CVE-2025-64991

A command injection vulnerability was discovered in TeamViewer DEX former 1E DEX, specifically within the 1E-PatchInsights-Deploy instruction prior V15. Improper input validation, allowing authenticated attackers with Actioner privileges to inject arbitrary commands. Exploitation enables remote...

MAL-2025-31792 Malicious code in react-google-publisher-tag-v15 (npm)

The package react-google-publisher-tag-v15 was found to contain malicious code...

CVE-2023-27064

Tenda V15V1.0 V15.11.0.14152131901058 was discovered to contain a buffer overflow vulnerability via the index parameter in the formDelDnsForward function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

Security Bulletin: Vulnerabilities in IBM Semeru Runtime affects Host On-Demand

Summary There is a vulnerability in IBM Semeru Runtime used by Host On-Demand. Host On-Demand has provided a fix for the applicable CVE. These issues were disclosed as part of the IBM Semeru Runtime Quarterly CPU - Apr 2023 - Includes OpenJDK April 2023 CPU. Vulnerability Details...

CVE-2023-27064

Tenda V15V1.0 V15.11.0.14152131901058 was discovered to contain a buffer overflow vulnerability via the index parameter in the formDelDnsForward function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2023-27065

Tenda V15V1.0 V15.11.0.14152131901058 was discovered to contain a buffer overflow vulnerability via the picName parameter in the formDelWewifiPi function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2023-24123

CVE-2023-24123 : A stack overflow in the wepauth parameter of the /goform/WifiBasicSet endpoint affects the Jensen of Scandinavia Eagle 1200AC device (V15.03.06.33_en). Root cause: improper handling of the wepauth parameter leading to a stack overflow. Impact: availability disruption (CVSS/ATT&CK...

PT-2023-20924 · Tenda · Tenda V15

Name of the Vulnerable Software and Affected Versions: Tenda V15 version V1.0 Description: A buffer overflow issue was discovered via the gotoUrl parameter in the formPortalAuth function, allowing attackers to cause a Denial of Service DoS via a crafted request. Recommendations: For Tenda V15...

PT-2023-20927 · Tenda · Tenda V15

Name of the Vulnerable Software and Affected Versions: Tenda V15 version V15.11.0.141521 3190 1058 Description: A buffer overflow issue was found, allowing attackers to cause a Denial of Service DoS via a crafted request. The issue is related to the picName parameter in the formDelWewifiPi...

PT-2023-20926 · Tenda · Tenda V15

Name of the Vulnerable Software and Affected Versions: Tenda V15 versions V15.11.0.141521 3190 1058 Description: A buffer overflow issue was found, allowing attackers to cause a Denial of Service DoS via a crafted request. The issue is related to the index parameter in the formDelDnsForward...

MAL-2022-2513 Malicious code in discord.js-selfbot-v15 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1458d04f4cd028bc9c29058b115e613e43edce4866bc86790aeab9aea68f0464 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-6993 Malicious code in vue-loader-v15 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f28d64bd6925b4cc89a968db2ede4f3f5a9af6ca2bff1509ced13eb5aaafdf65 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Stack overflow

Tenda AC6 v15.03.05.09multi was discovered to contain a stack overflow via the cmdinput parameter in the exeCommand function...

CVE-2021-40363

A vulnerability has been identified in SIMATIC PCS 7 V8.2 All versions, SIMATIC PCS 7 V9.0 All versions, SIMATIC PCS 7 V9.1 All versions V9.1 SP1, SIMATIC WinCC V15 and earlier All versions V15 SP1 Update 7, SIMATIC WinCC V16 All versions V16 Update 5, SIMATIC WinCC V17 All versions V17 Update 2,...

Out-of-bounds

A CWE-787: Out-of-bounds write vulnerability exists inIGSS Definition Def.exe V15.0.0.21140 and prior that could result in disclosure of information or execution of arbitrary code due to lack of input validation, when a malicious CGF Configuration Group File file is imported to IGSS Definition...

Node.js -- November 2020 Security Releases

Node.js reports: Updates are now available for v12.x, v14.x and v15.x Node.js release lines for the following issues. Denial of Service through DNS request CVE-2020-8277 A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of...

CVE-2020-12928

A vulnerability in a dynamically loaded AMD driver in AMD Ryzen Master V15 may allow any authenticated user to escalate privileges to NT authority system...

Design/Logic Flaw

A vulnerability in a dynamically loaded AMD driver in AMD Ryzen Master V15 may allow any authenticated user to escalate privileges to NT authority system...

CVE-2020-12928

The CVE-2020-12928 entry describes a privilege-escalation flaw in a dynamically loaded AMD driver within AMD Ryzen Master V15 that could allow any authenticated user to escalate to NT authority system. Related Red Hat and HP advisories reference the same vulnerability. Public technical specifics ...

v15.vuetifyjs.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1158519 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...