Lucene search
+L

4 matches found

OSV
OSV
added 2025/12/28 11:15 a.m.4 views

CVE-2025-15132

A vulnerability was determined in ZSPACE Z4Pro+ 1.0.0440024. The affected element is the function zfilev2apiopen of the file /v2/file/safe/open of the component HTTP POST Request Handler. This manipulation causes command injection. It is possible to initiate the attack remotely. The exploit has...

8.8CVSS5.7AI score0.06692EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/12/28 10:32 a.m.31 views

CVE-2025-15132 ZSPACE Z4Pro+ HTTP POST Request open zfilev2_api_open command injection

A vulnerability was determined in ZSPACE Z4Pro+ 1.0.0440024. The affected element is the function zfilev2apiopen of the file /v2/file/safe/open of the component HTTP POST Request Handler. This manipulation causes command injection. It is possible to initiate the attack remotely. The exploit has...

6.5CVSS0.06692EPSS
Exploits1References4
EUVD
EUVD
added 2025/12/06 12:31 a.m.8 views

EUVD-2025-201501

A weakness has been identified in ZSPACE Q2C NAS up to 1.1.0210050. Affected by this issue is the function zfilev2api.OpenSafe of the file /v2/file/safe/open of the component HTTP POST Request Handler. This manipulation of the argument safedir causes command injection. It is possible to initiate...

9CVSS6.4AI score0.09394EPSS
Exploits1References5
NVD
NVD
added 2006/10/16 7:7 p.m.21 views

CVE-2006-5297

Race condition in the safeopen function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the OEXCL flag on NFS filesystems...

1.2CVSS6.2AI score0.00351EPSS
Exploits0References13
Rows per page
Query Builder