NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-9317	The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge...	2025-11-15	8.4	LOCAL	HIGH	NVD
CVE-2025-8386	The vulnerability, if exploited, could allow an authenticated miscreant (with privilege of "aaConfigTools") to tamper with App Objects' help files a...	2025-11-15	6.9	LOCAL	MEDIUM	NVD
CVE-2025-64309	Brightpick Mission Control discloses device telemetry, configuration, and credential information via WebSocket traffic to unauthenticated users when...	2025-11-15	8.6	NETWORK	HIGH	NVD
CVE-2025-64308	The Brightpick Mission Control web application exposes hardcoded credentials in its client-side JavaScript bundle.	2025-11-15	7.5	NETWORK	HIGH	NVD
CVE-2025-64307	The Brightpick Internal Logic Control web interface is accessible without requiring user authentication. An unauthorized user could exploit this int...	2025-11-15	6.5	ADJACENT_NETWORK	MEDIUM	NVD
CVE-2025-62765	General Industrial Controls Lynx+ Gateway is vulnerable to a cleartext transmission vulnerability that could allow an attacker to observe network tra...	2025-11-15	7.5	NETWORK	HIGH	NVD
CVE-2025-59780	General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web server which could allow an attacker to send GET req...	2025-11-15	7.5	NETWORK	HIGH	NVD
CVE-2025-58083	General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web server which could allow an attacker to remotely re...	2025-11-15	10.0	NETWORK	CRITICAL	NVD
CVE-2025-55034	General Industrial Controls Lynx+ Gateway is vulnerable to a weak password requirement vulnerability, which may allow an attacker to execute a brute-...	2025-11-15	8.2	NETWORK	HIGH	NVD
CVE-2025-13188	A vulnerability was detected in D-Link DIR-816L 2_06_b09_beta. Affected by this vulnerability is the function authenticationcgi_main of the file /auth...	2025-11-14	9.8	NETWORK	CRITICAL	NVD
CVE-2023-7328	Screen SFT DAB 600/C firmware versions up to and including 1.9.3 contain an improper access control on the user management API allows unauthenticated ...	2025-11-14	6.9	NETWORK	MEDIUM	NVD
CVE-2022-4985	Vodafone H500s devices running firmware v3.5.10 (hardware model Sercomm VFH500) expose the WiFi access point password via an unauthenticated HTTP endp...	2025-11-14	8.7	NETWORK	HIGH	NVD
CVE-2021-4471	TG8 Firewall exposes a directory such as /data/ over HTTP without authentication. This directory stores credential files for previously logged-in user...	2025-11-14	8.7	NETWORK	HIGH	NVD
CVE-2021-4470	TG8 Firewall contains a pre-authentication remote code execution vulnerability in the runphpcmd.php endpoint. The syscmd POST parameter is passed dire...	2025-11-14	9.3	NETWORK	CRITICAL	NVD
CVE-2021-4469	Denver SHO-110 IP cameras expose a secondary HTTP service on TCP port 8001 that provides access to a '/snapshot' endpoint without authentication. Whil...	2025-11-14	8.7	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.