9 matches found
EUVD-2025-205450
An issue in Yealink T21PE2 Phone 52.84.0.15 allows a remote normal privileged attacker to execute arbitrary code via a crafted request the ping function of the diagnostic component...
CVE-2025-60268
An arbitrary file upload vulnerability exists in JeeWMS 20250820, which is caused by the lack of file checking in the saveFiles function in /jeewms/cgUploadController.do. An attacker with normal privileges was able to upload a malicious file that would lead to remote code execution...
EUVD-2024-49410
Malicious code in bioql PyPI...
CVE-2023-25780
It is identified a vulnerability of insufficient authentication in an important specific function of Status PowerBPM. A LAN attacker with normal user privilege can exploit this vulnerability to modify substitute agent to arbitrary users, resulting in serious consequence...
Furbo 360° Dog Camera 命令注入漏洞
Furbo 360° Dog Camera is a camera for remote viewing of pet dogs from Furbo. The Furbo 360° Dog Camera suffers from a command injection vulnerability that stems from insufficient filtering of special parameters in the device's log management function, which can be exploited by an unauthenticated,...
CVE-2020-9093
There is a use after free vulnerability in Taurus-AL00A versions 10.0.0.1C00E1R1P1. A module does not deal with specific message properly, which makes a function refer to memory after it has been freed. Attackers can exploit this vulnerability by running a crafted application with common privileg...
Huawei Taurus-AL00A Resource Management Error Vulnerability
Huawei Taurus-AL00A is a smartphone from Huawei of China.Huawei Taurus-AL00A is vulnerable to a resource management error. A module fails to properly process a message, and a function references freed memory. An attacker could use this vulnerability to trick a user into running a carefully...
Huawei Taurus-AL00A 资源管理错误漏洞
Huawei Taurus-AL00A is a smartphone from Huawei of China.Huawei Taurus-AL00A is vulnerable to a resource management error. A module fails to properly process a message, and a function references freed memory. An attacker could use this vulnerability to trick a user into running a carefully...
Huawei FusionCompute 权限许可和访问控制问题漏洞
FusionCompute is Huawei's self-developed computing virtualization software. An elevation of privilege vulnerability exists in FusionCompute 6.3.0, 6.3.1, 6.5.0, 6.5.1, 8.0.0. The vulnerability stems from improper privilege management. An attacker with normal privileges could exploit the...