NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-41280	Nozomi Networks Labs identified a CWE-23: Relative Path Traversal (Zip Slip) in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows at...	2026-05-29	7.5	LOCAL	HIGH	NVD
CVE-2025-41279	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administra...	2026-05-29	8.6	NETWORK	HIGH	NVD
CVE-2025-41278	Nozomi Networks Labs identified a CWE-125: Out-of-bounds Read in Waterfall WF-500 RX Host in version 7.10.0.0 R2601141040 that allows attackers with a...	2026-05-29	7.5	LOCAL	HIGH	NVD
CVE-2025-41277	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console We...	2026-05-29	9.3	NETWORK	CRITICAL	NVD
CVE-2025-41276	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console We...	2026-05-29	9.3	NETWORK	CRITICAL	NVD
CVE-2025-41275	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console We...	2026-05-29	9.3	NETWORK	CRITICAL	NVD
CVE-2025-41274	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console We...	2026-05-29	9.3	NETWORK	CRITICAL	NVD
CVE-2025-41273	Nozomi Networks Labs identified a CWE-288: Authentication Bypass Using an Alternate Path or Channel in the Console WebUI in Waterfall WF-500 TX and RX...	2026-05-29	9.3	NETWORK	CRITICAL	NVD
CVE-2025-41272	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console We...	2026-05-29	9.3	NETWORK	CRITICAL	NVD
CVE-2025-41271	Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171...	2026-05-29	8.7	NETWORK	HIGH	NVD
CVE-2025-41270	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console We...	2026-05-29	9.3	NETWORK	CRITICAL	NVD
CVE-2025-41269	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console We...	2026-05-29	9.3	NETWORK	CRITICAL	NVD
CVE-2025-41268	Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Administration WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R...	2026-05-29	8.8	NETWORK	HIGH	NVD
CVE-2025-41267	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administra...	2026-05-29	8.5	NETWORK	HIGH	NVD
CVE-2025-41266	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administra...	2026-05-29	8.6	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.