Lucene search
K

6 matches found

Cvelist
Cvelist
added 2026/04/24 12:6 a.m.28 views

CVE-2026-25775 SenseLive X3050 Missing authentication for critical function

A vulnerability in SenseLive X3050’s remote management service allows firmware retrieval and update operations to be performed without authentication or authorization. The service accepts firmware-related requests from any reachable host and does not verify user privileges, integrity of uploaded...

9.8CVSS0.00405EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-2654

Malware in sbrugna...

9.9CVSS8.9AI score0.01208EPSS
Exploits0References3
Cvelist
Cvelist
added 2020/12/29 11:38 p.m.33 views

CVE-2020-35801

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JGS516PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, JGS524PE before 2.6.0.48, and GS116Ev2 before 2.6.0.48. A TFTP server was found to be active by default. It allows remote authenticated users to...

8.3CVSS8AI score0.01671EPSS
Exploits0References2
CNVD
CNVD
added 2020/03/12 12:0 a.m.3 views

WAGO PFC200 Input Validation Error Vulnerability

The WAGO PFC 200 is a programmable logic controller PLC from the German company WAGO. An input validation error vulnerability exists in the cloud connectivity feature in WAGO PFC 200 using firmware versions 03.02.0214, 03.01.0713, and 03.00.3912. An attacker could exploit this vulnerability to ga...

9.1CVSS7AI score0.02672EPSS
Exploits1References1
Prion
Prion
added 2020/01/16 4:15 p.m.15 views

Design/Logic Flaw

A vulnerability has been identified in SINEMA Server All versions V14.0 SP2 Update 1. Incorrect session validation could allow an attacker with a valid session, with low privileges, to perform firmware updates and other administrative operations on connected devices. The security vulnerability...

9CVSS8.9AI score0.01208EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/03/02 1:29 a.m.14 views

Design/Logic Flaw

This vulnerability allows adjacent attackers to inject arbitrary Controller Area Network messages on vulnerable installations of Volkswagen Customer-Link App 1.30 and HTC Customer-Link Bridge. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

8.3CVSS8.5AI score0.00816EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder