Lucene search
+L

606 matches found

RedhatCVE
RedhatCVE
added 2026/01/28 3:18 p.m.10 views

CVE-2025-12387

A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigger a denial of service DoS by sending a specially crafted HTTP POST request containing non-existing language parameter. This renders the server unable to serve correct lang.js file, which causes...

6.9CVSS6AI score0.00659EPSS
Exploits0References1
NVD
NVD
added 2026/01/27 12:15 p.m.6 views

CVE-2025-12387

A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigger a denial of service DoS by sending a specially crafted HTTP POST request containing non-existing language parameter. This renders the server unable to serve correct lang.js file, which causes...

6.9CVSS0.00659EPSS
Exploits0References3
NVD
NVD
added 2026/01/27 12:15 p.m.8 views

CVE-2025-12386

Pix-Link LV-WR21Q does not enforce any form of authentication for endpoint /goform/getHomePageInfo. Remote unauthenticated attacker is able to use this endpoint to e.g: retrieve cleartext password to the access point. The vendor was notified early about this vulnerability, but didn't respond with...

6.9CVSS0.00653EPSS
Exploits0References3
CVE
CVE
added 2026/01/27 11:57 a.m.17 views

CVE-2025-12387

CVE-2025-12387 affects the Pix-Link LV-WR21Q router. The vulnerability resides in the router’s language module and can be triggered by sending a specially crafted HTTP POST with a non-existing language parameter, causing the admin panel to fail to serve lang.js and leading to a DoS of the adminis...

6.9CVSS6AI score0.00659EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/27 11:57 a.m.8 views

CVE-2025-12387 Denial of Service in Pix-Link LV-WR21Q

A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigger a denial of service DoS by sending a specially crafted HTTP POST request containing non-existing language parameter. This renders the server unable to serve correct lang.js file, which causes...

6.9CVSS6AI score0.00659EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/27 11:57 a.m.37 views

CVE-2025-12387 Denial of Service in Pix-Link LV-WR21Q

A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigger a denial of service DoS by sending a specially crafted HTTP POST request containing non-existing language parameter. This renders the server unable to serve correct lang.js file, which causes...

6.9CVSS0.00659EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/27 11:57 a.m.4 views

CVE-2025-12387

A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigger a denial of service DoS by sending a specially crafted HTTP POST request containing non-existing language parameter. This renders the server unable to serve correct lang.js file, which causes...

6.9CVSS6AI score0.00659EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/27 11:57 a.m.7 views

EUVD-2025-206411

A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigger a denial of service DoS by sending a specially crafted HTTP POST request containing non-existing language parameter. This renders the server unable to serve correct lang.js file, which causes...

6.9CVSS6AI score0.00659EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/27 11:57 a.m.5 views

CVE-2025-12386

Pix-Link LV-WR21Q does not enforce any form of authentication for endpoint /goform/getHomePageInfo. Remote unauthenticated attacker is able to use this endpoint to e.g: retrieve cleartext password to the access point. The vendor was notified early about this vulnerability, but didn't respond with...

6.9CVSS5.9AI score0.00653EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/27 11:57 a.m.6 views

CVE-2025-12386 Missing Authentication for Critical Endpoint in Pix-Link LV-WR21Q

Pix-Link LV-WR21Q does not enforce any form of authentication for endpoint /goform/getHomePageInfo. Remote unauthenticated attacker is able to use this endpoint to e.g: retrieve cleartext password to the access point. The vendor was notified early about this vulnerability, but didn't respond with...

6.9CVSS5.9AI score0.00653EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/27 11:57 a.m.43 views

CVE-2025-12386 Missing Authentication for Critical Endpoint in Pix-Link LV-WR21Q

Pix-Link LV-WR21Q does not enforce any form of authentication for endpoint /goform/getHomePageInfo. Remote unauthenticated attacker is able to use this endpoint to e.g: retrieve cleartext password to the access point. The vendor was notified early about this vulnerability, but didn't respond with...

6.9CVSS0.00653EPSS
Exploits0References3
CVE
CVE
added 2026/01/27 11:57 a.m.28 views

CVE-2025-12386

Pix-Link LV-WR21Q is vulnerable to an unauthenticated access issue at endpoint /goform/getHomePageInfo. The vulnerability allows remote attackers with network access to retrieve sensitive data (cleartext passwords) due to lack of authentication. Only version V108_108 has been tested and confirmed...

6.9CVSS5.9AI score0.00653EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/27 11:57 a.m.6 views

EUVD-2025-206410

Pix-Link LV-WR21Q does not enforce any form of authentication for endpoint /goform/getHomePageInfo. Remote unauthenticated attacker is able to use this endpoint to e.g: retrieve cleartext password to the access point. The vendor was notified early about this vulnerability, but didn't respond with...

6.9CVSS5.9AI score0.00653EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.1 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Assign normalizedpixclk when color depth = 14 WHY & HOW A warning message appears: “WARNING: CPU: 4 PID: 459 at …/dcresource.c:3397 calculatephypixclks+0xef/0x100 amdgpu”. This occurs because the condition...

5.5CVSS6.4AI score0.002EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.14 views

PT-2026-4912

Pix-Link LV-WR21Q does not enforce any form of authentication for endpoint /goform/getHomePageInfo. Remote unauthenticated attacker is able to use this endpoint to e.g: retrieve cleartext password to the access point. The vendor was notified early about this vulnerability, but didn't respond with...

6.9CVSS5.9AI score0.00653EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.11 views

Pix-Link LV-WR21Q code issue and vulnerability

The Pix-Link LV-WR21Q is a wireless router produced by the Chinese company Pix-Link. The Pix-Link LV-WR21Q has a code vulnerability, which stems from improper handling of the language module. This vulnerability could allow remote attackers to trigger a denial-of-service attack through a specially...

6.9CVSS5.9AI score0.00659EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.11 views

PT-2026-4913

A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigger a denial of service DoS by sending a specially crafted HTTP POST request containing non-existing language parameter. This renders the server unable to serve correct lang.js file, which causes...

6.9CVSS6AI score0.00659EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/09 11:39 a.m.11 views

CVE-2003-1003

Cisco PIX firewall 5.x.x, and 6.3.1 and earlier, allows remote attackers to cause a denial of service crash and reload via an SNMPv3 message when snmp-server is set...

7.8CVSS7AI score0.01373EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:37 a.m.16 views

CVE-2003-1004

Cisco PIX firewall 6.2.x through 6.2.3, when configured as a VPN Client, allows remote attackers to cause a denial of service dropped IPSec tunnel connection via an IKE Phase I negotiation request to the outside interface of the firewall...

5CVSS7AI score0.01273EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:41 a.m.18 views

CVE-1999-0157

Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service...

5CVSS6.9AI score0.01103EPSS
Exploits0References1
Rows per page
Query Builder