CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

330 matches found

Four-Faith F3x36 - Authentication Bypass

Four-Faith F3x36 router with firmware v2.0.0 contains an authentication bypass caused by hard-coded credentials in the administrative web server, letting attackers with knowledge of credentials gain administrative access via crafted HTTP requests. id: CVE-2024-9643 info: name: Four-Faith F3x36 -...

9.8CVSS7.8AI score0.1585EPSS

Exploits0References2

Cvelist•added 2026/05/13 2:22 p.m.•24 views

CVE-2020-37220 Huawei HG630 V2 Router Authentication Bypass via Serial Number

Huawei HG630 V2 router contains an authentication bypass vulnerability that allows unauthenticated attackers to obtain administrative access by retrieving the device serial number. Attackers can query the /api/system/deviceinfo endpoint without authentication to extract the SerialNumber field, th...

8.7CVSS0.00153EPSS

Exploits0References3

CNVD•added 2026/04/16 12:0 a.m.•2 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17631)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to incorrect boundary checking in the shutset.asp script and can be exploited by an attacker to cause a denial of service...

7.5CVSS6AI score0.00054EPSS

Exploits0

CNNVD•added 2026/04/08 12:0 a.m.•3 views

D-Link DI-8003 安全漏洞

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability caused by incorrect boundary checking in the wanlinedetection.asp script, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6AI score0.00057EPSS

Exploits0References3

Malwarebytes•added 2026/03/30 7:1 a.m.•3 views

A week in security (March 23 – March 29)

Last week on Malwarebytes Labs: Criminals are renting virtual phones to bypass bank security Bogus Avast website fakes virus scan, installs Venom Stealer instead Infiniti Stealer: a new macOS infostealer using ClickFix and Python/Nuitka GlassWorm attack installs fake browser extension for...

5.9AI score

Exploits0

RedhatCVE•added 2026/01/09 10:48 a.m.•7 views

CVE-2022-31308

A vulnerability in livemfg.shtml of WAVLINK AERIAL X 1200M M79X3.V5030.191012 allows attackers to obtain sensitive router information via execution of the exec cmd function...

7.5CVSS6.5AI score0.00667EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:41 a.m.•4 views

CVE-1999-0571

A router's configuration service or management interface such as a web server or telnet is configured to allow connections from arbitrary hosts...

10CVSS7AI score0.00483EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:41 a.m.•3 views

CVE-1999-0588

A filter in a router or firewall allows unusual fragmented packets...

7.5CVSS6.9AI score0.00538EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:39 a.m.•4 views

CVE-1999-0510

A router or firewall allows source routed packets from arbitrary hosts...

7.5CVSS7.1AI score0.00818EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:38 a.m.•3 views

CVE-1999-0529

A router or firewall forwards packets that claim to come from IANA reserved or private addresses, e.g. 10.x.x.x, 127.x.x.x, 217.x.x.x, etc...

7.5CVSS6.9AI score0.00489EPSS

Exploits0References1

Vulnrichment•added 2025/10/30 12:0 a.m.•3 views

CVE-2025-63422

Incorrect access control in the Web management interface in Each Italy Wireless Mini Router WIRELESS-N 300M v28K.MiniRouter.20190211 allows attackers to arbitrarily change the administrator username and password via sending a crafted GET request...

6.5AI score0.0005EPSS

Exploits1References2