Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities
CVE-2025-47331
Information disclosure while processing a firmware event.
CVSS Score
6.1
EPSS Score
0.0
Published
2026-01-07
CVE-2025-47332
Memory corruption while processing a config call from userspace.
CVSS Score
6.7
EPSS Score
0.0
Published
2026-01-07
CVE-2025-47333
Memory corruption while handling buffer mapping operations in the cryptographic driver.
CVSS Score
6.6
EPSS Score
0.0
Published
2026-01-07
CVE-2025-31962
Insufficient session expiration in the Web UI authentication component in HCL BigFix IVR version 4.2 allows an authenticated attacker to gain prolonged unauthorized access to protected API endpoints due to excessive expiration periods.
CVSS Score
2.0
EPSS Score
0.0
Published
2026-01-07
CVE-2025-31963
Improper authentication and missing CSRF protection in the local setup interface component in HCL BigFix IVR version 4.2 allows a local attacker to perform unauthorized configuration changes via unauthenticated administrative configuration requests.
CVSS Score
2.9
EPSS Score
0.0
Published
2026-01-07
CVE-2025-31964
Improper service binding configuration in internal service components in HCL BigFix IVR version 4.2 allows a privileged attacker to impact service availability via exposure of administrative services bound to external network interfaces instead of the local authentication interface.
CVSS Score
2.2
EPSS Score
0.001
Published
2026-01-07
CVE-2025-15472
A flaw has been found in TRENDnet TEW-811DRU 1.0.2.0. This affects the function setDeviceURL  of the file uapply.cgi of the component httpd . This manipulation of the argument DeviceURL causes os command injection. The attack can be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Score
7.2
EPSS Score
0.005
Published
2026-01-07
CVE-2025-14614
Insecure Temporary File vulnerability in Altera Quartus Prime Standard  Installer (SFX) on Windows, Altera Quartus Prime Lite  Installer (SFX) on Windows allows Explore for Predictable Temporary File Names.This issue affects Quartus Prime Standard: from 23.1 through 24.1; Quartus Prime Lite: from 23.1 through 24.1.
CVSS Score
6.7
EPSS Score
0.0
Published
2026-01-07
CVE-2025-14625
Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Standard on Windows (Nios II Command Shell modules), Altera Quartus Prime Lite on Windows (Nios II Command Shell modules) allows Search Order Hijacking.This issue affects Quartus Prime Standard: from 19.1 through 24.1; Quartus Prime Lite: from 19.1 through 24.1.
CVSS Score
6.7
EPSS Score
0.0
Published
2026-01-07
CVE-2025-11235
Unverified Password Change vulnerability in Progress MOVEit Transfer on Windows (REST API modules).This issue affects MOVEit Transfer: from 2023.1.0 before 2023.1.3, from 2023.0.0 before 2023.0.8, from 2022.1.0 before 2022.1.11, from 2022.0.0 before 2022.0.10.
CVSS Score
3.7
EPSS Score
0.0
Published
2026-01-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved