7 matches found
EUVD-2025-5852
Malicious code in bioql PyPI...
CVE-2025-27579
In Bitaxe ESP-Miner before 2.5.0 with AxeOS, one can use an /api/system CSRF attack to update the payout address aka stratumUser for a Bitaxe Bitcoin miner, or change the frequency and voltage settings...
CVE-2025-27579
In Bitaxe ESP-Miner before 2.5.0 with AxeOS, one can use an /api/system CSRF attack to update the payout address aka stratumUser for a Bitaxe Bitcoin miner, or change the frequency and voltage settings...
CVE-2025-27579
In Bitaxe ESP-Miner before 2.5.0 with AxeOS, one can use an /api/system CSRF attack to update the payout address aka stratumUser for a Bitaxe Bitcoin miner, or change the frequency and voltage settings...
CVE-2025-27579
In Bitaxe ESP-Miner before 2.5.0 with AxeOS, one can use an /api/system CSRF attack to update the payout address aka stratumUser for a Bitaxe Bitcoin miner, or change the frequency and voltage settings...
CVE-2025-27579
In Bitaxe ESP-Miner before 2.5.0 with AxeOS, one can use an /api/system CSRF attack to update the payout address aka stratumUser for a Bitaxe Bitcoin miner, or change the frequency and voltage settings...
CVE-2025-27579
CVE-2025-27579 affects Bitaxe ESP-Miner with AxeOS prior to firmware 2.5.0. The issue is a CSRF vulnerability in the /api/system endpoint that allows an attacker to update the payout address (stratumUser) and modify frequency and voltage settings. The impact is limited to the documented changes t...