Lucene search
K

19630 matches found

CVE
CVE
added 2026/01/27 5:57 p.m.13 views

CVE-2026-23592

CVE-2026-23592 affects HPE Aruba Networking Fabric Composer. Insecure file operations in the backup functionality could allow authenticated attackers to achieve remote code execution and run arbitrary commands on the underlying OS. No remediation details are provided in the supplied documents.

7.2CVSS6.5AI score0.00777EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/27 9:23 a.m.20 views

CVE-2026-1419

A weakness has been identified in D-Link DCS700l 1.03.09. Affected is an unknown function of the file /setDayNightMode of the component Web Form Handler. Executing a manipulation of the argument LightSensorControl can lead to command injection. The attack may be launched remotely. The exploit has...

7.2CVSS5.6AI score0.15138EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/27 3:20 a.m.7 views

CVE-2026-1413

A vulnerability was found in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This affects the function portValidate of the file /fort/ipandport/portvalidate of the component HTTP POST Request Handler. Performing a manipulation of the argument port results in command...

9.8CVSS6.3AI score0.02801EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/27 3:19 a.m.8 views

CVE-2026-1414

A vulnerability was determined in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This impacts the function getInformation of the file /equipment/getInformation of the component HTTP POST Request Handler. Executing a manipulation of the argument fortEquipmentIp can lead...

9.8CVSS6.4AI score0.04451EPSS
Exploits1References1
NVD
NVD
added 2026/01/27 12:15 a.m.10 views

CVE-2026-1448

A vulnerability was detected in D-Link DIR-615 up to 4.10. This impacts an unknown function of the file /wizpolicy3machine.php of the component Web Management Interface. Performing a manipulation of the argument ipaddr results in os command injection. It is possible to initiate the attack remotel...

8.6CVSS0.05258EPSS
Exploits1References5
OSV
OSV
added 2026/01/27 12:15 a.m.6 views

CVE-2026-1448

A vulnerability was detected in D-Link DIR-615 up to 4.10. This impacts an unknown function of the file /wizpolicy3machine.php of the component Web Management Interface. Performing a manipulation of the argument ipaddr results in os command injection. It is possible to initiate the attack remotel...

7.2CVSS5.6AI score0.05258EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.8 views

PT-2026-6969

Name of the Vulnerable Software and Affected Versions D-Link DIR-823X version 250416 Description A flaw exists in the D-Link DIR-823X firmware. This issue affects the sub 420688 function within the /goform/set qos file, potentially allowing for operating system command injection. The attack can b...

9CVSS5.5AI score0.05687EPSS
Exploits1References12
Cvelist
Cvelist
added 2026/01/26 11:32 p.m.32 views

CVE-2026-1448 D-Link DIR-615 Web Management wiz_policy_3_machine.php os command injection

A vulnerability was detected in D-Link DIR-615 up to 4.10. This impacts an unknown function of the file /wizpolicy3machine.php of the component Web Management Interface. Performing a manipulation of the argument ipaddr results in os command injection. It is possible to initiate the attack remotel...

8.6CVSS0.05258EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/01/26 11:32 p.m.5 views

CVE-2026-1448 D-Link DIR-615 Web Management wiz_policy_3_machine.php os command injection

A vulnerability was detected in D-Link DIR-615 up to 4.10. This impacts an unknown function of the file /wizpolicy3machine.php of the component Web Management Interface. Performing a manipulation of the argument ipaddr results in os command injection. It is possible to initiate the attack remotel...

8.6CVSS5.6AI score0.05258EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/01/26 11:32 p.m.4 views

CVE-2026-1448

A vulnerability was detected in D-Link DIR-615 up to 4.10. This impacts an unknown function of the file /wizpolicy3machine.php of the component Web Management Interface. Performing a manipulation of the argument ipaddr results in os command injection. It is possible to initiate the attack remotel...

8.6CVSS5.6AI score0.05258EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2026/01/26 11:32 p.m.27 views

CVE-2026-1448

The CVE-2026-1448 entry concerns D-Link DIR-615 Web Management Interface up to version 4.10. The vulnerability lies in the /wiz_policy_3_machine.php file where manipulating the ipaddr argument enables operating system command injection. This allows remote initiation of an exploit, and multiple so...

8.6CVSS5.6AI score0.05258EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2026/01/26 5:16 a.m.4 views

CVE-2026-1419

A weakness has been identified in D-Link DCS700l 1.03.09. Affected is an unknown function of the file /setDayNightMode of the component Web Form Handler. Executing a manipulation of the argument LightSensorControl can lead to command injection. The attack may be launched remotely. The exploit has...

7.2CVSS5.6AI score0.15138EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/01/26 4:32 a.m.4 views

CVE-2026-1419

A weakness has been identified in D-Link DCS700l 1.03.09. Affected is an unknown function of the file /setDayNightMode of the component Web Form Handler. Executing a manipulation of the argument LightSensorControl can lead to command injection. The attack may be launched remotely. The exploit has...

5.8CVSS5.6AI score0.15138EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2026/01/26 2:15 a.m.5 views

CVE-2026-1413

A vulnerability was found in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This affects the function portValidate of the file /fort/ipandport/portvalidate of the component HTTP POST Request Handler. Performing a manipulation of the argument port results in command...

9.8CVSS0.02801EPSS
Exploits0References4
OSV
OSV
added 2026/01/26 2:15 a.m.3 views

CVE-2026-1413

A vulnerability was found in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This affects the function portValidate of the file /fort/ipandport/portvalidate of the component HTTP POST Request Handler. Performing a manipulation of the argument port results in command...

9.8CVSS5.7AI score0.02801EPSS
Exploits0References4
CVE
CVE
added 2026/01/26 2:2 a.m.13 views

CVE-2026-1414

CVE-2026-1414 affects Sangfor Operation and Maintenance Security Management System (up to version 3.0.12). The vulnerability resides in the HTTP POST Request Handler for /equipment/get_Information, where tampering with the fortEquipmentIp argument can trigger a command injection. The issue can be...

9.8CVSS6.5AI score0.04451EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/26 2:2 a.m.5 views

CVE-2026-1414

A vulnerability was determined in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This impacts the function getInformation of the file /equipment/getInformation of the component HTTP POST Request Handler. Executing a manipulation of the argument fortEquipmentIp can lead...

6.5CVSS5.6AI score0.04451EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/26 2:2 a.m.5 views

CVE-2026-1414 Sangfor Operation and Maintenance Security Management System HTTP POST Request get_Information getInformation command injection

A vulnerability was determined in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This impacts the function getInformation of the file /equipment/getInformation of the component HTTP POST Request Handler. Executing a manipulation of the argument fortEquipmentIp can lead...

6.5CVSS5.6AI score0.04451EPSS
Exploits1References4
EUVD
EUVD
added 2026/01/26 1:32 a.m.6 views

EUVD-2026-4687

A vulnerability was found in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This affects the function portValidate of the file /fort/ipandport/portvalidate of the component HTTP POST Request Handler. Performing a manipulation of the argument port results in command...

6.5CVSS5.6AI score0.02801EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/01/26 1:32 a.m.5 views

CVE-2026-1413 Sangfor Operation and Maintenance Security Management System HTTP POST Request port_validate portValidate command injection

A vulnerability was found in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This affects the function portValidate of the file /fort/ipandport/portvalidate of the component HTTP POST Request Handler. Performing a manipulation of the argument port results in command...

6.5CVSS5.6AI score0.02801EPSS
Exploits0References4
Rows per page
Query Builder