Lucene search
K

31273 matches found

OSV
OSV
added 2026/01/29 8:16 p.m.5 views

CVE-2025-69604

An issue in Shirt Pocket's SuperDuper! 3.11 and earlier allow a local attacker to modify the default task template to install an arbitrary package that can run shell scripts with root privileges and Full Disk Access, thus bypassing macOS privacy controls...

7.8CVSS5.9AI score
Exploits0References3
OSV
OSV
added 2026/01/29 6:16 p.m.8 views

CVE-2025-15545

The backup restore function does not properly validate unexpected or unrecognized tags within the backup file. When such a crafted file is restored, the injected tag is interpreted by a shell, allowing execution of arbitrary commands with root privileges. Successful exploitation allows the attack...

6.8CVSS6.1AI score0.00453EPSS
Exploits2References4
NVD
NVD
added 2026/01/29 6:16 p.m.5 views

CVE-2025-15545

The backup restore function does not properly validate unexpected or unrecognized tags within the backup file. When such a crafted file is restored, the injected tag is interpreted by a shell, allowing execution of arbitrary commands with root privileges. Successful exploitation allows the attack...

7.3CVSS0.00453EPSS
Exploits2References4
CVE
CVE
added 2026/01/29 5:31 p.m.24 views

CVE-2025-15545

CVE-2025-15545 affects TP-Link Archer RE605X (RE605X v3.x) where the backup restore function does not validate unexpected/unrecognized tags in the backup file. A crafted backup can cause an injected tag to be interpreted by a shell, enabling arbitrary command execution with root privileges, compr...

7.3CVSS6.1AI score0.00453EPSS
Exploits2References4Affected Software1
EUVD
EUVD
added 2026/01/29 5:31 p.m.6 views

EUVD-2025-206536

The backup restore function does not properly validate unexpected or unrecognized tags within the backup file. When such a crafted file is restored, the injected tag is interpreted by a shell, allowing execution of arbitrary commands with root privileges. Successful exploitation allows the attack...

7.3CVSS6.1AI score0.00453EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2026/01/29 5:31 p.m.6 views

CVE-2025-15545

The backup restore function does not properly validate unexpected or unrecognized tags within the backup file. When such a crafted file is restored, the injected tag is interpreted by a shell, allowing execution of arbitrary commands with root privileges. Successful exploitation allows the attack...

7.3CVSS6.1AI score0.00453EPSS
Exploits2References4
NVD
NVD
added 2026/01/29 4:16 p.m.7 views

CVE-2025-13905

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart...

7CVSS0.00103EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/29 3:20 p.m.5 views

EUVD-2025-206546

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart...

7CVSS5.9AI score0.00103EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/29 3:20 p.m.5 views

CVE-2025-13905

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart...

7CVSS5.9AI score0.00103EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/29 3:20 p.m.6 views

CVE-2025-13905

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart...

7CVSS5.9AI score0.00103EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/01/29 3:20 p.m.19 views

CVE-2025-13905

CVE-2025-13905 maps to Schneider Electric EcoStruxure Process Expert (for AVEVA System Platform) with versions prior to 2025 affected. The issue is CWE-276: Incorrect Default Permissions, enabling privilege escalation via a reverse shell when one or more executable service binaries are modified i...

7CVSS5.9AI score0.00103EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/29 3:20 p.m.28 views

CVE-2025-13905

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart...

7CVSS0.00103EPSS
Exploits0References1
NVD
NVD
added 2026/01/29 3:16 p.m.7 views

CVE-2020-37009

MedDream PACS Server 6.8.3.751 contains an authenticated remote code execution vulnerability that allows authorized users to upload malicious PHP files. Attackers can exploit the uploadImage.php endpoint by authenticating and uploading a PHP shell to execute arbitrary system commands with elevate...

8.8CVSS0.00521EPSS
Exploits0References3
NVD
NVD
added 2026/01/29 3:16 p.m.11 views

CVE-2020-37002

Ajenti 2.1.36 contains a post-authenticated remote command execution vulnerability that allows remote attackers to execute arbitrary commands after successful login. Attackers can leverage the /api/terminal/create endpoint to send a netcat reverse shell payload targeting a specified IP and port...

9.8CVSS0.00653EPSS
Exploits0References3
NVD
NVD
added 2026/01/29 3:16 p.m.8 views

CVE-2020-37001

Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the Pack File feature that allows attackers to execute arbitrary code by overflowing the 'Archive To' input field. Attackers can craft a malicious payload that overwrites the Structured Exception Handler SEH and uses ...

8.4CVSS0.00147EPSS
Exploits0References3
OSV
OSV
added 2026/01/29 3:16 p.m.5 views

CVE-2020-37002

Ajenti 2.1.36 contains an authentication bypass vulnerability that allows remote attackers to execute arbitrary commands after successful login. Attackers can leverage the /api/terminal/create endpoint to send a netcat reverse shell payload targeting a specified IP and port...

9.8CVSS6AI score0.00653EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/29 2:28 p.m.4 views

CVE-2020-37012

Tea LaTex 1.0 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary shell commands through the /api.php endpoint. Attackers can craft a malicious LaTeX payload with shell commands that are executed when processed by the application's tex2png API...

9.8CVSS6.7AI score0.00755EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/01/29 2:28 p.m.31 views

CVE-2020-37009 MedDream PACS Server 6.8.3.751 - Remote Code Execution

MedDream PACS Server 6.8.3.751 contains an authenticated remote code execution vulnerability that allows authorized users to upload malicious PHP files. Attackers can exploit the uploadImage.php endpoint by authenticating and uploading a PHP shell to execute arbitrary system commands with elevate...

8.8CVSS0.00521EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/29 2:28 p.m.5 views

CVE-2020-37009 MedDream PACS Server 6.8.3.751 - Remote Code Execution

MedDream PACS Server 6.8.3.751 contains an authenticated remote code execution vulnerability that allows authorized users to upload malicious PHP files. Attackers can exploit the uploadImage.php endpoint by authenticating and uploading a PHP shell to execute arbitrary system commands with elevate...

8.8CVSS6.7AI score0.00521EPSS
Exploits0References3
CVE
CVE
added 2026/01/29 2:28 p.m.11 views

CVE-2020-37009

CVE-2020-37009 affects MedDream PACS Server 6.8.3.751. The connected records confirm an authenticated remote code execution vulnerability where an authorized user can upload PHP files via the uploadImage.php endpoint, enabling execution of arbitrary system commands with elevated privileges. CVSS ...

8.8CVSS6.7AI score0.00521EPSS
Exploits0References3
Rows per page
Query Builder