CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

CVE-2026-24444

SDMC NE6037 cable modem routers running firmware 7.1.6.0.25 and 7.1.6.1.9B9 contain a hardcoded password vulnerability in the web management interface recovery endpoints mgmt.php, npcmd.php that allows unauthenticated attackers to gain root access by submitting the hardcoded credential to the...

9.8CVSS5.6AI score0.00078EPSS

Exploits0References1

Vulnrichment•added 2026/05/28 3:32 p.m.•5 views

CVE-2026-24444 SDMC NE6037 Hardcoded Password via mgmt.php/npcmd.php

9.8CVSS5.8AI score0.00078EPSS

Exploits0References2

CVE•added 2026/05/28 3:32 p.m.•11 views

CVE-2026-24444

CVE-2026-24444 concerns SDMC NE6037 cable modem routers with firmware 7.1.6.0.25 and 7.1.6.1.9_B9. A hardcoded password in the web management interface recovery endpoints (mgmt.php, npcmd.php) allows unauthenticated users to submit the credential via HTTP and gain root access. This enables enabli...

9.8CVSS5.8AI score0.00078EPSS

Exploits0References2

RedhatCVE•added 2025/11/28 2:1 p.m.•5 views

CVE-2025-8890

Firmware in SDMC NE6037 routers prior to version 7.1.12.2.44 has a network diagnostics tool vulnerable to a shell command injection attacks. In order to exploit this vulnerability, an attacker has to log in to the router's administrative portal, which by default is reachable only via LAN ports...

9.3CVSS7.5AI score0.00328EPSS

Exploits0References1

EUVD•added 2025/11/27 3:31 p.m.•2 views

EUVD-2025-199825

9.3CVSS7AI score0.00328EPSS

Exploits0References2

NVD•added 2025/11/27 2:15 p.m.•6 views

CVE-2025-8890

9.3CVSS0.00328EPSS

Exploits0References2

Vulnrichment•added 2025/11/27 1:42 p.m.•2 views

CVE-2025-8890 Authenticated RCE in SDMC NE6037 router

9.3CVSS7.2AI score0.00328EPSS

Exploits0References2

Cvelist•added 2025/11/27 1:42 p.m.•8 views

CVE-2025-8890 Authenticated RCE in SDMC NE6037 router

9.3CVSS0.00328EPSS

Exploits0References2

CNNVD•added 2025/11/27 12:0 a.m.•2 views

SDMC NE6037 操作系统命令注入漏洞

The SDMC NE6037 is a cable modem from China's Sinodisk SDMC. An operating system command injection vulnerability exists in the SDMC NE6037 versions prior to 7.1.12.2.44, which stems from a shell command injection vulnerability in the Network Diagnostic Tool...

9.3CVSS7.4AI score0.00328EPSS

Exploits0References1

Ubuntu•added 2023/09/08 9:36 p.m.•90 views

USN-6340-2: Linux kernel vulnerabilities

Ruihan Li discovered that the bluetooth subsystem in the Linux kernel did not properly perform permissions checks when handling HCI sockets. A physically proximate attacker could use this to cause a denial of service bluetooth communication. CVE-2023-2002 Zi Fan Tan discovered that the binder IPC...

10CVSS7.7AI score0.00594EPSS

Exploits2

Ubuntu•added 2023/09/06 4:59 p.m.•66 views

USN-6349-1: Linux kernel (Azure) vulnerabilities

10CVSS7.7AI score0.00594EPSS

Exploits2

Ubuntu•added 2023/08/11 2:36 p.m.•74 views

USN-6283-1: Linux kernel vulnerabilities

9.8CVSS7.4AI score0.00594EPSS

Exploits2

NVD•added 2012/08/06 4:55 p.m.•11 views

CVE-2012-2188

IBM Power Hardware Management Console HMC 7R3.5.0 before SP4, 7R7.1.0 and 7R7.2.0 before 7R7.2.0 SP3, and 7R7.3.0 before SP2, and Systems Director Management Console SDMC 6R7.3.0 before SP2, does not properly restrict the VIOS viosrvcmd command, which allows local users to gain privileges via...

7.2CVSS6.3AI score0.00114EPSS

Exploits0References6

CVE•added 2012/08/06 4:0 p.m.•49 views

CVE-2012-2188

Vulnerability CVE-2012-2188 affects IBM Power Hardware Management Console (HMC) and Systems Director Management Console (SDMC). The root cause is improper restriction of the VIOS viosrvcmd command, enabling local users to gain privileges via vectors involving a $ or & character. Affected versions...

7.2CVSS6.5AI score0.00114EPSS

Exploits0References6Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by