CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

65 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-28940

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.0057EPSS

Exploits1References1

Prion•added 2023/12/05 1:15 a.m.•13 views

Design/Logic Flaw

Azure RTOS NetX Duo is a TCP/IP network stack designed specifically for deeply embedded real-time and IoT applications. An attacker can cause remote code execution due to memory overflow vulnerabilities in Azure RTOS NETX Duo. The affected components include processes/functions related to ftp and...

7.5CVSS8.5AI score0.01095EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/12/05 12:24 a.m.•9 views

CVE-2023-48315 Azure RTOS NetX Duo Remote Code Execution Vulnerability

8.8CVSS8.5AI score0.01095EPSS

Exploits0References1

CVE•added 2023/12/05 12:24 a.m.•31 views

CVE-2023-48315

Azure RTOS NetX Duo (TCP/IP stack for deeply embedded/IoT) is affected in versions prior to 6.3.0. The vulnerability is a memory overflow in components handling ftp and sntp, which can lead to remote code execution. The fixes are included in NetX Duo release 6.3.0; upgrading is advised. Other det...

9.8CVSS9.7AI score0.01095EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/12/05 12:24 a.m.•11 views

CVE-2023-48315 Azure RTOS NetX Duo Remote Code Execution Vulnerability

8.8CVSS10AI score0.01095EPSS

Exploits0References1

F5 Networks•added 2023/02/21 5:27 p.m.•43 views

K60352002: SNTP vulnerability CVE-2015-5219

Security Advisory Description SNTP processing would enter into an infinite loop when a crafted NTP packet was received. CVE-2015-5219 Impact An attacker may be able to cause a denial-of-service DoS to the system by crafting a special NTP packet. Security Advisory Status F5 Product Development has...

7.5CVSS6.8AI score0.0224EPSS

Exploits0Affected Software18

SUSE CVE•added 2023/02/15 5:16 a.m.•2 views

SUSE CVE-2015-5219

The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service infinite loop via a crafted NTP packet...

7.5CVSS7.8AI score0.0224EPSS

Exploits0References13

NVD•added 2023/01/06 7:15 p.m.•12 views

CVE-2022-39072

There is a SQL injection vulnerability in Some ZTE Mobile Internet products. Due to insufficient validation of the input parameters of the SNTP interface, an authenticated attacker could use the vulnerability to execute stored XSS attacks...

5.4CVSS5.7AI score0.00523EPSS

Exploits0References1

Positive Technologies•added 2023/01/06 12:0 a.m.•1 views

PT-2023-13683 · Zte · Zte Mobile Internet

Name of the Vulnerable Software and Affected Versions: Some ZTE Mobile Internet products affected versions not specified Description: The issue is related to a SQL injection vulnerability due to insufficient validation of the input parameters of the SNTP interface. An authenticated attacker could...

5.4CVSS6.7AI score0.00523EPSS

Exploits0References4

Cvelist•added 2023/01/06 12:0 a.m.•17 views

CVE-2022-39072

5.8AI score0.00523EPSS

Exploits0References1

OSV•added 2022/08/05 10:15 p.m.•2 views

CVE-2022-24025

A buffer overflow vulnerability exists in the GetValue functionality of TCL LinkHub Mesh Wi-Fi MS1G0001.0014. A specially-crafted configuration value can lead to a buffer overflow. An attacker can modify a configuration value to trigger this vulnerability.This vulnerability represents all...

9.8CVSS7.8AI score0.0057EPSS

Exploits1References1

OpenVAS•added 2020/01/23 12:0 a.m.•19 views

Huawei EulerOS: Security Advisory for ntp (EulerOS-SA-2019-1213)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.15968EPSS

Exploits5References2

OpenVAS•added 2020/01/23 12:0 a.m.•45 views

Huawei EulerOS: Security Advisory for ntp (EulerOS-SA-2016-1060)

7.7CVSS7.3AI score0.42548EPSS

Exploits1References2

OSV•added 2019/05/02 5:29 p.m.•0 views

CVE-2017-18372

The Billion 5200W-T TCLinux Fw $7.3.8.0 v008 130603 router distributed by TrueOnline has a command injection vulnerability in the Time Setting function, which is only accessible by an authenticated user. The vulnerability is in the toolstime.asp page and can be exploited through the...

8.8CVSS5.8AI score

Exploits0References3

Fedora•added 2019/04/07 4:19 a.m.•47 views

[SECURITY] Fedora 29 Update: ntp-4.2.8p13-1.fc29

The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which continuously adjusts system time and utilities used to query and configure the ntpd daemon. Perl scripts are in the ntp-perl package, ntpdate is in...

7.5CVSS0.2AI score0.23878EPSS

Exploits2

Fedora•added 2019/04/07 1:47 a.m.•50 views

[SECURITY] Fedora 28 Update: ntp-4.2.8p13-1.fc28

9.8CVSS0.2AI score0.23878EPSS

Exploits8

Fedora•added 2018/09/26 8:17 p.m.•32 views

[SECURITY] Fedora 27 Update: ntp-4.2.8p12-1.fc27

9.8CVSS0.2AI score0.32035EPSS

Exploits11

Fedora•added 2018/03/27 8:16 p.m.•38 views

[SECURITY] Fedora 27 Update: ntp-4.2.8p11-1.fc27