6.7

CVSS3.1

CVE-2025-47336 - Use After Free in Camera Driver

Memory corruption while performing sensor register read operations.

๐Ÿ“… Published: Jan. 6, 2026, 10:48 p.m. ๐Ÿ”„ Last Modified: Jan. 27, 2026, 9:41 p.m.

6.7

CVSS3.1

CVE-2025-47335 - Buffer Copy Without Checking Size of Input in Camera Driver

Memory corruption while parsing clock configuration data for a specific hardware type.

๐Ÿ“… Published: Jan. 6, 2026, 10:48 p.m. ๐Ÿ”„ Last Modified: Jan. 27, 2026, 9:43 p.m.

6.7

CVSS3.1

CVE-2025-47334 - Buffer Copy Without Checking Size of Input in Camera Driver

Memory corruption while processing shared command buffer packet between camera userspace and kernel.

๐Ÿ“… Published: Jan. 6, 2026, 10:48 p.m. ๐Ÿ”„ Last Modified: Jan. 27, 2026, 10:03 p.m.

6.6

CVSS3.1

CVE-2025-47333 - Use After Free in HLOS

Memory corruption while handling buffer mapping operations in the cryptographic driver.

๐Ÿ“… Published: Jan. 6, 2026, 10:48 p.m. ๐Ÿ”„ Last Modified: Jan. 28, 2026, 4:44 p.m.

6.7

CVSS3.1

CVE-2025-47332 - Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver

Memory corruption while processing a config call from userspace.

๐Ÿ“… Published: Jan. 6, 2026, 10:48 p.m. ๐Ÿ”„ Last Modified: Jan. 28, 2026, 3:43 p.m.

6.1

CVSS3.1

CVE-2025-47331 - Buffer Over-read in Video

Information disclosure while processing a firmware event.

๐Ÿ“… Published: Jan. 6, 2026, 10:48 p.m. ๐Ÿ”„ Last Modified: Jan. 28, 2026, 4:52 p.m.

5.5

CVSS3.1

CVE-2025-47330 - Buffer Over-read in Video

Transient DOS while parsing video packets received from the video firmware.

๐Ÿ“… Published: Jan. 6, 2026, 10:48 p.m. ๐Ÿ”„ Last Modified: Jan. 28, 2026, 4:57 p.m.

4.8

CVSS4.0

CVE-2026-0642 - projectworlds House Rental and Property Listing complaint.php cross site scripting

A vulnerability was detected in projectworlds House Rental and Property Listing 1.0. This issue affects some unknown processing of the file /app/complaint.php. The manipulation of the argument Name results in cross site scripting. The attack may be launched remotely. The exploit is now public and mโ€ฆ

๐Ÿ“… Published: Jan. 6, 2026, 10:32 p.m. ๐Ÿ”„ Last Modified: April 18, 2026, 8:15 a.m.

3.7

CVSS3.1

CVE-2025-11235 - MOVEit Transfer REST API does not require current password in order to initiate the password changeโ€ฆ

Unverified Password Change vulnerability in Progress MOVEit Transfer on Windows (REST API modules).This issue affects MOVEit Transfer: from 2023.1.0 before 2023.1.3, from 2023.0.0 before 2023.0.8, from 2022.1.0 before 2022.1.11, from 2022.0.0 before 2022.0.10.

๐Ÿ“… Published: Jan. 6, 2026, 10:16 p.m. ๐Ÿ”„ Last Modified: Feb. 3, 2026, 4:54 p.m.

8.6

CVSS4.0

CVE-2025-15472 - TRENDnet TEW-811DRU httpdย  uapply.cgi setDeviceURLย  os command injection

A flaw has been found in TRENDnet TEW-811DRU 1.0.2.0. This affects the function setDeviceURLย  of the file uapply.cgi of the component httpdย . This manipulation of the argument DeviceURL causes os command injection. The attack can be initiated remotely. The exploit has been published and may be usedโ€ฆ

๐Ÿ“… Published: Jan. 6, 2026, 10:02 p.m. ๐Ÿ”„ Last Modified: Feb. 23, 2026, 8:22 a.m.
Total resulsts: 346585
Page 2005 of 34,659
ยซ previous page ยป next page
Filters