Lucene search
K

78 matches found

RedhatCVE
RedhatCVE
added 2026/05/04 8:21 p.m.7 views

CVE-2026-7704

A vulnerability has been found in AV Stumpfl Pixera Two Media Server up to 25.1 R2. The affected element is an unknown function of the component Service Port 1338. Such manipulation leads to path traversal. The exploit has been disclosed to the public and may be used. Upgrading to version 25.2 R3...

5.3CVSS5.2AI score0.00381EPSS
Exploits0References1
NVD
NVD
added 2026/05/03 5:16 p.m.40 views

CVE-2026-7704

A vulnerability has been found in AV Stumpfl Pixera Two Media Server up to 25.1 R2. The affected element is an unknown function of the component Service Port 1338. Such manipulation leads to path traversal. The exploit has been disclosed to the public and may be used. Upgrading to version 25.2 R3...

5.3CVSS0.00381EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/03 4:45 p.m.8 views

CVE-2026-7704

A vulnerability has been found in AV Stumpfl Pixera Two Media Server up to 25.1 R2. The affected element is an unknown function of the component Service Port 1338. Such manipulation leads to path traversal. The exploit has been disclosed to the public and may be used. Upgrading to version 25.2 R3...

5.3CVSS5.2AI score0.00381EPSS
Exploits0References5
CVE
CVE
added 2026/05/03 4:45 p.m.18 views

CVE-2026-7704

AV Stumpfl Pixera Two Media Server (up to 25.1 R2) has a path traversal issue in the Service Port 1338 component. The vulnerability arises from manipulation of an unknown function within that port, with public exploit availability. Remediation is upgrading to version 25.2 R3, which is identified ...

5.3CVSS5.2AI score0.00381EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/03 12:0 a.m.10 views

AV Stumpfl Pixera Two Media Server 路径遍历漏洞

The AV Stumpfl Pixera Two Media Server is a professional media server system developed by the Austrian company AV Stumpfl. Versions of the AV Stumpfl Pixera Two Media Server 25.1 R2 and earlier contained a path traversal vulnerability. This vulnerability originated from an unknown function in the...

5.3CVSS5.8AI score0.00381EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/03 12:0 a.m.8 views

PT-2026-36708

Name of the Vulnerable Software and Affected Versions AV Stumpfl Pixera Two Media Server versions prior to 25.2 R3 Description An issue exists in an unknown function of the Service Port 1338 component. This flaw allows for path traversal, a technique used to access files and directories outside t...

5.3CVSS5.8AI score0.00381EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2026/03/27 8:10 a.m.2 views

CVE-2026-27856

Doveadm credentials are verified using direct comparison which is susceptible to timing oracle attack. An attacker can use this to determine the configured credentials. Figuring out the credential will lead into full access to the affected component. Limit access to the doveadm http service port,...

7.4CVSS5.9AI score0.00392EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:19 a.m.43 views

CVE-2024-2318

A vulnerability was found in ZKTeco ZKBio Media 2.0.0x642024-01-29-1028. It has been classified as problematic. Affected is an unknown function of the file /pro/common/download of the component Service Port 9999. The manipulation of the argument fileName with the input ../../../../zkbiomedia.sql...

7.5CVSS5AI score0.00933EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/12/10 9:31 p.m.7 views

1Panel contains a cross-site request forgery (CSRF) vulnerability in the web port configuration functionality

1Panel versions 1.10.33 - 2.0.15 contain a cross-site request forgery CSRF vulnerability in the web port configuration functionality. The port-change endpoint lacks CSRF defenses such as anti-CSRF tokens or Origin/Referer validation. An attacker can craft a malicious webpage that submits a...

7.1CVSS7AI score0.00144EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2025/12/10 7:16 p.m.4 views

CVE-2025-34429

1Panel versions 1.10.33 - 2.0.15 contain a cross-site request forgery CSRF vulnerability in the web port configuration functionality. The port-change endpoint lacks CSRF defenses such as anti-CSRF tokens or Origin/Referer validation. An attacker can craft a malicious webpage that submits a...

7.1CVSS0.00144EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-23773

Malware in sbrugna...

7.8CVSS7.6AI score0.01022EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-1437

Malware in sbrugna...

5.8CVSS6.1AI score0.02981EPSS
Exploits0References23
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-1883

Malware in sbrugna...

5CVSS6.4AI score0.01574EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28384

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00378EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-49189

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01419EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-16670

Malicious code in bioql PyPI...

7.5CVSS5.8AI score0.01097EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.8 views

PT-2025-38488

Name of the Vulnerable Software and Affected Versions Cognex In-Sight Explorer and In-Sight Camera Firmware affected versions not specified Description The software exposes a service implementing a proprietary protocol on TCP port 1069. This service allows client-side software, such as the In-Sig...

8.8CVSS6.3AI score0.00363EPSS
Exploits0References6
NVD
NVD
added 2025/08/12 12:15 p.m.5 views

CVE-2025-40768

A vulnerability has been identified in SINEC Traffic Analyzer 6GK8822-1BG01-0BA0 All versions V3.0. The affected application exposes an internal service port to be accessible from outside the system. This could allow an unauthorized attacker to access the application...

7.8CVSS0.00132EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/12 11:17 a.m.7 views

CVE-2025-40768

A vulnerability has been identified in SINEC Traffic Analyzer 6GK8822-1BG01-0BA0 All versions V3.0. The affected application exposes an internal service port to be accessible from outside the system. This could allow an unauthorized attacker to access the application...

7.3CVSS0.00132EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/12 12:0 a.m.5 views

PT-2025-32663

Name of the Vulnerable Software and Affected Versions: SINEC Traffic Analyzer versions prior to 3.0 Description: The affected application exposes an internal service port accessible from outside the system, potentially allowing unauthorized access. Recommendations: Update SINEC Traffic Analyzer t...

7.8CVSS6.3AI score0.00132EPSS
Exploits0References6
Rows per page
Query Builder