theShinigami/CVE-Disclosures

Releases0

Stars1

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-36734 ↗	May 11, 2026Monday, 11 May 2026, 20:25	8.8 HIGH	—
EDIMAX BR-6428nS V3 1.15 is vulnerable to Command Injection. An authenticated attacker with access to the network can submit crafted input to the WLAN configuration functionality. Due to insufficient input validation, the attacker is able to execute arbitrary system commands on the device.
CVE-2025-71057 ↗	Feb 26, 2026Thursday, 26 February 2026, 16:23	8.2 HIGH	—
Improper session management in D-Link Wireless N 300 ADSL2+ Modem Router DSL-124 ME_1.00 allows attackers to execute a session hijacking attack via spoofing the IP address of an authenticated user.
CVE-2025-63409 ↗	Feb 24, 2026Tuesday, 24 February 2026, 16:24	8.8 HIGH	—
Privilege escalation and improper access control in GCOM EPON 1GE C00R371V00B01 allows remote authenticated users to modify administrator only settings and extract administrator credentials.
CVE-2025-71056 ↗	Feb 23, 2026Monday, 23 February 2026, 21:19	8.1 HIGH	—
Improper session management in GCOM EPON 1GE ONU version C00R371V00B01 allows attackers to execute a session hijacking attack via spoofing the IP address of an authenticated user.