CVE ID : CVE-2025-24348
Published : April 30, 2025, 12:15 p.m. | 39 minutes ago
Description : A vulnerability in the “Network Interfaces” functionality of the web application of ctrlX OS allows a remote authenticated (low-privileged) attacker to manipulate the wireless network configuration file via a crafted HTTP request.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-24349
Published : April 30, 2025, 12:15 p.m. | 39 minutes ago
Description : A vulnerability in the “Network Interfaces” functionality of the web application of ctrlX OS allows a remote authenticated (lowprivileged) attacker to delete the configuration of physical network interfaces via a crafted HTTP request.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-24350
Published : April 30, 2025, 12:15 p.m. | 39 minutes ago
Description : A vulnerability in the “Certificates and Keys” functionality of the web application of ctrlX OS allows a remote authenticated (low-privileged) attacker to write arbitrary certificates in arbitrary file system paths via a crafted HTTP request.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-24351
Published : April 30, 2025, 12:15 p.m. | 39 minutes ago
Description : A vulnerability in the “Remote Logging” functionality of the web application of ctrlX OS allows a remote authenticated (low-privileged) attacker to execute arbitrary OS commands in the context of user “root” via a crafted HTTP request.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-27532
Published : April 30, 2025, 12:15 p.m. | 39 minutes ago
Description : A vulnerability in the “Backup & Restore” functionality of the web application of ctrlX OS allows a remote authenticated (lowprivileged) attacker to access secret information via multiple crafted HTTP requests.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-4114
Published : April 30, 2025, 12:15 p.m. | 39 minutes ago
Description : A vulnerability classified as critical has been found in Netgear JWNR2000v2 1.0.0.11. Affected is the function check_language_file. The manipulation of the argument host leads to buffer overflow. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
The DistroWatch news feed is brought to you by TUXEDO COMPUTERS. AnduinOS is an Ubuntu-based distribution which provides a GNOME desktop which has been themed and styled to resemble Windows 11. The project’s latest release, AnduinOS 1.3.0, is based on Ubuntu 25.04 and ships with GNOME 48. “AnduinOS 1.3 is released. This version is highly recommended [because] we first….
I mentioned last time that I’ve been working on a new website for Emmy-award-winning game composer Mike Worth. He hired…
Mozilla Thunderbird è una delle più popolari applicazioni open source per la gestione della posta elettronica, della rubrica, delle chat,…
4MLinux è una distribuzione GNU/Linux leggera e minimalista, pensata per offrire un sistema operativo essenziale ma versatile, ideale per chi…
CISA Sounds the Alarm: Broadcom and Commvault Flaws Under Active Exploitation! ️
Photo by Mika Baumeister on UnsplashBuckle up, cybersecurity enthusiasts! The U.S. Cybersecurity and Infrastructure Security Agency (CISA) just dropped a bombshell by adding two critical vulnerabiliti …
Read more
Published Date:
Apr 30, 2025 (2 hours, 53 minutes ago)
Vulnerabilities has been mentioned in this article.
Avast Antivirus Vulnerability Let Attackers Escalate Privileges
Security researchers have disclosed a critical vulnerability in Avast Free Antivirus that could allow attackers to gain elevated system privileges and execute malicious code with kernel-level access.
…
Read more
Published Date:
Apr 30, 2025 (2 hours, 13 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE ID : CVE-2025-22882
Published : April 30, 2025, 8:15 a.m. | 38 minutes ago
Description : Delta Electronics ISPSoft version 3.20 is vulnerable to a Stack-Based buffer overflow vulnerability that could allow an attacker to leverage debugging logic to execute arbitrary code when parsing CBDGL file.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-22883
Published : April 30, 2025, 8:15 a.m. | 38 minutes ago
Description : Delta Electronics ISPSoft version 3.20 is vulnerable to an Out-Of-Bounds Write vulnerability that could allow an attacker to execute arbitrary code when parsing DVP file.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-22884
Published : April 30, 2025, 8:15 a.m. | 38 minutes ago
Description : Delta Electronics ISPSoft version 3.20 is vulnerable to a Stack-Based buffer overflow vulnerability that could allow an attacker to execute arbitrary code when parsing DVP file.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-46778
Published : April 30, 2025, 3:15 a.m. | 3 hours, 58 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-46779
Published : April 30, 2025, 3:15 a.m. | 3 hours, 58 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-46780
Published : April 30, 2025, 3:15 a.m. | 3 hours, 58 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-46781
Published : April 30, 2025, 3:15 a.m. | 3 hours, 58 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-46782
Published : April 30, 2025, 3:15 a.m. | 3 hours, 58 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…