CWE-940: CWE-940

A remote code execution vulnerability in H3C Magic RC3000 routers allows attackers to execute arbitrary code via the routing functionality. This affec...

This vulnerability allows unprivileged local users to access D-Bus services as root through the Deepin dde-api-proxy service, which runs with root pri...

This vulnerability allows unauthenticated remote attackers to interfere with TCP connection setup by exploiting improper sequence number validation, p...

This vulnerability in OpenVPN allows attackers to hijack VPN sessions by spoofing source IP addresses, causing denial of service for legitimate client...

This vulnerability affects Siemens SIMATIC CP 343-1 and SIPLUS NET CP 343-1 communication processors. An unauthenticated remote attacker can cause den...

CVE-2025-25305 is a man-in-the-middle vulnerability in Home Assistant Core caused by improper SSL certificate verification. When integrations migrated...

This vulnerability allows attackers on the same wireless network to disrupt or hijack TCP connections by sending forged TCP RST packets to the router....

This vulnerability allows attackers to spoof and route arbitrary network traffic through systems with IPv4-in-IPv6 or IPv6-in-IPv6 tunneling enabled, ...

This vulnerability allows attackers on the same wireless network to disrupt or hijack TCP connections by sending forged TCP RST packets to the Redmi r...

Dell PowerProtect Data Manager versions before 19.22 have a REST API vulnerability where improper verification of communication channels allows high-p...

An unauthenticated attacker on the same wireless network can send crafted IPv6 Router Advertisement packets to temporarily change the IPv6 gateway on ...