The product contains functionality that is not documented, not part of the specification, and not accessible through an interface or command sequence that is obvious to the product's users or administrators.
78 vulnerabilities with CWE-912
CVE-2025-32370
HIGH
Kentico Xperience < 13.0.178 - XSS
CVSS 7.2
CVE-2025-2894
MEDIUM
Go1 - RCE
CVSS 6.6
CVE-2025-27840
MEDIUM
Espressif ESP32 - Info Disclosure
CVSS 6.8
CVE-2025-1204
HIGH
Firmware - Code Injection
CVE-2025-0675
HIGH
Elber Products - Info Disclosure
CVSS 7.5
CVE-2025-0626
HIGH
Firmware - SSRF
CVSS 7.5
CVE-2024-39754
CRITICAL
Wavlink AC3000 M33A8.V5030.210505 - RCE
CVSS 10.0
CVE-2024-13062
HIGH
ASUS Router - RCE
CVSS 7.2
CVE-2024-10773
CRITICAL
Product - Privilege Escalation
CVSS 9.0
CVE-2024-47001
HIGH
TAKENAKA ENGINEERING CO., LTD. - Command Injection
CVSS 8.8
CVE-2024-45697
CRITICAL
D-Link Wireless Router - RCE
CVSS 9.8
CVE-2024-45696
HIGH
D-Link Wireless Router - RCE
CVSS 8.8
CVE-2024-37994
MEDIUM
SIMATIC Reader - Path Traversal
CVSS 4.3
CVE-2024-37990
MEDIUM
SIMATIC Reader - Path Traversal
CVSS 6.5
CVE-2024-20439
CRITICAL
KEV
Cisco Smart Licensing Utility - Auth Bypass
CVSS 9.8
CVE-2024-5633
HIGH
Longse model LBH30FE200W - Code Injection
CVE-2024-6045
HIGH
D-Link Wireless Router - RCE
CVSS 8.8
CVE-2024-5514
CRITICAL
MinMax CMS - Auth Bypass
CVSS 9.8
CVE-2024-33583
LOW
SIMATIC RTLS Locating Manager -<V3.0.1.1 - Info Disclosure
CVSS 3.3
CVE-2024-3016
CRITICAL
NEC Platforms DT900-5.3.4.4 - Info Disclosure
CVSS 9.1
CVE-2024-28011
CRITICAL
NEC Corporation Various Products - Info Disclosure
CVSS 9.8
CVE-2024-22044
HIGH
SENTRON 3KC ATC6 Expansion Module - DoS
CVSS 7.5
CVE-2023-42134
MEDIUM
PAX Android POS <8.1.0_Sagittarius_V11.1.45_20230314 - Local Code E...
CVSS 6.8
CVE-2023-4467
MEDIUM
Poly Trio 8800 <7.2.6.0019 - Backdoor
CVSS 6.2
CVE-2023-6614
LOW
Typecho 1.2.1 - Backdoor
CVSS 2.7
Details
Vulnerabilities
78