands by restoring a crafted backup file. The affected device, with the initial configuration, allows login only from the LAN port or Wi-Fi...

0.00362EPSS
Exploits0References7
Zero Day Initiative
Zero Day Initiative
added 2024/06/21 12:0 a.m.23 views

(Pwn2Own) Alpine Halo9 DecodeUTF7 Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine Halo9 devices. An attacker must first obtain the ability to pair a malicious Bluetooth device with the target system in order to exploit this vulnerability. The specific flaw exists...

8CVSS7.4AI score0.00488EPSS
Exploits0
Rows per page
Query Builder