Lucene search
K

8 matches found

Debian CVE
Debian CVE
added 2026/02/06 7:20 p.m.6 views

CVE-2026-25727

time provides date and time handling in Rust. From 0.3.6 to before 0.3.47, when user-provided input is provided to any type that parses with the RFC 2822 format, a denial of service attack via stack exhaustion is possible. The attack relies on formally deprecated and rarely-used features that are...

6.8CVSS5.3AI score0.00291EPSS
Exploits0
NVD
NVD
added 2025/12/04 9:16 p.m.3 views

CVE-2025-66555

AirKeyboard iOS App 1.0.5 contains a missing authentication vulnerability that allows unauthenticated attackers to type arbitrary keystrokes directly into the victim's iOS device in real-time without user interaction, resulting in full remote input control...

8.8CVSS0.00489EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.7 views

PT-2025-49138

Name of the Vulnerable Software and Affected Versions AirKeyboard iOS App version 1.0.5 Description The AirKeyboard iOS App has a missing authentication mechanism. This allows unauthenticated attackers to send arbitrary keystrokes to a victim’s iOS device in real-time, without requiring user...

8.8CVSS6.8AI score0.00489EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/07/03 12:0 a.m.3 views

Tenda AC6 安全漏洞

Tenda AC6 is a dual-band wireless router from Tenda. Tenda AC6 suffers from a buffer overflow vulnerability, which originates from the failure of the time parameter in the SetSysTimeCfg function to correctly validate the length and size of the input data, which can be exploited by an attacker to...

8.1CVSS8.2AI score0.0039EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/06/13 12:0 a.m.5 views

The vulnerability of the NTPSyncWithHost() function in TOTOLINK LR350 router microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the NTPSyncWithHost function in TOTOLINK LR350 router microprogramming devices is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary commands through the hosttime parameter...

5.8CVSS6AI score0.01386EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2023/09/26 6:19 p.m.21 views

CVE-2023-43646

get-func-name is a module to retrieve a function's name securely and consistently both in NodeJS and the browser. Versions prior to 2.0.1 are subject to a regular expression denial of service redos vulnerability which may lead to a denial of service when parsing malicious input. This vulnerabilit...

8.6CVSS6.3AI score0.01114EPSS
Exploits1
CNNVD
CNNVD
added 2022/10/12 12:0 a.m.7 views

Tenda AC1206 缓冲区错误漏洞

The AC1206 is a high performance router designed with Gigabit ports for both WAN and LAN ports. A buffer overflow vulnerability exists in the Tenda AC1206 firmware version USAC1206V1.0RTLV15.03.06.23multiTD01, which originates from the /bin/httpd file /goform/openSchedWifi in the function scheden...

7.5CVSS7.2AI score0.00815EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.4 views

The vulnerability of the Linux operating system, which allows a malicious individual to trigger a local service failure

In the HID driver for various Logitech devices, there is no mechanism for cleaning the entered information in real-time. This leads to a local failure in service provision...

4.7CVSS7.1AI score0.00394EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder