Lucene search
K

16831 matches found

NVD
NVD
added 2025/06/11 9:15 a.m.9 views

CVE-2025-41662

Rejected reason: CVE-2025-41662 is considered redundant or unnecessary and thus should be withdrawn. Instead, a new CVE CVE-2025-41687 has been reserved to better reflect the updated analysis...

Exploits0
Positive Technologies
Positive Technologies
added 2025/06/11 12:0 a.m.7 views

PT-2025-25186 · Weidmueller · Ie-Sr-2Tx-Wl +2

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to a lack of Cross-Site Request Forgery CSRF protection in the Main Web...

8.8CVSS7.4AI score0.00256EPSS
Exploits0References13
CNNVD
CNNVD
added 2025/06/11 12:0 a.m.4 views

Weidmueller Interface IE-SR-2TX-WL 跨站请求伪造漏洞

The Weidmueller Interface IE-SR-2TX-WL is an industrial security router from Weidmueller Interface, Germany. The Weidmueller Interface IE-SR-2TX-WL suffers from a cross-site request forgery vulnerability that stems from a lack of CSRF protection in the main web interface, which could allow an...

8.8CVSS7.6AI score0.00256EPSS
Exploits0References2
NVD
NVD
added 2025/06/10 4:15 p.m.13 views

CVE-2025-40591

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.5, RUGGEDCOM ROX MX5000RE All versions V2.16.5, RUGGEDCOM ROX RX1400 All versions V2.16.5, RUGGEDCOM ROX RX1500 All versions V2.16.5, RUGGEDCOM ROX RX1501 All versions V2.16.5, RUGGEDCOM ROX RX1510 All versions V2.16.5...

8.3CVSS0.01314EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/10 3:17 p.m.4 views

CVE-2025-40591

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.5, RUGGEDCOM ROX MX5000RE All versions V2.16.5, RUGGEDCOM ROX RX1400 All versions V2.16.5, RUGGEDCOM ROX RX1500 All versions V2.16.5, RUGGEDCOM ROX RX1501 All versions V2.16.5, RUGGEDCOM ROX RX1510 All versions V2.16.5...

8.3CVSS7.6AI score0.01314EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.7 views

PT-2025-24682

Name of the Vulnerable Software and Affected Versions OctoPrint versions up to and including 1.11.1 Description The issue affects a web interface for controlling consumer 3D printers, allowing an attacker with the FILE UPLOAD permission to exfiltrate files from the host by moving them into the...

5.4CVSS5.8AI score0.00256EPSS
Exploits0References10
NVD
NVD
added 2025/06/09 10:15 p.m.6 views

CVE-2025-30184

CyberData 011209 Intercom could allow an unauthenticated user access to the Web Interface through an alternate path...

9.8CVSS0.00467EPSS
Exploits0References1
OSV
OSV
added 2025/06/09 10:15 p.m.5 views

CVE-2025-30184

CyberData 011209 Intercom could allow an unauthenticated user access to the Web Interface through an alternate path...

9.3CVSS5.8AI score0.00467EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/09 10:5 p.m.14 views

CVE-2025-30184 CyberData 011209 SIP Emergency Intercom Authentication Bypass Using an Alternate Path or Channel

CyberData 011209 Intercom could allow an unauthenticated user access to the Web Interface through an alternate path...

9.8CVSS0.00467EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/09 10:5 p.m.2 views

CVE-2025-30184 CyberData 011209 SIP Emergency Intercom Authentication Bypass Using an Alternate Path or Channel

CyberData 011209 Intercom could allow an unauthenticated user access to the Web Interface through an alternate path...

9.8CVSS9.6AI score0.00467EPSS
Exploits0References1
CVE
CVE
added 2025/06/09 10:5 p.m.59 views

CVE-2025-30184

Summary (CVE-2025-30184) CyberData 011209 Intercom is vulnerable to an unauthenticated access to the Web Interface via an alternate path. Public disclosures across NVD, Red Hat, CNNVD, CVE list, and PT Security confirm an authentication bypass/vector against the Intercom’s web interface, with CVS...

