CVE Feed
- CVE ID : CVE-2025-23123 Published : May 19, 2025, 2:15 a.m. | 4 hours, 46 minutes ago Description : A malicious actor with access to the management network could execute a remote code execution (RCE) by exploiting a heap buffer overflow vulnerability in the UniFi Protect Cameras (Version 4.75.43 and earlier) firmware. Severity: 10.0 | CRITICAL Visit […]
- CVE ID : CVE-2025-4897 Published : May 18, 2025, 10:15 p.m. | 8 hours, 46 minutes ago Description : A vulnerability was found in Tenda A15 15.13.07.09/15.13.07.13. It has been classified as critical. This affects an unknown part of the file /goform/multimodalAdd of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. It is […]
- CVE ID : CVE-2025-4896 Published : May 18, 2025, 9:15 p.m. | 9 hours, 46 minutes ago Description : A vulnerability was found in Tenda AC10 16.03.10.13 and classified as critical. Affected by this issue is some unknown functionality of the file /goform/UserCongratulationsExec. The manipulation of the argument getuid leads to buffer overflow. The attack may be […]
- CVE ID : CVE-2025-4843 Published : May 18, 2025, 12:15 a.m. | 1 day, 6 hours ago Description : A vulnerability was found in D-Link DCS-932L 2.18.01. It has been classified as critical. This affects the function SubUPnPCSInit of the file /sbin/udev. The manipulation of the argument CameraName leads to stack-based buffer overflow. It is possible to […]
- CVE ID : CVE-2025-4841 Published : May 17, 2025, 11:15 p.m. | 1 day, 7 hours ago Description : A vulnerability was found in D-Link DCS-932L 2.18.01 and classified as critical. Affected by this issue is the function sub_404780 of the file /bin/gpio. The manipulation of the argument CameraName leads to stack-based buffer overflow. The attack may […]
- CVE ID : CVE-2025-4842 Published : May 17, 2025, 11:15 p.m. | 1 day, 7 hours ago Description : A vulnerability was found in D-Link DCS-932L 2.18.01. It has been declared as critical. This vulnerability affects the function isUCPCameraNameChanged of the file /sbin/ucp. The manipulation of the argument CameraName leads to stack-based buffer overflow. The attack can […]
- CVE ID : CVE-2025-4835 Published : May 17, 2025, 8:15 p.m. | 1 day, 10 hours ago Description : A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formWlanRedirect of the component HTTP POST Request Handler. The manipulation […]
- CVE ID : CVE-2025-47945 Published : May 17, 2025, 7:15 p.m. | 1 day, 11 hours ago Description : Donetick an open-source app for managing tasks and chores. Prior to version 0.1.44, the application uses JSON Web Tokens (JWT) for authentication, but the signing secret has a weak default value. While the responsibility is left to the […]
- CVE ID : CVE-2025-4834 Published : May 17, 2025, 7:15 p.m. | 1 day, 11 hours ago Description : A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been classified as critical. Affected is an unknown function of the file /boafrm/formSetLg of the component HTTP POST Request Handler. The manipulation of the argument […]
- CVE ID : CVE-2025-4833 Published : May 17, 2025, 6:15 p.m. | 1 day, 12 hours ago Description : A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615 and classified as critical. This issue affects some unknown processing of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of the argument submit-url […]