Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: sonoma-d12-firmware Clear
ID Title
CVE-2025-60962 OS Command Injection in endruntechnologies (CVE-2025-60962)
OS command injection in endruntechnologies (CVE-2025-60962). Data can be tampered with by attackers.
CVE-2025-60963 OS Command Injection in dos (CVE-2025-60963)
OS command injection in dos (CVE-2025-60963). Data can be tampered with by attackers.
CVE-2025-60964 OS Command Injection in dos (CVE-2025-60964)
OS command injection in dos (CVE-2025-60964). Successful exploitation can lead to full system takeover.
CVE-2025-60965 OS Command Injection in dos (CVE-2025-60965)
OS command injection in dos (CVE-2025-60965). Successful exploitation can lead to full system takeover.
CVE-2025-60967 Cross-Site Scripting (XSS) in endruntechnologies (CVE-2025-60967)
cross-site scripting in endruntechnologies (CVE-2025-60967). Confidential information can be exposed externally.
CVE-2025-60969 Path Traversal in path-traversal (CVE-2025-60969)
path traversal in path-traversal (CVE-2025-60969). Confidential information can be exposed externally.
CVE-2025-60956 Cross-Site Request Forgery (CSRF) in csrf (CVE-2025-60956)
vulnerability in csrf (CVE-2025-60956). Successful exploitation can lead to full system takeover.
CVE-2025-60957 OS Command Injection in dos (CVE-2025-60957)
OS command injection in dos (CVE-2025-60957). Successful exploitation can lead to full system takeover.
CVE-2025-60958 Cross-Site Scripting (XSS) in endruntechnologies (CVE-2025-60958)
cross-site scripting in endruntechnologies (CVE-2025-60958). Confidential information can be exposed externally.
CVE-2025-60959 OS Command Injection in endruntechnologies (CVE-2025-60959)
OS command injection in endruntechnologies (CVE-2025-60959). Data can be tampered with by attackers.
CVE-2025-60960 OS Command Injection in dos (CVE-2025-60960)
OS command injection in dos (CVE-2025-60960). Data can be tampered with by attackers.
CVE-2025-60961 Cross-Site Scripting (XSS) in endruntechnologies (CVE-2025-60961)
cross-site scripting in endruntechnologies (CVE-2025-60961). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →