Skip to main content
CVE-2023-0127 HIGH POC This Week

A command injection vulnerability in the firmware_update command, in the device's restricted telnet interface, allows an authenticated attacker to execute arbitrary commands as root. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Dwl 2600Ap Firmware
NVD
CVSS 3.1
7.8
EPSS
2.0%
CVE-2023-25558 HIGH PATCH This Week

DataHub is an open-source metadata platform. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Deserialization of Untrusted Data vulnerability could allow attackers to execute arbitrary code through malicious serialized objects.

Java RCE Deserialization Datahub
NVD GitHub
CVSS 3.1
8.8
EPSS
1.0%
CVE-2023-25559 HIGH This Week

DataHub is an open-source metadata platform. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Datahub
NVD GitHub
CVSS 3.1
8.1
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy