Skip to main content
CVE-2023-26802 CRITICAL POC THREAT Act Now

An issue in the component /network_config/nsg_masq.cgi of DCN (Digital China Networks) DCBI-Netlog-LAB v1.0 allows attackers to bypass authentication and execute arbitrary commands via a crafted. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Dcbi Netlog Lab Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
48.7%
CVE-2023-26801 CRITICAL POC THREAT Act Now

LB-LINK BL-AC1900_2.0 v1.0.1, LB-LINK BL-WR9000 v2.4.9, LB-LINK BL-X26 v1.2.5, and LB-LINK BL-LTE300 v1.0.8 were discovered to contain a command injection vulnerability via the mac, time1, and time2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Bl Lte300 Firmware Bl X26 Firmware Bl Wr9000 Firmware Bl Ac1900 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
69.7%
CVE-2023-26800 CRITICAL POC Act Now

Ruijie Networks RG-EW1200 Wireless Routers EW_3.0(1)B11P204 was discovered to contain a command injetion vulnerability via the params.path parameter in the upgradeConfirm function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Rg Ew1200R Firmware Rg Ew1200 Firmware Rg Ew1200G Pro Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.0%
CVE-2023-27796 HIGH POC This Week

RG-EW1200G PRO Wireless Routers EW_3.0(1)B11P204, RG-EW1800GX PRO Wireless Routers EW_3.0(1)B11P204, and RG-EW3200GX PRO Wireless Routers EW_3.0(1)B11P204 were discovered to contain multiple command. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Rg Ew1800Gx Pro Firmware Rg Ew3200Gx Pro Firmware Rg Ew1200G Pro Firmware
NVD GitHub
CVSS 3.1
8.8
EPSS
2.3%
CVE-2023-1646 HIGH POC This Week

A vulnerability was found in IObit Malware Fighter 9.4.0.776. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Stack Overflow Buffer Overflow Malware Fighter
NVD GitHub VulDB
CVSS 3.1
7.8
EPSS
0.4%
CVE-2023-1645 MEDIUM POC This Month

A vulnerability was found in IObit Malware Fighter 9.4.0.776. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Malware Fighter
NVD GitHub VulDB
CVSS 3.1
5.5
EPSS
0.3%
CVE-2023-1644 MEDIUM POC This Month

A vulnerability was found in IObit Malware Fighter 9.4.0.776 and classified as problematic. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Malware Fighter
NVD GitHub VulDB
CVSS 3.1
5.5
EPSS
0.3%
CVE-2023-1643 MEDIUM POC This Month

A vulnerability has been found in IObit Malware Fighter 9.4.0.776 and classified as problematic. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Malware Fighter
NVD GitHub VulDB
CVSS 3.1
5.5
EPSS
0.3%
CVE-2023-1642 MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in IObit Malware Fighter 9.4.0.776. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Malware Fighter
NVD GitHub VulDB
CVSS 3.1
5.5
EPSS
0.3%
CVE-2023-1641 MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in IObit Malware Fighter 9.4.0.776.sys of the component IOCTL Handler. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Malware Fighter
NVD GitHub VulDB
CVSS 3.1
5.5
EPSS
0.3%
CVE-2023-1640 MEDIUM POC This Month

A vulnerability classified as problematic was found in IObit Malware Fighter 9.4.0.776. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Malware Fighter
NVD GitHub VulDB
CVSS 3.1
5.5
EPSS
0.3%
CVE-2023-1639 MEDIUM POC This Month

A vulnerability classified as problematic has been found in IObit Malware Fighter 9.4.0.776. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Malware Fighter
NVD GitHub VulDB
CVSS 3.1
5.5
EPSS
0.3%
CVE-2023-1638 MEDIUM POC This Month

A vulnerability was found in IObit Malware Fighter 9.4.0.776. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Malware Fighter
NVD GitHub VulDB
CVSS 3.1
5.5
EPSS
0.3%
CVE-2023-28859 MEDIUM PATCH This Month

redis-py before 4.4.4 and 4.5.x before 4.5.4 leaves a connection open after canceling an async Redis command at an inopportune time, and can send response data to the client of an unrelated request. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Redis Redis Py
NVD GitHub
CVSS 3.1
6.5
EPSS
1.0%
CVE-2023-28858 LOW PATCH Monitor

redis-py before 4.5.3 leaves a connection open after canceling an async Redis command at an inopportune time, and can send response data to the client of an unrelated request in an off-by-one manner. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure Redis Redis Py
NVD GitHub
CVSS 3.1
3.7
EPSS
1.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy