Lucene search
K

3873 matches found

RedhatCVE
RedhatCVE
added 2025/08/31 12:4 a.m.4 views

CVE-2025-9581

A vulnerability was detected in Comfast CF-N1 2.6.0. This impacts the function multipppoe of the file /usr/bin/webmgnt. Performing manipulation of the argument phyinterface results in command injection. The attack may be initiated remotely. The exploit is now public and may be used...

9.8CVSS7.1AI score0.05309EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/08/31 12:0 a.m.4 views

PT-2025-35426

Name of the Vulnerable Software and Affected Versions: D-Link DI-500WF version 14.04.10A1T Description: A security issue has been identified in D-Link DI-500WF. The vulnerability resides in an unknown function within the /version upgrade.asp file of the jhttpd component. Manipulation of the path...

7.2CVSS4.6AI score0.09746EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2025/08/31 12:0 a.m.5 views

PT-2025-35406

Name of the Vulnerable Software and Affected Versions: D-Link DIR-816L version 206b01 Description: A weakness exists due to the manipulation of the service argument within the soapcgi main function of the /soap.cgi file, leading to OS command injection. Remote exploitation is possible. The exploi...

6.5CVSS6.3AI score0.04797EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2025/08/31 12:0 a.m.7 views

PT-2025-35433

Name of the Vulnerable Software and Affected Versions: D-Link DIR-852 version 1.00CN B09 Description: A security issue has been identified in the SOAP Service component of D-Link DIR-852 version 1.00CN B09. Manipulation of the service argument within the soapcgi main function of the soap.cgi file...

9.8CVSS7.1AI score0.15815EPSS
Exploits1References13
RedhatCVE
RedhatCVE
added 2025/08/30 6:21 p.m.4 views

CVE-2025-9528

A vulnerability was determined in Linksys E1700 1.0.0.4.003. This vulnerability affects the function systemCommand of the file /goform/systemCommand. Executing manipulation of the argument command can lead to os command injection. The attack may be launched remotely. The exploit has been publicly...

5.8CVSS5AI score0.50053EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/08/30 6:20 p.m.4 views

CVE-2025-9424

A vulnerability was identified in Ruijie WS7204-A 2017.06.15. Affected by this vulnerability is an unknown functionality of the file /itboxpi/branchimport.php?a=branchlist. Such manipulation of the argument province leads to os command injection. The attack can be executed remotely. The exploit i...

9.8CVSS5.1AI score0.1826EPSS
Exploits1References1
OSV
OSV
added 2025/08/29 3:30 p.m.3 views

GHSA-694P-3FXC-M92H AiondaDotCom mcp-ssh command injection vulnerability in SSH operations

A security flaw has been discovered in AiondaDotCom mcp-ssh up to 1.0.3. Affected by this issue is some unknown functionality of the file server-simple.mjs. Performing manipulation results in command injection. The attack can be initiated remotely. Upgrading to version 1.0.4 and 1.1.0 can resolve...

6.3CVSS7.2AI score0.01349EPSS
Exploits0References7
NVD
NVD
added 2025/08/29 3:15 p.m.4 views

CVE-2025-9654

A security flaw has been discovered in AiondaDotCom mcp-ssh up to 1.0.3. Affected by this issue is some unknown functionality of the file server-simple.mjs. Performing manipulation results in command injection. The attack can be initiated remotely. Upgrading to version 1.0.4 and 1.1.0 can resolve...

6.5CVSS0.01349EPSS
Exploits0References5
OSV
OSV
added 2025/08/29 3:15 p.m.4 views

CVE-2025-9654

A security flaw has been discovered in AiondaDotCom mcp-ssh up to 1.0.3. Affected by this issue is some unknown functionality of the file server-simple.mjs. Performing manipulation results in command injection. The attack can be initiated remotely. Upgrading to version 1.0.4 and 1.1.0 can resolve...

