6.4

CVSS3.1

CVE-2025-47819 -

Flock Safety Gunshot Detection devices before 1.3 have an on-chip debug interface with improper access control.

πŸ“… Published: June 27, 2025, midnight πŸ”„ Last Modified: Oct. 24, 2025, 5:53 p.m.

2.2

CVSS3.1

CVE-2025-47818 -

Flock Safety Gunshot Detection devices before 1.3 have a hard-coded password for a connection.

πŸ“… Published: June 27, 2025, midnight πŸ”„ Last Modified: Oct. 24, 2025, 5:58 p.m.

6.3

CVSS3.1

CVE-2025-45729 -

D-Link DIR-823-Pro 1.02 has improper permission control, allowing unauthorized users to turn on and access Telnet services.

πŸ“… Published: June 27, 2025, midnight πŸ”„ Last Modified: July 1, 2025, 6:16 p.m.

7.5

CVSS3.1

CVE-2025-45851 -

An issue in Hikvision DS-2CD1321-I V5.7.21 build 230819 allows attackers to cause a Denial of Service (DoS) via sending a crafted POST request to the endpoint /ISAPI/Security/challenge. The vendor has stated that upgrading to V5.7.23_SP2 fixes the issue.

πŸ“… Published: June 27, 2025, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.3

CVSS4.0

CVE-2025-6736 - juzaweb CMS Add New Themes Page install improper authorization

A vulnerability classified as critical was found in juzaweb CMS 3.4.2. Affected by this vulnerability is an unknown functionality of the file /admin-cp/theme/install of the component Add New Themes Page. The manipulation leads to improper authorization. The attack can be launched remotely. The expl…

πŸ“… Published: June 26, 2025, 11:31 p.m. πŸ”„ Last Modified: July 11, 2025, 2:22 p.m.

5.3

CVSS4.0

CVE-2025-6735 - juzaweb CMS Import Page imports improper authorization

A vulnerability classified as critical has been found in juzaweb CMS 3.4.2. Affected is an unknown function of the file /admin-cp/imports of the component Import Page. The manipulation leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed to t…

πŸ“… Published: June 26, 2025, 11:31 p.m. πŸ”„ Last Modified: July 11, 2025, 2:22 p.m.

8.7

CVSS4.0

CVE-2025-6734 - UTT HiPER 840G API formP2PLimitConfig sub_484E40 buffer overflow

A vulnerability was found in UTT HiPER 840G up to 3.1.1-190328. It has been rated as critical. This issue affects the function sub_484E40 of the file /goform/formP2PLimitConfig of the component API. The manipulation of the argument except leads to buffer overflow. The attack may be initiated remote…

πŸ“… Published: June 26, 2025, 11 p.m. πŸ”„ Last Modified: Jan. 8, 2026, 7:44 p.m.

9.8

CVSS3.1

CVE-2025-3699 -

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation G-50 all versions, G-50-W all versions, G-50A all versions, GB-50 all versions, GB-50A all versions, GB-24A all versions, G-150AD all versions, AG-150A-A all versions, AG-150A-J all versions, GB-50AD all v…

πŸ“… Published: June 26, 2025, 10:40 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.7

CVSS4.0

CVE-2025-6733 - UTT HiPER 840G API formConfigDnsFilterGlobal sub_416928 buffer overflow

A vulnerability was found in UTT HiPER 840G up to 3.1.1-190328. It has been declared as critical. This vulnerability affects the function sub_416928 of the file /goform/formConfigDnsFilterGlobal of the component API. The manipulation of the argument GroupName leads to buffer overflow. The attack ca…

πŸ“… Published: June 26, 2025, 10:31 p.m. πŸ”„ Last Modified: Jan. 8, 2026, 7:45 p.m.

8.7

CVSS4.0

CVE-2025-6732 - UTT HiPER 840G API setSysAdm strcpy buffer overflow

A vulnerability was found in UTT HiPER 840G up to 3.1.1-190328. It has been classified as critical. This affects the function strcpy of the file /goform/setSysAdm of the component API. The manipulation of the argument passwd1 leads to buffer overflow. It is possible to initiate the attack remotely.…

πŸ“… Published: June 26, 2025, 9:31 p.m. πŸ”„ Last Modified: Jan. 8, 2026, 7:45 p.m.
Total resulsts: 349182
Page 4873 of 34,919
Β« previous page Β» next page
Filters