Lucene search
K

16826 matches found

ATTACKERKB
ATTACKERKB
added 2025/07/28 5:32 a.m.4 views

CVE-2025-8259

A vulnerability was identified in Vaelsys VaelsysV4 up to 5.1.0/5.4.0. Affected by this issue is the function executeDataObjectProc of the file /grid/vgridserver.php of the component Web interface. Such manipulation of the argument xajaxargs leads to os command injection. The attack can be execut...

9.8CVSS6.8AI score0.03247EPSS
Exploits1References8Affected Software1
RedhatCVE
RedhatCVE
added 2025/07/27 4:14 p.m.11 views

CVE-2025-3508

Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information...

6CVSS6.1AI score0.00925EPSS
Exploits0References1
OSV
OSV
added 2025/07/25 4:15 p.m.3 views

CVE-2025-3508

Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information...

6.5CVSS5.8AI score0.00925EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/25 3:58 p.m.8 views

CVE-2025-3508 Certain HP DesignJet products – Information disclosure

Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information...

6CVSS0.00925EPSS
Exploits0References1
CVE
CVE
added 2025/07/25 3:58 p.m.21 views

CVE-2025-3508

The CVE-2025-3508 entry concerns HP DesignJet printers where unauthenticated access to the printer’s web interface may disclose sensitive print job information. Affected product line is HP DesignJet; root cause is information disclosure through the web interface. Impact is information disclosure ...

6.5CVSS5.9AI score0.00925EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/25 3:58 p.m.3 views

CVE-2025-3508 Certain HP DesignJet products – Information disclosure

Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information...

6CVSS6.7AI score0.00925EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/25 3:25 p.m.3 views

CVE-2025-40596

A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service DoS or potentially results in code execution...

7.3CVSS7.9AI score0.56063EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/25 9:29 a.m.10 views

CVE-2025-41683

An authenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of improper sanitizing of user input in the Main Web Interface endpoint eventmailtest...

8.8CVSS8AI score0.00696EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/25 12:0 a.m.2 views

HP DesignJet 安全漏洞

HP DesignJet is a series of large format printers from Hewlett-Packard HP in the United States. A security vulnerability exists in HP DesignJet that originates from the potential disclosure of sensitive print job information through the printer's web interface, allowing unauthenticated users to...

6.5CVSS6.3AI score0.00925EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/07/25 12:0 a.m.6 views

PT-2025-30895 · Hewlett Packard · Hp Designjet

Name of the Vulnerable Software and Affected Versions: HP DesignJet products affected versions not specified Description: Certain HP DesignJet products may be vulnerable to information disclosure through the printer’s web interface. This allows unauthenticated users to view sensitive print job...

6CVSS5.9AI score0.00925EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/07/24 10:30 p.m.12 views

CVE-2025-41425

DuraComm SPM-500 DP-10iN-100-MU is vulnerable to a cross-site scripting attack. This could allow an attacker to prevent legitimate users from accessing the web interface...

8.1CVSS6.5AI score0.00337EPSS
Exploits0References1
OSV
OSV
added 2025/07/23 3:15 p.m.9 views

CVE-2025-40597

A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service DoS or potentially results in code execution...

7.5CVSS6.1AI score0.27599EPSS
Exploits0References1
NVD
NVD
added 2025/07/23 3:15 p.m.12 views

CVE-2025-40598

A Reflected cross-site scripting XSS vulnerability exists in the SMA100 series web interface, allowing a remote unauthenticated attacker to potentially execute arbitrary JavaScript code...

6.1CVSS0.53214EPSS
Exploits0References2
OSV
OSV
added 2025/07/23 3:15 p.m.8 views

CVE-2025-40596

A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service DoS or potentially results in code execution...

7.3CVSS6.1AI score0.56063EPSS
Exploits0References1
OSV
OSV
added 2025/07/23 3:15 p.m.11 views

CVE-2025-40598

A Reflected cross-site scripting XSS vulnerability exists in the SMA100 series web interface, allowing a remote unauthenticated attacker to potentially execute arbitrary JavaScript code...

6.1CVSS5.9AI score0.56063EPSS
Exploits0References2
NVD
NVD
added 2025/07/23 3:15 p.m.5 views

CVE-2025-40597

A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service DoS or potentially results in code execution...

7.5CVSS0.27599EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/23 2:49 p.m.7 views

CVE-2025-40598

A Reflected cross-site scripting XSS vulnerability exists in the SMA100 series web interface, allowing a remote unauthenticated attacker to potentially execute arbitrary JavaScript code...

0.53214EPSS
Exploits0References1
CVE
CVE
added 2025/07/23 2:49 p.m.31 views

CVE-2025-40598

The SMA100 series web interface is affected by three CVEs (CVE-2025-40598, CVE-2025-40597, CVE-2025-40596). CVE-2025-40598: Reflected XSS in the SMA100 web UI enables remote, unauthenticated attackers to potentially execute arbitrary JavaScript. CVE-2025-40597: Heap-based buffer overflow in the S...

6.1CVSS6.7AI score0.53214EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/07/23 2:48 p.m.33 views

CVE-2025-40597

Summary: CVE-2025-40597 is a heap-based buffer overflow in the SonicWall SMA100 series web interface, allowing remote, unauthenticated attackers to cause DoS or potentially execute code. Affected software: SonicWall SMA100 series (web interface). Impact: Denial of Service and potential code execu...

7.5CVSS7.6AI score0.27599EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/07/23 2:48 p.m.2 views

CVE-2025-40597

A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service DoS or potentially results in code execution...

7.5CVSS6.1AI score0.27599EPSS
Exploits0References2
Rows per page
Query Builder