Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

17 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-17126

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.0027EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/06/08 11:58 a.m.4 views

CVE-2025-41362

Code injection vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicious payload in software that will run in the victim's browser. Exploiting this vulnerability requires authenticating to the device and executing certain commands that...

5.3CVSS7.7AI score0.0027EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/06/08 11:58 a.m.4 views

CVE-2025-41364

Stored Cross-Site Scripting XSS vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicious JavaScript payload in software that will run in the victim's browser. Exploiting this vulnerability requires authenticating to the device and...

5.1CVSS5.8AI score0.0027EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/06/08 11:58 a.m.7 views

CVE-2025-41365

Code injection vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicious payload in software that will run in the victim's browser. Exploiting this vulnerability requires authenticating to the device and executing certain commands that...

5.1CVSS7.7AI score0.00297EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/06/08 11:58 a.m.5 views

CVE-2025-41363

In IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04, a configuration error has been detected in cross-origin resource sharing CORS. Exploiting this vulnerability requires authenticating to the device and executing certain commands that can be executed with view permission...

5.3CVSS7.3AI score0.00236EPSS
Exploits0References1
NVD
NVDadded 2025/06/06 12:15 p.m.5 views

CVE-2025-41363

In IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04, a configuration error has been detected in cross-origin resource sharing CORS. Exploiting this vulnerability requires authenticating to the device and executing certain commands that can be executed with view permission...

5.3CVSS0.00236EPSS
Exploits0References1
NVD
NVDadded 2025/06/06 12:15 p.m.10 views

CVE-2025-41364

Stored Cross-Site Scripting XSS vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicious JavaScript payload in software that will run in the victim's browser. Exploiting this vulnerability requires authenticating to the device and...

5.1CVSS0.0027EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/06/06 11:50 a.m.3 views

CVE-2025-41366 CORS vulnerability in IDF and ZLF

In IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04, a configuration error has been detected in cross-origin resource sharing CORS. Exploiting this vulnerability requires authenticating to the device and executing certain commands that can only be executed with permissions higher than the view...

5.1CVSS6.6AI score0.0026EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/06/06 11:50 a.m.6 views

CVE-2025-41366 CORS vulnerability in IDF and ZLF

In IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04, a configuration error has been detected in cross-origin resource sharing CORS. Exploiting this vulnerability requires authenticating to the device and executing certain commands that can only be executed with permissions higher than the view...

5.1CVSS0.0026EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/06/06 11:49 a.m.6 views

CVE-2025-41365 Code injection vulnerability in IDF and ZLF

Code injection vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicious payload in software that will run in the victim's browser. Exploiting this vulnerability requires authenticating to the device and executing certain commands that...

5.1CVSS7AI score0.00297EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/06/06 11:49 a.m.11 views

CVE-2025-41365 Code injection vulnerability in IDF and ZLF

Code injection vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicious payload in software that will run in the victim's browser. Exploiting this vulnerability requires authenticating to the device and executing certain commands that...

5.1CVSS0.00297EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/06/06 11:47 a.m.8 views

CVE-2025-41363 CORS vulnerability in IDF and ZLF

In IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04, a configuration error has been detected in cross-origin resource sharing CORS. Exploiting this vulnerability requires authenticating to the device and executing certain commands that can be executed with view permission...

5.3CVSS0.00236EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/06/06 11:46 a.m.13 views

CVE-2025-41362 Code injection vulnerability in IDF and ZLF

Code injection vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicious payload in software that will run in the victim's browser. Exploiting this vulnerability requires authenticating to the device and executing certain commands that...

5.3CVSS0.0027EPSS
Exploits0References1
CVE
CVEadded 2025/06/06 11:46 a.m.32 views

CVE-2025-41362

CVE-2025-41362 affects IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. The issue is a code injection vulnerability that could allow an attacker to store a malicious payload that runs in the victim’s browser. Exploitation requires authentication to the device and execution of certain commands with vi...

5.3CVSS7AI score0.0027EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/06/06 12:0 a.m.2 views

PT-2025-24096 · Idf +1 · Idf +1

Name of the Vulnerable Software and Affected Versions: IDF versions 0.10.0-0C03-03 ZLF versions 0.10.0-0C03-04 Description: The devices improperly handle TLS requests associated with PROCOME sockets. This can cause the device to reboot, resulting in a denial of service when TLS requests are sent ...

8.3CVSS6.4AI score0.00211EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2025/06/06 12:0 a.m.4 views

PT-2025-24081 · Idf +1 · Idf +1

Name of the Vulnerable Software and Affected Versions: IDF versions 0.10.0-0C03-03 ZLF versions 0.10.0-0C03-04 Description: A configuration error has been detected in cross-origin resource sharing CORS in the affected software. This issue can be exploited by authenticating to the device and...

5.3CVSS6.6AI score0.00236EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/06/06 12:0 a.m.2 views

PT-2025-24080 · Idf +1 · Idf +1

Name of the Vulnerable Software and Affected Versions: IDF versions 0.10.0-0C03-03 ZLF versions 0.10.0-0C03-04 Description: This issue allows an attacker to store malicious payload in software that will run in the victim's browser. Exploiting this requires authenticating to the device and executi...

5.3CVSS6.2AI score0.0027EPSS
Exploits0References4
Rows per page
Query Builder