Security Vulnerabilities
Memory corruption while processing control commands in the virtual memory management interface.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-10-09
Memory corruption while performing SCM call.
CVSS Score
8.8
EPSS Score
0.0
Published
2025-10-09
Memory corruption while performing SCM call with malformed inputs.
CVSS Score
8.8
EPSS Score
0.0
Published
2025-10-09
Information disclosure may occur while processing the hypervisor log.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-10-09
Memory corruption may occur while processing IOCTL call for DMM/WARPNCC CONFIG request.
CVSS Score
6.6
EPSS Score
0.0
Published
2025-10-09
A weakness has been identified in code-projects Online Complaint Site 1.0. Affected is an unknown function of the file /cms/admin/state.php. This manipulation of the argument state causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.
CVSS Score
6.3
EPSS Score
0.0
Published
2025-10-09
A vulnerability was determined in Tenda AC7 15.03.06.44. The impacted element is an unknown function of the file /goform/fast_setting_pppoe_set. Executing manipulation of the argument Password can lead to stack-based buffer overflow. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-10-09
A vulnerability was identified in Tenda AC7 15.03.06.44. This affects an unknown function of the file /goform/saveAutoQos. The manipulation of the argument enable leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-10-09
A security flaw has been discovered in ChurchCRM up to 5.18.0. This impacts the function AuthMiddleware of the file src/ChurchCRM/Slim/Middleware/AuthMiddleware.php of the component API Endpoint. The manipulation results in missing authentication. The attack can be executed remotely. The exploit has been released to the public and may be exploited. The patch is identified as 3a1cffd2aea63d884025949cfbcfd274d06216a4. A patch should be applied to remediate this issue.
CVSS Score
7.3
EPSS Score
0.001
Published
2025-10-09
A vulnerability was found in Tenda AC7 15.03.06.44. The affected element is an unknown function of the file /goform/WifiMacFilterSet. Performing manipulation of the argument wifi_chkHz results in stack-based buffer overflow. The attack may be initiated remotely. The exploit has been made public and could be used.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-10-09