6.5
CVE-2025-3480 - MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability
MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of MedDream WEB DICOM Viewer. Authentication is not required to exploit this vulnera…
7.8
CVE-2025-3481 - MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerabi…
MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MedDream PACS Server. Authentication is not required to exploit this vulnerability. The specifi…
7.8
CVE-2025-3482 - MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerabi…
MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MedDream PACS Server. Authentication is not required to exploit this vulnerability. The specifi…
7.8
CVE-2025-3483 - MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerabi…
MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MedDream PACS Server. Authentication is not required to exploit this vulnerability. The specifi…
9.8
CVE-2025-3484 - MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerabi…
MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MedDream PACS Server. Authentication is not required to exploit this vulnerability. The specifi…
6.5
CVE-2025-3885 - Harman Becker MGU21 Bluetooth Improper Input Validation Denial-of-Service Vulnerability
Harman Becker MGU21 Bluetooth Improper Input Validation Denial-of-Service Vulnerability. This vulnerability allows network-adjacent attackers to create a denial-of-service condition on affected installations of Harman Becker MGU21 devices. Authentication is not required to exploit this vulnerabilit…
7.5
CVE-2025-3884 - Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability
Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Cloudera Hue. Authentication is not required to exploit this vulnerability. The specific flaw exists within th…
8.8
CVE-2025-3883 - eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execution Vulnerability
eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of eCharge Hardy Barth cPH2 charging stations. Authentication is not required to exploit this vulnerabil…
8.8
CVE-2025-3882 - eCharge Hardy Barth cPH2 nwcheckexec.php dest Command Injection Remote Code Execution Vulnerability
eCharge Hardy Barth cPH2 nwcheckexec.php dest Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of eCharge Hardy Barth cPH2 charging stations. Authentication is not required to exploit this…
8.8
CVE-2025-3881 - eCharge Hardy Barth cPH2 check_req.php ntp Command Injection Remote Code Execution Vulnerability
eCharge Hardy Barth cPH2 check_req.php ntp Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of eCharge Hardy Barth cPH2 charging stations. Authentication is not required to exploit this vu…