Search

Search Results (363619 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-44191 1 Netgear 2 R7000p, R7000p Firmware 2025-04-29 9.8 Critical
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameters KEY1 and KEY2.
CVE-2022-44190 1 Netgear 2 R7000p, R7000p Firmware 2025-04-29 9.8 Critical
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameter enable_band_steering.
CVE-2022-44188 1 Netgear 2 R7000p, R7000p Firmware 2025-04-29 9.8 Critical
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter enable_band_steering.
CVE-2022-44187 1 Netgear 2 R7000p, R7000p Firmware 2025-04-29 9.8 Critical
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via wan_dns1_pri.
CVE-2022-44186 1 Netgear 2 R7000p, R7000p Firmware 2025-04-29 9.8 Critical
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter wan_dns1_pri.
CVE-2022-44184 1 Netgear 2 R7000p, R7000p Firmware 2025-04-29 9.8 Critical
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter wan_dns1_sec.
CVE-2025-46761 2025-04-29 N/A
Not used
CVE-2025-46760 2025-04-29 N/A
Not used
CVE-2025-46759 2025-04-29 N/A
Not used
CVE-2025-46758 2025-04-29 N/A
Not used
CVE-2025-46757 2025-04-29 N/A
Not used
CVE-2025-46756 2025-04-29 N/A
Not used
CVE-2025-46755 2025-04-29 N/A
Not used
CVE-2025-46754 2025-04-29 N/A
Not used
CVE-2025-46753 2025-04-29 N/A
Not used
CVE-2018-13372 2025-04-29 N/A
Not used
CVE-2017-7740 2025-04-29 N/A
Not used
CVE-2022-34830 1 Arm 1 Utgard Gpu Kernel Driver 2025-04-28 7.5 High
An Arm product family through 2022-06-29 has a TOCTOU Race Condition that allows non-privileged user to make improper GPU processing operations to gain access to already freed memory.
CVE-2021-46854 1 Proftpd 1 Proftpd 2025-04-28 7.5 High
mod_radius in ProFTPD before 1.3.7c allows memory disclosure to RADIUS servers because it copies blocks of 16 characters.
CVE-2021-43258 1 Churchdb 1 Churchinfo 2025-04-28 8.8 High
CartView.php in ChurchInfo 1.3.0 allows attackers to achieve remote code execution through insecure uploads. This requires authenticated access tot he ChurchInfo application. Once authenticated, a user can add names to their cart, and compose an email. Uploading an attachment for the email stores the attachment on the site in the /tmp_attach/ folder where it can be accessed with a GET request. There are no limitations on files that can be attached, allowing for malicious PHP code to be uploaded and interpreted by the server.