Skip to main content
CVE-2023-50245 CRITICAL POC PATCH Act Now

OpenEXR-viewer is a viewer for OpenEXR files with detailed metadata probing. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Openexr Viewer
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
CVE-2023-49418 CRITICAL POC Act Now

TOTOLink A7000R V9.1.0u.6115_B20201022has a stack overflow vulnerability via setIpPortFilterRules. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow A7000r Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-49417 CRITICAL POC Act Now

TOTOLink A7000R V9.1.0u.6115_B20201022 has a stack overflow vulnerability via setOpModeCfg. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow A7000r Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-6181 CRITICAL Act Now

An oversight in BCB handling of reboot reason that allows for persistent code execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Chromecast Firmware
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-48425 CRITICAL Act Now

U-Boot vulnerability resulting in persistent Code Execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Chromecast Firmware
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-48424 CRITICAL Act Now

U-Boot shell vulnerability resulting in Privilege escalation in a production device. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Chromecast Firmware
NVD
CVSS 3.1
9.8
EPSS
0.3%
CVE-2023-48417 CRITICAL Act Now

Missing Permission checks resulting in unauthorized access and Manipulation in KeyChainActivity Application. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Chromecast Firmware
NVD
CVSS 3.1
9.8
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy