Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2025/11/13 11:8 p.m.7 views

CVE-2022-4982

DBLTek GoIP-1 firmware versions up to and including GHSFVT-1.1-67-5 contain a local file inclusion vulnerability. The device's web server exposes handlers frame.html and frame.A100.html that accept a path parameter content or sidebar which is not properly validated or canonicalized. An attacker c...

8.7CVSS6.6AI score0.00438EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-52940

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00895EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/23 6:2 a.m.10 views

CVE-2025-9357 Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 langSwitchByBBS stack-based overflow

A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function langSwitchByBBS of the file /goform/langSwitchByBBS. The manipulation of the argument langSelectionOnly leads to stack-bas...

9CVSS0.009EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/22 6:42 p.m.18 views

CVE-2021-39291

Certain NetModule devices allow credentials via GET parameters to CLI-PHP. These models with firmware before 4.3.0.113, 4.4.0.111, and 4.5.0.105 are affected: NB800, NB1600, NB1601, NB1800, NB1810, NB2700, NB2710, NB2800, NB2810, NB3700, NB3701, NB3710, NB3711, NB3720, and NB3800...

8.8CVSS7.1AI score0.01481EPSS
Exploits3References1
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.5 views

Zyxel VMG8825-T50K 操作系统命令注入漏洞

The Zyxel VMG8825-T50K is an Internet access device from China Hopkins Zyxel. An operating system command injection vulnerability exists in Zyxel VMG8825-T50K V5.50ABOM.8.5C0 and earlier versions, which stems from a command injection in the DNSServer parameter in the diagnostic function, which...

7.2CVSS7.5AI score0.01128EPSS
Exploits0References3
Prion
Prion
added 2023/05/23 2:15 a.m.15 views

Design/Logic Flaw

Client-side enforcement of server-side security issue exists in T&D Corporation and ESPEC MIC CORP. data logger products, which may lead to an arbitrary script execution on a logged-in user's web browser. Affected products and versions are as follows: T&D Corporation data logger products TR-71W/7...

4.9CVSS6.6AI score0.00508EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/09/05 12:0 a.m.5 views

PT-2022-4660 · Zyxel · Zyxel Nas326 +2

Name of the Vulnerable Software and Affected Versions: Zyxel NAS326 firmware versions prior to V5.21AAZF.12C0 Zyxel NAS540 firmware versions prior to V5.21AAZF.12C0 Zyxel NAS542 firmware versions prior to V5.21AAZF.12C0 Description: A format string vulnerability could allow an attacker to achieve...

9.8CVSS9.6AI score0.01532EPSS
Exploits0References8
CNNVD
CNNVD
added 2021/12/26 12:0 a.m.4 views

Netgear WNR3500L和NETGEAR 加密问题漏洞

Netgear WNR3500L and NETGEAR are both products of Netgear, Inc.WNR3500L is a wireless router.NETGEAR is a router. A hardware device that connects two or more networks and acts as a gateway between networks. A security vulnerability exists in NETGEAR devices that stems from the fact that some...

9.8CVSS8.3AI score0.00544EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/05/07 12:0 a.m.7 views

Tenda AC11 缓冲区错误漏洞

The Tenda AC11 is an AC1200 dual-band Gigabit WiFi router. A stack buffer overflow vulnerability exists in /gofrom/setwanType in the Tenda AC11 02.03.01.104CN and earlier firmware. An attacker can exploit this vulnerability to execute arbitrary code on the system via a specially crafted post...

10CVSS6.7AI score0.02905EPSS
Exploits1References1
OSV
OSV
added 2020/12/30 12:15 a.m.3 views

CVE-2020-35814

Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30,...

4.8CVSS5.8AI score0.00553EPSS
Exploits0References1
CNNVD
CNNVD
added 2020/12/29 12:0 a.m.5 views

Certain NETGEAR devices Cross-Site Scripting Vulnerability

Netgear NETGEAR is a router from the American company Netgear. It is a hardware device that connects two or more networks and acts as a gateway between networks. A cross-site scripting vulnerability exists in Certain NETGEAR devices and affects the following products and versions: D7800 before...

6.1CVSS5.6AI score0.00553EPSS
Exploits0References2
OSV
OSV
added 2020/04/16 7:15 p.m.4 views

CVE-2019-20717

Certain NETGEAR devices are affected by denial of service. This affects D3600 before 1.0.0.75, D6000 before 1.0.0.75, D7800 before 1.0.1.44, EX2700 before 1.0.1.52, EX6200v2 before 1.0.1.74, EX8000 before 1.0.1.180, R7500v2 before 1.0.3.38, R7800 before 1.0.2.58, RBK20 before 2.3.0.28, RBR20 befo...

6.5CVSS6AI score0.00458EPSS
Exploits0References1
CNVD
CNVD
added 2018/09/14 12:0 a.m.3 views

TP-Link TL-WR886N Denial of Service Vulnerability

The TP-Link TL-WR886N is a wireless router product from China P&L TP-LINK. A security vulnerability exists in TP-Link TL-WR886N version 6.0 2.3.4 and 7.0 1.1.0. An attacker can exploit the vulnerability by sending a request with long JSON data to cause the router service to crash...

6.5CVSS6.5AI score0.0104EPSS
Exploits1References1
OSV
OSV
added 2017/07/07 1:29 p.m.3 views

CVE-2017-2186

HOME SPOT CUBE2 firmware V101 and earlier allows an attacker to bypass authentication to load malicious firmware via WebUI...

8.8CVSS5.8AI score0.01033EPSS
Exploits0References3
0day.today
0day.today
added 2016/11/23 12:0 a.m.124 views

Dlink DIR Routers - Unauthenticated HNAP Login Stack Buffer Overflow (Metasploit) Exploit

Exploit for hardware platform in category remote exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' Payload working status: MIPS: - all valid payloads working the ones that we are able to send...

9.2AI score0.79947EPSS
Exploits6
Rows per page
Query Builder