26 matches found
CVE-2025-11546
CLUSTERPRO X for Linux 4.0, 4.1, 4.2, 5.0, 5.1 and 5.2 and EXPRESSCLUSTER X for Linux 4.0, 4.1, 4.2, 5.0, 5.1 and 5.2, CLUSTERPRO X SingleServerSafe for Linux 4.0, 4.1, 4.2, 5.0, 5.1 and 5.2, EXPRESSCLUSTER X SingleServerSafe for Linux 4.0, 4.1, 4.2, 5.0, 5.1 and 5.2 allows an attacker sends...
CVE-2025-11546
CLUSTERPRO X for Linux 4.0, 4.1, 4.2, 5.0, 5.1 and 5.2 and EXPRESSCLUSTER X for Linux 4.0, 4.1, 4.2, 5.0, 5.1 and 5.2, CLUSTERPRO X SingleServerSafe for Linux 4.0, 4.1, 4.2, 5.0, 5.1 and 5.2, EXPRESSCLUSTER X SingleServerSafe for Linux 4.0, 4.1, 4.2, 5.0, 5.1 and 5.2 allows an attacker sends...
CVE-2025-11546
The CVE-2025-11546 entry affects NEC CLUSTERPRO X for Linux (versions 4.0–5.2), EXPRESSCLUSTER X for Linux (4.0–5.2), CLUSTERPRO X SingleServerSafe for Linux (4.0–5.2), and EXPRESSCLUSTER X SingleServerSafe for Linux (4.0–5.2). The connected sources describe an OS command injection vulnerability ...
EUVD-2024-34057
Malicious code in bioql PyPI...
EUVD-2024-34058
Malicious code in bioql PyPI...
EUVD-2025-29671
Malicious code in bioql PyPI...
CVE-2025-8153
Cross-site Scripting vulnerability in NEC Corporation UNIVERGE IX from Ver.9.5 to Ver.10.7, from Ver.10.8.21 to Ver.10.8.36, from Ver.10.9.11 to Ver.10.9.24, from Ver.10.10.21 to Ver.10.10.31, Ver.10.11.6 and UNIVERGE IX-R/IX-V Ver1.3.16, Ver1.3.21 allows a attacker to inject an arbitrary scripts...
JVN#95938761: UNIVERGE IX/IX-R/IX-V series routers provided by NEC Corporation vulnerable to cross-site scripting
UNIVERGE IX/IX-R/IX-V series routers provided by NEC Corporation contains the following vulnerability. Cross-site scripting CWE-79 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N Base Score 5.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Base Score 6.1 CVE-2025-8153 Impact If a...
CVE-2025-8153
Cross-site Scripting vulnerability in NEC Corporation UNIVERGE IX from Ver.9.5 to Ver.10.7, from Ver.10.8.21 to Ver.10.8.36, from Ver.10.9.11 to Ver.10.9.24, from Ver.10.10.21 to Ver.10.10.31, Ver.10.11.6 and UNIVERGE IX-R/IX-V Ver1.3.16, Ver1.3.21 allows a attacker to inject an arbitrary scripts...
CVE-2025-8153
Cross-site Scripting vulnerability in NEC Corporation UNIVERGE IX from Ver.9.5 to Ver.10.7, from Ver.10.8.21 to Ver.10.8.36, from Ver.10.9.11 to Ver.10.9.24, from Ver.10.10.21 to Ver.10.10.31, Ver.10.11.6 and UNIVERGE IX-R/IX-V Ver1.3.16, Ver1.3.21 allows a attacker to inject an arbitrary scripts...
CVE-2025-8153
Cross-site Scripting vulnerability in NEC Corporation UNIVERGE IX from Ver.9.5 to Ver.10.7, from Ver.10.8.21 to Ver.10.8.36, from Ver.10.9.11 to Ver.10.9.24, from Ver.10.10.21 to Ver.10.10.31, Ver.10.11.6 and UNIVERGE IX-R/IX-V Ver1.3.16, Ver1.3.21 allows a attacker to inject an arbitrary scripts...
CVE-2025-8153
CVE-2025-8153 affects NEC Corporation UNIVERGE IX and UNIVERGE IX-R/IX-V series. The vulnerability is a Cross-site Scripting (CWE-79) issue that allows an attacker to inject arbitrary scripts, which may be executed in the user’s browser. Impact includes potential script execution in the browser a...
PT-2025-38100
Name of the Vulnerable Software and Affected Versions: NEC Corporation UNIVERGE IX versions 9.5 through 10.7 NEC Corporation UNIVERGE IX versions 10.8.21 through 10.8.36 NEC Corporation UNIVERGE IX versions 10.9.11 through 10.9.24 NEC Corporation UNIVERGE IX versions 10.10.21 through 10.10.31 NEC...
NEC UNIVERGE IX 安全漏洞
NEC UNIVERGE IX is a router from Nippon Electric NEC. A security vulnerability exists in the NEC UNIVERGE IX that originates from the ability to inject arbitrary scripts, which could lead to cross-site scripting attacks. The following products and versions are affected: NEC Corporation UNIVERGE I...
CVE-2024-11014
Cross-site request forgery CSRF vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for Ver10.8 up to Ver10.8.27 and for Ver10.9 up to Ver10.9.14 allows a attacker to hijack the authentication of screens on the device via the management interface...
CVE-2024-11013
Command Injection vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for Ver10.8 up to Ver10.8.27, for Ver10.9 up to Ver10.9.14 and UNIVERGE IX-R/IX-V Ver1.2.15 and earlier allows a attacker to inject an arbitrary CLI commands to be executed on the device via the management...
CVE-2024-11014
Cross-site request forgery CSRF vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for Ver10.8 up to Ver10.8.27 and for Ver10.9 up to Ver10.9.14 allows a attacker to hijack the authentication of screens on the device via the management interface...
CVE-2024-11013
Command Injection vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for Ver10.8 up to Ver10.8.27, for Ver10.9 up to Ver10.9.14 and UNIVERGE IX-R/IX-V Ver1.2.15 and earlier allows a attacker to inject an arbitrary CLI commands to be executed on the device via the management...
CVE-2024-11014
CVE-2024-11014 is a CSRF vulnerability affecting NEC NEC UNIVERGE IX series routers. A logged-in attacker could hijack the authentication of the device’s on-screen management interfaces by convincing a user to visit a crafted link, with affected versions ranging from 9.2 to 10.10.21, 10.8.x up to...
CVE-2024-11014
Cross-site request forgery CSRF vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for Ver10.8 up to Ver10.8.27 and for Ver10.9 up to Ver10.9.14 allows a attacker to hijack the authentication of screens on the device via the management interface...