Latest CVE Feed
-
10.0
HIGHCVE-2019-16734
Use of default credentials for the TELNET server in Petwant PF-103 firmware 4.3.2.50 and Petalk AI 3.2.2.30 allows remote attackers to execute arbitrary system commands as the root user.... Read more
- EPSS Score: %3.51
- Published: Dec. 13, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-16735
A stack-based buffer overflow in processCommandUploadLog in libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to cause denial of service or run arbitrary code as the root user.... Read more
- EPSS Score: %2.82
- Published: Dec. 13, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-17364
The processCommandUploadLog() function of libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to execute arbitrary system commands as the root user.... Read more
- EPSS Score: %3.27
- Published: Dec. 13, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-18830
Barco ClickShare Button R9861500D01 devices before 1.9.0 allow OS Command Injection. The embedded 'dongle_bridge' program used to expose the functionalities of the ClickShare Button to a USB host, is vulnerable to OS command injection vulnerabilities. The... Read more
- EPSS Score: %3.35
- Published: Dec. 16, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-10516
Multiple read overflows in MM while decoding service accept,service reject,attach reject and MT detach in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music,... Read more
Affected Products : sdx55_firmware sdm660_firmware sm8150_firmware msm8996au_firmware apq8096au_firmware mdm9150_firmware qcs605_firmware sdx24_firmware apq8009_firmware mdm9650_firmware +94 more products- EPSS Score: %0.33
- Published: Dec. 18, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-10525
Buffer overflow during SIB read when network configures complete sib list along with first and last segment of other SIB in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdra... Read more
Affected Products : sdx55_firmware sdm660_firmware sm8150_firmware msm8996au_firmware apq8096au_firmware mdm9150_firmware qcs605_firmware sdx24_firmware apq8009_firmware mdm9650_firmware +94 more products- EPSS Score: %0.36
- Published: Dec. 18, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-11399
An issue was discovered on TRENDnet TEW-651BR 2.04B1, TEW-652BRP 3.04b01, and TEW-652BRU 1.00b12 devices. OS command injection occurs through the get_set.ccp lanHostCfg_HostName_1.1.1.0.0 parameter.... Read more
Affected Products : tew-651br_firmware tew-652brp_firmware tew-652bru_firmware tew-652brp tew-651br tew-652bru- EPSS Score: %4.96
- Published: Dec. 18, 2019
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2019-4716
IBM Planning Analytics 2.0.0 through 2.0.8 is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "admin", and then execute code as root or SYSTEM via TM1 scripting. IBM X-Force ID: 172094.... Read more
Affected Products : planning_analytics- Actively Exploited
- EPSS Score: %79.70
- Published: Dec. 18, 2019
- Modified: Feb. 07, 2025
-
10.0
HIGHCVE-2019-10774
php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.... Read more
Affected Products : php-shellcommand- EPSS Score: %1.11
- Published: Dec. 30, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2012-5878
Bulb Security Smartphone Pentest Framework (SPF) 0.1.2 through 0.1.4 allows remote attackers to execute arbitrary commands via shell metacharacters in the hostingPath parameter to (1) SEAttack.pl or (2) CSAttack.pl in frameworkgui/ or the (3) appURLPath p... Read more
Affected Products : smartphone_pentest_framework- EPSS Score: %10.61
- Published: Jan. 03, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2013-5122
Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access... Read more
- EPSS Score: %4.10
- Published: Jan. 07, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-19495
The web interface on the Technicolor TC7230 STEB 01.25 is vulnerable to DNS rebinding, which allows a remote attacker to configure the cable modem via JavaScript in a victim's browser. The attacker can then configure the cable modem to port forward the mo... Read more
- EPSS Score: %6.99
- Published: Jan. 08, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2014-1598
centurystar 7.12 ActiveX Control has a Stack Buffer Overflow... Read more
Affected Products : centurystar- EPSS Score: %0.38
- Published: Jan. 08, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2014-2650
Unify OpenStage / OpenScape Desk Phone IP before V3 R3.11.0 SIP has an OS command injection vulnerability in the web based management interface... Read more
- EPSS Score: %5.27
- Published: Jan. 09, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2014-2651
Unify OpenStage/OpenScape Desk Phone IP SIP before V3 R3.11.0 has an authentication bypass in the default mode of the Workpoint Interface... Read more
- EPSS Score: %0.40
- Published: Jan. 09, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2015-7874
Buffer overflow in the chat server in KiTTY Portable 0.65.0.2p and earlier allows remote attackers to execute arbitrary code via a long nickname.... Read more
Affected Products : kitty_portable- EPSS Score: %8.44
- Published: Jan. 15, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2015-5952
Directory traversal vulnerability in Thomson Reuters for FATCA before 5.2 allows remote attackers to execute arbitrary files via the item parameter.... Read more
Affected Products : fatca- EPSS Score: %2.15
- Published: Jan. 15, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2009-1120
EMC RepliStor Server Service before ESA-09-003 has a DoASOCommand Remote Code Execution Vulnerability. The flaw exists within the DoRcvRpcCall RPC function -exposed via the rep_srv.exe process- where the vulnerability is caused by an error when the rep_sr... Read more
Affected Products : emc_replistor- EPSS Score: %6.10
- Published: Jan. 15, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-10532
Null-pointer dereference issue can occur while calculating string length when source string length is zero in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice... Read more
Affected Products : sdm660_firmware sm8150_firmware sm8250_firmware sxr2130_firmware apq8096au_firmware qcs605_firmware apq8009_firmware msm8909w_firmware sdm429w_firmware sdx20_firmware +72 more products- EPSS Score: %0.33
- Published: Jan. 21, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-10611
Buffer overflow can occur while processing clip due to lack of check of object size before parsing in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snap... Read more
Affected Products : sa6155p_firmware sdm660_firmware sm8150_firmware sm8250_firmware sxr2130_firmware apq8096au_firmware qcs605_firmware apq8009_firmware msm8909w_firmware sdm429w_firmware +70 more products- EPSS Score: %0.43
- Published: Jan. 21, 2020
- Modified: Nov. 21, 2024