Skip to main content
CVE-2017-5941 CRITICAL POC THREAT Emergency

An issue was discovered in the node-serialize package 0.0.4 for Node.js. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 77.9%.

Deserialization Node.js RCE Node Serialize
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
77.9%
Threat
5.8
CVE-2015-6024 CRITICAL POC THREAT Emergency

ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with firmware before 3G10WVE-L101-S306ETS-C01_R05 allows remote authenticated users to execute arbitrary commands via shell metacharacters in. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 49.3%.

Command Injection Hspa 3G10Wve Firmware
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
49.3%
Threat
4.9
CVE-2016-2148 CRITICAL POC PATCH THREAT Act Now

Heap-based buffer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to have unspecified impact via vectors involving OPTION_6RD parsing. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 15.8%.

Buffer Overflow Busybox Debian Linux Ubuntu Linux
NVD
CVSS 3.1
9.8
EPSS
15.8%
CVE-2016-10190 CRITICAL PATCH Act Now

Heap-based buffer overflow in libavformat/http.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote web servers to execute arbitrary code via a. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 10.2%.

Buffer Overflow RCE Ffmpeg
NVD GitHub
CVSS 3.0
9.8
EPSS
10.2%
CVE-2016-10191 CRITICAL PATCH Act Now

Heap-based buffer overflow in libavformat/rtmppkt.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote attackers to execute arbitrary code by. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Buffer Overflow RCE Ffmpeg
NVD GitHub
CVSS 3.0
9.8
EPSS
8.7%
CVE-2016-10192 CRITICAL PATCH Act Now

Heap-based buffer overflow in ffserver.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote attackers to execute arbitrary code by leveraging. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Buffer Overflow RCE Ffmpeg
NVD GitHub
CVSS 3.0
9.8
EPSS
4.8%
CVE-2016-5726 CRITICAL PATCH Act Now

Packages.php in Simple Machines Forum (SMF) 2.1 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via the themechanges array parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

RCE Code Injection PHP Simple Machines Forum
NVD
CVSS 3.0
9.8
EPSS
0.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy