CVE-2026-7468 - 1024-lab smart-admin Demo Site index.html access control
CVE ID :CVE-2026-7468
Published : April 30, 2026, 1:16 a.m. | 26 minutes ago
Description :A security vulnerability has been detected in 1024-lab smart-admin up to 3.30.0. This affects an unknown function of the file /smart-admin-api/druid/index.html of the component Demo Site. The manipulation leads to improper access controls. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-7468
Published : April 30, 2026, 1:16 a.m. | 26 minutes ago
Description :A security vulnerability has been detected in 1024-lab smart-admin up to 3.30.0. This affects an unknown function of the file /smart-admin-api/druid/index.html of the component Demo Site. The manipulation leads to improper access controls. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-7469 - Tenda 4G300 DelFil sub_425A28 command injection
CVE ID :CVE-2026-7469
Published : April 30, 2026, 2:16 a.m. | 1 hour, 28 minutes ago
Description :A vulnerability was detected in Tenda 4G300 US_4G300V1.0Mt_V1.01.42_CN_TDC01. This impacts the function sub_425A28 of the file /goform/DelFil. The manipulation of the argument delflag results in command injection. The attack may be launched remotely. The exploit is now public and may be used.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-7469
Published : April 30, 2026, 2:16 a.m. | 1 hour, 28 minutes ago
Description :A vulnerability was detected in Tenda 4G300 US_4G300V1.0Mt_V1.01.42_CN_TDC01. This impacts the function sub_425A28 of the file /goform/DelFil. The manipulation of the argument delflag results in command injection. The attack may be launched remotely. The exploit is now public and may be used.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-7470 - Tenda 4G300 SafeMacFilter sub_427C3C stack-based overflow
CVE ID :CVE-2026-7470
Published : April 30, 2026, 3:16 a.m. | 28 minutes ago
Description :A flaw has been found in Tenda 4G300 US_4G300V1.0Mt_V1.01.42_CN_TDC01. Affected is the function sub_427C3C of the file /goform/SafeMacFilter. This manipulation of the argument page causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-7470
Published : April 30, 2026, 3:16 a.m. | 28 minutes ago
Description :A flaw has been found in Tenda 4G300 US_4G300V1.0Mt_V1.01.42_CN_TDC01. Affected is the function sub_427C3C of the file /goform/SafeMacFilter. This manipulation of the argument page causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-5655 - Use After Free in Wireshark
CVE ID :CVE-2026-5655
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :SDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-5655
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :SDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-5657 - Double Free in Wireshark
CVE ID :CVE-2026-5657
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :iLBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-5657
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :iLBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6519 - Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark
CVE ID :CVE-2026-6519
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :MBIM protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6519
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :MBIM protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6520 - Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark
CVE ID :CVE-2026-6520
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :OpenFlow v6 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6520
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :OpenFlow v6 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6521 - Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark
CVE ID :CVE-2026-6521
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :OpenFlow v5 protocol dissector infinite loops in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6521
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :OpenFlow v5 protocol dissector infinite loops in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6522 - Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark
CVE ID :CVE-2026-6522
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :RPKI-Router protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6522
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :RPKI-Router protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6523 - Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark
CVE ID :CVE-2026-6523
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :GNW protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6523
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :GNW protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6524 - Access of Uninitialized Pointer in Wireshark
CVE ID :CVE-2026-6524
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :MySQL protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6524
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :MySQL protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6526 - NULL Pointer Dereference in Wireshark
CVE ID :CVE-2026-6526
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :RTSP protocol dissector crash in Wireshark 4.6.0 to 4.6.4
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6526
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :RTSP protocol dissector crash in Wireshark 4.6.0 to 4.6.4
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6527 - Uncontrolled Recursion in Wireshark
CVE ID :CVE-2026-6527
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :ASN.1 PER protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6527
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :ASN.1 PER protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6528 - Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark
CVE ID :CVE-2026-6528
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :TLS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6528
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :TLS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6529 - Heap-based Buffer Overflow in Wireshark
CVE ID :CVE-2026-6529
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :iLBC audio codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6529
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :iLBC audio codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6530 - Heap-based Buffer Overflow in Wireshark
CVE ID :CVE-2026-6530
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :DCP-ETSI protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6530
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :DCP-ETSI protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6531 - Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark
CVE ID :CVE-2026-6531
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6531
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6532 - Buffer Over-read in Wireshark
CVE ID :CVE-2026-6532
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :Kismet protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6532
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :Kismet protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6533 - Improperly Controlled Sequential Memory Allocation in Wireshark
CVE ID :CVE-2026-6533
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :Dissection engine LZ77 decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6533
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :Dissection engine LZ77 decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6534 - Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark
CVE ID :CVE-2026-6534
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :USB HID protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6534
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :USB HID protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-6535 - Improperly Controlled Sequential Memory Allocation in Wireshark
CVE ID :CVE-2026-6535
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6535
Published : April 30, 2026, 7:16 a.m. | 28 minutes ago
Description :Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...