Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2576 matches found

Positive Technologies
Positive Technologiesadded 2022/01/31 12:0 a.m.3 views

PT-2022-8945 · Beetel · Beetel 777Vr1-Di

Name of the Vulnerable Software and Affected Versions: Beetel 777VR1-DI Hardware Version REV.1.01 Firmware Version V01.00.09 55 Description: A cross-site scripting XSS issue was found in the Ping diagnostic option, which could allow for malicious script execution. Recommendations: For Beetel...

5.4CVSS5.5AI score0.00206EPSS
Exploits0References6
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.40 views

Mageia: Security Advisory (MGASA-2015-0221)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.3AI score0.0304EPSS
Exploits7References5
NVD
NVDadded 2021/12/28 1:15 p.m.8 views

CVE-2018-17875

A remote code execution issue in the ping command on Poly Trio 8800 5.7.1.4145 devices allows remote authenticated users to execute commands via unspecified vectors...

8.8CVSS0.0687EPSS
Exploits1References2
OSV
OSVadded 2021/12/28 1:15 p.m.1 views

CVE-2018-17875

A remote code execution issue in the ping command on Poly Trio 8800 5.7.1.4145 devices allows remote authenticated users to execute commands via unspecified vectors...

8.8CVSS6.4AI score0.0687EPSS
Exploits1References2
Prion
Prionadded 2021/12/28 1:15 p.m.14 views

Remote code execution

A remote code execution issue in the ping command on Poly Trio 8800 5.7.1.4145 devices allows remote authenticated users to execute commands via unspecified vectors...

6.5CVSS8.7AI score0.0687EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2021/12/28 12:28 p.m.49 views

CVE-2018-17875

Poly Trio 8800 devices running 5.7.1.4145 are affected by CVE-2018-17875, a remote code execution vulnerability in the ping command that allows remote authenticated users to execute commands via unspecified vectors. Impact is high for unauthenticated? No, authenticated users per description; CVSS...

8.8CVSS8.8AI score0.0687EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2021/12/28 12:28 p.m.14 views

CVE-2018-17875

A remote code execution issue in the ping command on Poly Trio 8800 5.7.1.4145 devices allows remote authenticated users to execute commands via unspecified vectors...

8.9AI score0.0687EPSS
Exploits1References2
OSV
OSVadded 2021/12/28 9:39 a.m.1 views

OPENSUSE-SU-2021:4192-1 Security update for permissions

This update for permissions fixes the following issues: - Update to version 20181225: drop ping capabilities in favor of ICMPPROTO sockets bsc1174504...

7.2AI score
Exploits0References2
OPENSUSE Linux
OPENSUSE Linuxadded 2021/12/28 12:0 a.m.18 views

Security update for permissions (moderate)

openSUSE Security Update: Security update for permissions Announcement ID: openSUSE-SU-2021:4192-1 Rating: moderate References: 1174504 Affected Products: openSUSE Leap 15.3 An update that contains security fixes can now be installed. Description: This update for permissions fixes the following...

7.4AI score
Exploits0
OSV
OSVadded 2021/12/23 8:15 p.m.1 views

CVE-2021-44453

mySCADA myPRO: Versions 8.20.0 and prior has a vulnerable debug interface which includes a ping utility, which may allow an attacker to inject arbitrary operating system commands...

9.8CVSS7.4AI score0.00304EPSS
Exploits0References1
OSV
OSVadded 2021/12/22 7:15 p.m.1 views

CVE-2021-21883

An OS command injection vulnerability exists in the Web Manager Diagnostics: Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

9.9CVSS7.4AI score
Exploits0References1
OSV
OSVadded 2021/12/22 7:15 p.m.1 views

CVE-2021-21889

A stack-based buffer overflow vulnerability exists in the Web Manager Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4 in QEMU. A specially crafted HTTP request can lead to remote code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

9.9CVSS7.9AI score0.04489EPSS
Exploits1References1
Prion
Prionadded 2021/12/22 7:15 p.m.22 views

Command injection

An OS command injection vulnerability exists in the Web Manager Diagnostics: Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

9CVSS9.6AI score0.0605EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2021/12/22 7:15 p.m.16 views

Stack overflow

A stack-based buffer overflow vulnerability exists in the Web Manager Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4 in QEMU. A specially crafted HTTP request can lead to remote code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

6.5CVSS9.7AI score0.04489EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2021/12/22 6:6 p.m.15 views

CVE-2021-21883

An OS command injection vulnerability exists in the Web Manager Diagnostics: Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

9.9CVSS9.8AI score0.0605EPSS
Exploits1References1
CVE
CVEadded 2021/12/22 6:6 p.m.50 views

CVE-2021-21883

Lantronix PremierWave 2050 Web Manager Diagnostics: Ping is affected by an OS command injection (CVE-2021-21883). A specially crafted authenticated HTTP request can trigger execution of arbitrary OS commands with root privileges via the unsanitized host parameter used to build the nd ic6 command,...

9.9CVSS9.6AI score0.0605EPSS
Exploits1References1Affected Software1
CNVD
CNVDadded 2021/12/17 12:0 a.m.34 views

Fiberhome FiberHome ONU GPON OS Command Injection Vulnerability

Fiberhome FiberHome ONU GPON is a router from Fiberhome, China.FiberHome ONU GPON AN5506-04-F RP2617 is vulnerable to an operating system command injection vulnerability, which originates from FiberHome ONU GPON AN5506-04-F RP2617 is affected by an operating system command injection vulnerability...

9CVSS2.5AI score0.00097EPSS
Exploits0
NVD
NVDadded 2021/12/16 5:15 p.m.11 views

CVE-2021-42912

FiberHome ONU GPON AN5506-04-F RP2617 is affected by an OS command injection vulnerability. This vulnerability allows the attacker, once logged in, to send commands to the operating system as the root user via the ping diagnostic tool, bypassing the IP address field, and concatenating OS commands...

9CVSS0.00097EPSS
Exploits0References3
OSV
OSVadded 2021/12/16 5:15 p.m.1 views

CVE-2021-42912

FiberHome ONU GPON AN5506-04-F RP2617 is affected by an OS command injection vulnerability. This vulnerability allows the attacker, once logged in, to send commands to the operating system as the root user via the ping diagnostic tool, bypassing the IP address field, and concatenating OS commands...

8.8CVSS5.8AI score0.00097EPSS
Exploits0References3
Prion
Prionadded 2021/12/16 5:15 p.m.24 views

Command injection

FiberHome ONU GPON AN5506-04-F RP2617 is affected by an OS command injection vulnerability. This vulnerability allows the attacker, once logged in, to send commands to the operating system as the root user via the ping diagnostic tool, bypassing the IP address field, and concatenating OS commands...

9CVSS8.9AI score0.00097EPSS
Exploits0References3Affected Software6
Rows per page
Query Builder