CVE Vulnerabilities
CVE vulnerability database enriched with CISA KEV and NVD data
| CVE ID | CVSS | Severity | KEV | Sightings |
|---|---|---|---|---|
| CVE-2025-6542 An arbitrary OS command may be executed on the product by a remote unauthenticated attacker. | 9.8 | CRITICAL | — | 0 |
| CVE-2025-54539 A Deserialization of Untrusted Data vulnerability exists in the Apache ActiveMQ NMS AMQP Client. This issue affects all versions of Apache ActiveMQ NMS AMQP up to and including 2.3.0, when establishi... | 9.8 | CRITICAL | — | 0 |
| CVE-2025-7851 An attacker may obtain the root shell on the underlying OS system with the restricted conditions on Omada gateways. | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13017 The DHCPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-dhcp6.c:dhcp6opt_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2025-2538 A hardcoded credential vulnerability exists in a specific deployment pattern for Esri Portal for ArcGIS versions 11.4 and below that may allow a remote unauthenticated attacker to gain administrative ... | 9.8 | CRITICAL | — | 0 |
| CVE-2024-42936 The mqlink.elf is service component in Ruijie RG-EW300N with firmware ReyeeOS 1.300.1422 is vulnerable to Remote Code Execution via a modified MQTT broker message. | 9.8 | CRITICAL | — | 0 |
| CVE-2025-0890 **UNSUPPORTED WHEN ASSIGNED** Insecure default credentials for the Telnet function in the legacy DSL CPE Zyxel VMG4325-B10A firmware version 1.00(AAFR.4)C0_20170615 could allow an attacker to log in t... | 9.8 | CRITICAL | — | 0 |
| CVE-2017-20208 The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to PHP Object Injection in all versions up to 3.7.9.3 (exclusive) via d... | 9.8 | CRITICAL | — | 0 |
| CVE-2025-56316 A SQL injection vulnerability in the content_title parameter of the /cms/content/list endpoint in MCMS 5.5.0 allows remote attackers to execute arbitrary SQL queries via unsanitized input in the FreeM... | 9.8 | CRITICAL | — | 0 |
| CVE-2025-11948 Document Management System developed by Excellent Infotek has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabl... | 9.8 | CRITICAL | — | 0 |
| CVE-2025-10611 Due to an insufficient access control implementation in multiple WSO2 Products, authentication and authorization checks for certain REST APIs can be bypassed, allowing them to be invoked without prope... | 9.8 | CRITICAL | — | 0 |
| CVE-2025-62586 OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset the administrator password. Fixed in FOIAXpress version 11.13.2.0. | 9.8 | CRITICAL | — | 0 |
| CVE-2025-34516 Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain a use of default credentials vulnerability that allows an unauthenticated attacker to obtain remote access. Ilevia has declined to servic... | 9.8 | CRITICAL | — | 0 |
| CVE-2025-34515 Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an execution with unnecessary privileges vulnerability in sync_project.sh that allows an attacker to escalate privileges to root. Ilevia ... | 9.8 | CRITICAL | — | 0 |
| CVE-2025-34513 Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an OS command injection vulnerability in mbus_build_from_csv.php that allows an unauthenticated attacker to execute arbitrary code. Ilevi... | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13002 The AODV parser in tcpdump before 4.9.2 has a buffer over-read in print-aodv.c:aodv_extension(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13006 The L2TP parser in tcpdump before 4.9.2 has a buffer over-read in print-l2tp.c, several functions. | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13010 The BEEP parser in tcpdump before 4.9.2 has a buffer over-read in print-beep.c:l_strnstart(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13013 The ARP parser in tcpdump before 4.9.2 has a buffer over-read in print-arp.c, several functions. | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13014 The White Board protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-wb.c:wb_prep(), several functions. | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13015 The EAP parser in tcpdump before 4.9.2 has a buffer over-read in print-eap.c:eap_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13016 The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2024-12847 NETGEAR DGN1000 before 1.1.00.48 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can execute arbitrary operating system commands as root by sending craft... | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13019 The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13020 The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13021 The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13022 The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printroute(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13024 The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2025-56221 A lack of rate limiting in the login mechanism of SigningHub v8.6.8 allows attackers to bypass authentication via a brute force attack. | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13025 The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13027 The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_mgmt_addr_tlv_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13028 The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootp_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13031 The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a buffer over-read in print-frag6.c:frag6_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13041 The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_nodeinfo_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13034 The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2025-2474 Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition or execute code in the context of the pro... | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13035 The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_id(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13037 The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printts(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13038 The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13040 The MPTCP parser in tcpdump before 4.9.2 has a buffer over-read in print-mptcp.c, several functions. | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13045 The VQP parser in tcpdump before 4.9.2 has a buffer over-read in print-vqp.c:vqp_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2025-49831 An attacker of Secrets Manager, Self-Hosted installations that route traffic from Secrets Manager to AWS through a misconfigured network device can reroute authentication requests to a malicious serve... | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13047 The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13048 The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13050 The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c:rpki_rtr_pdu_print(). | 9.8 | CRITICAL | — | 0 |
| CVE-2023-26226 A use after free memory corruption issue exists in Yandex Browser for Desktop prior to version 24.4.0.682 | 9.8 | CRITICAL | — | 0 |
| CVE-2017-13053 The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_rt_routing_info(). | 9.8 | CRITICAL | — | 0 |
| CVE-2025-48057 Icinga 2 is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. Prior to versions 2.12.12, 2.13.12, and 2.1... | 9.8 | CRITICAL | — | 0 |
| CVE-2025-44893 FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the ruleNamekey parameter in the web_acl_mgmt_Rules_Apply_post function. | 9.8 | CRITICAL | — | 0 |
| CVE-2025-49827 Conjur provides secrets management and application identity for infrastructure. Conjur OSS versions 1.19.5 through 1.22.0 and Secrets Manager, Self-Hosted (formerly known as Conjur Enterprise) 13.1 th... | 9.8 | CRITICAL | — | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.