5.3CVSS7.2AI score
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/08/29 3:2 p.m.1 views

CVE-2025-9654 AiondaDotCom mcp-ssh server-simple.mjs command injection

A security flaw has been discovered in AiondaDotCom mcp-ssh up to 1.0.3. Affected by this issue is some unknown functionality of the file server-simple.mjs. Performing manipulation results in command injection. The attack can be initiated remotely. Upgrading to version 1.0.4 and 1.1.0 can resolve...

6.5CVSS6.8AI score0.01349EPSS
Exploits0References5
NVD
NVD
added 2025/08/29 2:15 a.m.4 views

CVE-2025-9603

A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Hostname can lead to command injection. The attack may be performed from a remote location. The...

9.8CVSS0.07575EPSS
Exploits1References5
OSV
OSV
added 2025/08/29 2:15 a.m.3 views

CVE-2025-9603

A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Hostname can lead to command injection. The attack may be performed from a remote location. The...

9.8CVSS5.7AI score0.07575EPSS
Exploits1References5
CVE
CVE
added 2025/08/29 1:32 a.m.16 views

CVE-2025-9603

CVE-2025-9603 pertains to the Telesquare TLR-2005KSH device running version 1.2.4. The vulnerability is in an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg, where manipulating the Hostname argument can lead to a remote command injection. Public exploitation has been disclosed....

9.8CVSS6.4AI score0.07575EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/29 1:32 a.m.3 views

CVE-2025-9603 Telesquare TLR-2005KSH internet.cgi command injection

A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Hostname can lead to command injection. The attack may be performed from a remote location. The...

6.5CVSS6.3AI score0.07575EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/08/29 1:32 a.m.10 views

CVE-2025-9603 Telesquare TLR-2005KSH internet.cgi command injection

A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Hostname can lead to command injection. The attack may be performed from a remote location. The...

6.5CVSS0.07575EPSS
Exploits1References5
OSV
OSV
added 2025/08/28 9:15 p.m.2 views

CVE-2025-9586

A vulnerability was identified in Comfast CF-N1 2.6.0. This vulnerability affects the function wirelessdevicedissoc of the file /usr/bin/webmgnt. Such manipulation of the argument mac leads to command injection. The attack may be performed from a remote location. The exploit is publicly available...

8.8CVSS5.7AI score0.08319EPSS
Exploits1References4
NVD
NVD
added 2025/08/28 9:15 p.m.4 views

CVE-2025-9585

A vulnerability was determined in Comfast CF-N1 2.6.0. This affects the function wifilithdeletepicfile of the file /usr/bin/webmgnt. This manipulation of the argument portaldeletepicname causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly...

8.8CVSS0.05075EPSS
Exploits1References4
OSV
OSV
added 2025/08/28 9:15 p.m.3 views

CVE-2025-9585

A vulnerability was determined in Comfast CF-N1 2.6.0. This affects the function wifilithdeletepicfile of the file /usr/bin/webmgnt. This manipulation of the argument portaldeletepicname causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly...

8.8CVSS5.6AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/08/28 9:2 p.m.2 views

CVE-2025-9586 Comfast CF-N1 webmgnt wireless_device_dissoc command injection

A vulnerability was identified in Comfast CF-N1 2.6.0. This vulnerability affects the function wirelessdevicedissoc of the file /usr/bin/webmgnt. Such manipulation of the argument mac leads to command injection. The attack may be performed from a remote location. The exploit is publicly available...

6.5CVSS6.5AI score0.08319EPSS
Exploits1References4
NVD
NVD
added 2025/08/28 8:15 p.m.3 views

CVE-2025-9583

A vulnerability has been found in Comfast CF-N1 2.6.0. Affected by this vulnerability is the function pingconfig of the file /usr/bin/webmgnt. The manipulation leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used...

8.8CVSS0.05075EPSS
Exploits1References4
Rows per page
Query Builder