Latest CVE Feed
-
9.8
CRITICALCVE-2025-41652
The devices are vulnerable to an authentication bypass due to flaws in the authorization mechanism. An unauthenticated remote attacker could exploit this weakness by performing brute-force attacks to guess valid credentials or by using MD5 collision techn... Read more
Affected Products :- Published: May. 27, 2025
- Modified: Aug. 22, 2025
-
9.8
CRITICALCVE-2024-6788
A remote unauthenticated attacker can use the firmware update feature on the LAN interface of the device to reset the password for the predefined, low-privileged user “user-app” to the default password.... Read more
- Published: Aug. 13, 2024
- Modified: Aug. 22, 2025
-
7.5
HIGHCVE-2002-20001
The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)at or D(HE)ater att... Read more
Affected Products : big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system big-ip_fraud_protection_service big-ip_global_traffic_manager big-ip_link_controller big-ip_local_traffic_manager +41 more products- EPSS Score: %11.63
- Published: Nov. 11, 2021
- Modified: Aug. 22, 2025
-
7.5
HIGHCVE-2022-32743
Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could permit unprivileged users to write it.... Read more
- EPSS Score: %0.84
- Published: Sep. 01, 2022
- Modified: Aug. 22, 2025
-
8.2
HIGHCVE-2025-41654
An unauthenticated remote attacker can access information about running processes via the SNMP protocol. The amount of returned data can trigger a reboot by the watchdog.... Read more
Affected Products :- Published: May. 26, 2025
- Modified: Aug. 22, 2025
-
9.1
CRITICALCVE-2024-28751
An high privileged remote attacker can enable telnet access that accepts hardcoded credentials.... Read more
Affected Products :- Published: Jul. 09, 2024
- Modified: Aug. 22, 2025
-
8.8
HIGHCVE-2024-7129
The Appointment Booking Calendar WordPress plugin before 1.6.7.43 does not escape template syntax provided via user input, leading to Twig Template Injection which further exploited can result to remote code Execution by high privilege such as admins... Read more
Affected Products : simply_schedule_appointments- Published: Sep. 13, 2024
- Modified: Aug. 22, 2025
-
6.5
MEDIUMCVE-2024-6758
Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a remote attacker with low privileges to save unauthorized protection assignments.... Read more
- Published: Aug. 12, 2024
- Modified: Aug. 22, 2025
-
7.5
HIGHCVE-2024-6477
The UsersWP WordPress plugin before 1.2.12 uses predictable filenames when an admin generates an export, which could allow unauthenticated attackers to download them and retrieve sensitive information such as IP, username, and email address... Read more
Affected Products : userswp- Published: Aug. 03, 2024
- Modified: Aug. 22, 2025
-
6.5
MEDIUMCVE-2024-1287
The pmpro-member-directory WordPress plugin before 1.2.6 does not prevent users with at least the contributor role from leaking other users' sensitive information, including password hashes via an SQLi vector.... Read more
- Published: Jul. 30, 2024
- Modified: Aug. 22, 2025
-
5.4
MEDIUMCVE-2024-1706
A vulnerability was determined in ZKTeco ZKBio Access IVS up to 3.3.2. This impacts an unknown function of the component Department Name Search Bar. This manipulation with the input <marquee>hi causes cross site scripting. Remote exploitation of the attac... Read more
Affected Products : zkbio_access_ivs- Published: Feb. 21, 2024
- Modified: Aug. 22, 2025
-
5.7
MEDIUMCVE-2024-7698
A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks.... Read more
Affected Products : tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware fl_mguard_rs4004_tx\/dtx_firmware fl_mguard_rs4004_tx\/dtx_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware fl_mguard_centerport_vpn-1000_firmware fl_mguard_core_tx_firmware fl_mguard_core_tx_vpn_firmware fl_mguard_delta_tx\/tx_firmware +62 more products- Published: Sep. 10, 2024
- Modified: Aug. 22, 2025
-
7.5
HIGHCVE-2024-6421
An unauthenticated remote attacker can read out sensitive device information through a incorrectly configured FTP service.... Read more
- Published: Jul. 10, 2024
- Modified: Aug. 22, 2025
-
8.4
HIGHCVE-2024-45271
An unauthenticated local attacker can gain admin privileges by deploying a config file due to improper input validation.... Read more
- Published: Oct. 15, 2024
- Modified: Aug. 22, 2025
-
8.1
HIGHCVE-2024-43393
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP ... Read more
Affected Products : tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware fl_mguard_rs4004_tx\/dtx_firmware fl_mguard_rs4004_tx\/dtx_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware fl_mguard_centerport_vpn-1000_firmware fl_mguard_core_tx_firmware fl_mguard_core_tx_vpn_firmware fl_mguard_delta_tx\/tx_firmware +62 more products- Published: Sep. 10, 2024
- Modified: Aug. 22, 2025
-
8.1
HIGHCVE-2024-43392
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP ... Read more
Affected Products : tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware fl_mguard_rs4004_tx\/dtx_firmware fl_mguard_rs4004_tx\/dtx_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware fl_mguard_centerport_vpn-1000_firmware fl_mguard_core_tx_firmware fl_mguard_core_tx_vpn_firmware fl_mguard_delta_tx\/tx_firmware +56 more products- Published: Sep. 10, 2024
- Modified: Aug. 22, 2025
-
8.1
HIGHCVE-2024-43391
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SRC_IP environment variable which can lead to a DoS.... Read more
Affected Products : tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware fl_mguard_rs4004_tx\/dtx_firmware fl_mguard_rs4004_tx\/dtx_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware fl_mguard_centerport_vpn-1000_firmware fl_mguard_core_tx_firmware fl_mguard_core_tx_vpn_firmware fl_mguard_delta_tx\/tx_firmware +62 more products- Published: Sep. 10, 2024
- Modified: Aug. 22, 2025
-
8.1
HIGHCVE-2024-43390
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.... Read more
Affected Products : tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware fl_mguard_rs4004_tx\/dtx_firmware fl_mguard_rs4004_tx\/dtx_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware fl_mguard_centerport_vpn-1000_firmware fl_mguard_core_tx_firmware fl_mguard_core_tx_vpn_firmware fl_mguard_delta_tx\/tx_firmware +62 more products- Published: Sep. 10, 2024
- Modified: Aug. 22, 2025
-
8.1
HIGHCVE-2024-43389
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.... Read more
Affected Products : tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware fl_mguard_rs4004_tx\/dtx_firmware fl_mguard_rs4004_tx\/dtx_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware fl_mguard_centerport_vpn-1000_firmware fl_mguard_core_tx_firmware fl_mguard_core_tx_vpn_firmware fl_mguard_delta_tx\/tx_firmware +62 more products- Published: Sep. 10, 2024
- Modified: Aug. 22, 2025
-
8.8
HIGHCVE-2024-43388
A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation.... Read more
Affected Products : tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware fl_mguard_rs4004_tx\/dtx_firmware fl_mguard_rs4004_tx\/dtx_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware fl_mguard_centerport_vpn-1000_firmware fl_mguard_core_tx_firmware fl_mguard_core_tx_vpn_firmware fl_mguard_delta_tx\/tx_firmware +62 more products- Published: Sep. 10, 2024
- Modified: Aug. 22, 2025