9.8CVSS9.6AI score0.00467EPSS
Exploits0References1Affected Software1
Mageia
Mageia
added 2025/06/09 6:14 p.m.13 views

Updated cockpit packages fix security vulnerability & bug

Mageia's internal bug: In the current version you can't login in the web interface with firefox or chromium-browser packaged by Mageia. This update fixes the issue, but it is reported that could need to reboot and clear cookies from your browser. A flaw was found in the cockpit package. This flaw...

3.2CVSS4.3AI score0.00266EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/09 9:31 a.m.6 views

CVE-2025-5871 Papendorf SOL Connect Center Web Interface missing authentication

A vulnerability was found in Papendorf SOL Connect Center 3.3.0.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Web Interface. The manipulation leads to missing authentication. The attack may be launched remotely. The exploit has been disclos...

6.9CVSS5.5AI score0.00414EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/06/09 9:31 a.m.23 views

CVE-2025-5871 Papendorf SOL Connect Center Web Interface missing authentication

A vulnerability was found in Papendorf SOL Connect Center 3.3.0.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Web Interface. The manipulation leads to missing authentication. The attack may be launched remotely. The exploit has been disclos...

6.9CVSS0.00414EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/06/09 9:0 a.m.9 views

CVE-2025-5870 TRENDnet TV-IP121W Web Interface setup.cgi improper authentication

A vulnerability has been found in TRENDnet TV-IP121W 1.1.1 Build 36 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/setup.cgi of the component Web Interface. The manipulation leads to improper authentication. The attack can be launched...

7.5CVSS7.4AI score0.00402EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.3 views

The vulnerability of the ping tool in the web interface of the microprogramming software for routing and switching platform RUGGEDCOM ROX series, MX (MX5000, MX5000RE) and RX (RX1400, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, and RX5000), allows a hacker to execute arbitrary code.

The vulnerability of the ping tool in the web interface of the microprogramming software for routing and switching platform RUGGEDCOM ROX models series MX MX5000, MX5000RE and RX RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, and RX5000 is related to the absence of a mechanism to...

9.9CVSS5.9AI score0.01168EPSS
Exploits0References3Affected Software11
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.6 views

The vulnerability of the ping tool in the web interface of the microprogramming software for routing and switching platform RUGGEDCOM ROX series, MX (MX5000, MX5000RE) and RX (RX1400, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, and RX5000), allows a hacker to execute arbitrary code.

The vulnerability of the ping tool in the web interface of the microprogramming software for routing and switching platform RUGGEDCOM ROX models series MX MX5000, MX5000RE and RX RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, and RX5000 is related to the absence of a mechanism to...

9.9CVSS5.9AI score0.01168EPSS
Exploits0References3Affected Software11
CNNVD
CNNVD
added 2025/06/09 12:0 a.m.2 views

TOTOLINK T10 安全漏洞

The TOTOLINK T10 is a wireless router from TOTOLINK. A buffer overflow vulnerability exists in TOTOLINK T10 version 4.1.8cu.5207, which affects the function setWiFiRepeaterCfg in the /cgi-bin/cstecgi.cgi file of the component's POST request handler.An attacker can exploit the vulnerability by...

9CVSS7.5AI score0.07415EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/06/09 12:0 a.m.1 views

TOTOLINK T10 安全漏洞

The TOTOLINK T10 is a wireless router manufactured by TOTOLINK. A buffer overflow vulnerability exists in TOTOLINK T10 version 4.1.8cu.5207, which affects the function setWiFiMeshName in the /cgi-bin/cstecgi.cgi file of the component's POST request handler.An attacker can exploit the vulnerabilit...

9CVSS7.4AI score0.07237EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/06/09 12:0 a.m.4 views

PT-2025-24417 · Unknown · Papendorf Sol Connect Center

Name of the Vulnerable Software and Affected Versions: Papendorf SOL Connect Center version 3.3.0.0 Description: A vulnerability was found in the Web Interface component, leading to missing authentication. This issue can be exploited remotely. The exploit has been disclosed to the public...

6.9CVSS5.2AI score0.00414EPSS
Exploits0References8
Rows per page
Query Builder