NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-20910	An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code executi...	2026-02-27	8.0	NETWORK	HIGH	NVD
CVE-2026-20902	An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code exec...	2026-02-27	8.0	NETWORK	HIGH	NVD
CVE-2026-20742	An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execut...	2026-02-27	8.0	NETWORK	HIGH	NVD
CVE-2021-4456	Net::CIDR versions before 0.24 for Perl mishandle leading zeros in IP CIDR addresses, which may have unspecified impact. The functions `addr2cidr` an...	2026-02-27	6.5	NETWORK	MEDIUM	NVD
CVE-2026-3272	A vulnerability was determined in Tenda F453 1.0.0.3. Affected is the function fromDhcpListClient of the file /goform/DhcpListClient of the component ...	2026-02-27	8.8	NETWORK	HIGH	NVD
CVE-2026-3271	A vulnerability was found in Tenda F453 1.0.0.3. This impacts the function fromP2pListFilter of the file /goform/P2pListFilterof of the component http...	2026-02-27	8.8	NETWORK	HIGH	NVD
CVE-2026-3270	A vulnerability has been found in psi-probe PSI Probe up to 5.3.0. This affects the function lookup of the file psi-probe-core/src/main/java/psiprobe/...	2026-02-27	6.3	NETWORK	MEDIUM	NVD
CVE-2026-3269	A flaw has been found in psi-probe PSI Probe up to 5.3.0. The impacted element is the function handleRequestInternal of the file psi-probe-core/src/ma...	2026-02-27	4.3	NETWORK	MEDIUM	NVD
CVE-2026-2597	Crypt::SysRandom::XS versions before 0.010 for Perl is vulnerable to a heap buffer overflow in the XS function random_bytes(). The function does not ...	2026-02-27	7.5	NETWORK	HIGH	NVD
CVE-2026-27773	Charging station authentication identifiers are publicly accessible via web-based mapping platforms.	2026-02-27	6.5	NETWORK	MEDIUM	NVD
CVE-2026-27772	WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent...	2026-02-27	9.4	NETWORK	CRITICAL	NVD
CVE-2026-27767	WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent...	2026-02-27	9.4	NETWORK	CRITICAL	NVD
CVE-2026-27652	The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same sessi...	2026-02-27	7.3	NETWORK	HIGH	NVD
CVE-2026-25945	The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow...	2026-02-27	7.5	NETWORK	HIGH	NVD
CVE-2026-25851	WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent...	2026-02-27	9.4	NETWORK	CRITICAL	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.