Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-05 | CVE-2024-57232 | Command Injection vulnerability in Netgear Rax50 Firmware 1.0.2.26 NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_wps_gen_pincode function. | 9.8 |
| 2025-05-05 | CVE-2024-57233 | Command Injection vulnerability in Netgear Rax50 Firmware 1.0.2.26 NETGEAR RAX5 (AX1600 WiFi Router) v1.0.2.26 was discovered to contain a command injection vulnerability via the iface parameter in the vif_disable function. | 9.8 |
| 2025-05-05 | CVE-2024-57234 | Command Injection vulnerability in Netgear Rax50 Firmware 1.0.2.26 NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_cancel_wps function. | 9.8 |
| 2025-05-05 | CVE-2024-57235 | Command Injection vulnerability in Netgear Rax50 Firmware 1.0.2.26 NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the iface parameter in the vif_enable function. | 9.8 |
| 2025-05-05 | CVE-2025-1992 | IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 could allow an authenticated user, under non default configurations, to cause a denial of service due to insufficient release of allocated memory after usage. | 5.3 |
| 2025-05-05 | CVE-2025-24977 | Code Injection vulnerability in Citeum Opencti 6.4.10/6.4.8/6.4.9 OpenCTI is an open cyber threat intelligence (CTI) platform. | 9.1 |
| 2025-05-05 | CVE-2025-45042 | Command Injection vulnerability in Tenda AC9 Firmware 15.03.05.14 Tenda AC9 v15.03.05.14 was discovered to contain a command injection vulnerability via the Telnet function. | 9.8 |
| 2025-05-05 | CVE-2025-45320 | Unspecified vulnerability in Lopalopa Online Service Management Portal 1.0 A Directory Listing Vulnerability was found in the /osms/Requester/ directory of the Kashipara Online Service Management Portal V1.0. | 5.3 |
| 2025-05-05 | CVE-2025-45321 | SQL Injection vulnerability in Lopalopa Online Service Management Portal 1.0 kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in /osms/Requester/Requesterchangepass.php via the parameter: rPassword. | 8.8 |
| 2025-05-05 | CVE-2025-45322 | SQL Injection vulnerability in Lopalopa Online Service Management Portal 1.0 kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in osms/Requester/CheckStatus.php via the checkid parameter. | 8.8 |