CVSS: 8.1EPSS: 0%CPEs: 6EXPL: 0CVE-2024-44167
https://notcve.org/view.php?id=CVE-2024-44167
16 Sep 2024 — This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13.7, visionOS 2, iOS 18 and iPadOS 18, macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to overwrite arbitrary files. • https://support.apple.com/en-us/121234 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46518
https://notcve.org/view.php?id=CVE-2023-46518
25 Oct 2023 — Mercury A15 V1.0 20230818_1.0.3 was discovered to contain a command execution vulnerability via the component cloudDeviceTokenSuccCB. Se descubrió que Mercury A15 V1.0 20230818_1.0.3 contiene una vulnerabilidad de ejecución de comandos a través del componente cloudDeviceTokenSuccCB. • https://github.com/XYIYM/Digging/blob/main/MERCURY/A15/1/1.md • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2021-27825 – MAC 1200R - Directory Traversal
https://notcve.org/view.php?id=CVE-2021-27825
10 Apr 2023 — A directory traversal vulnerability on Mercury MAC1200R devices allows attackers to read arbitrary files via a web-static/ URL. MAC 1200R suffers from a directory traversal vulnerability. • https://www.exploit-db.com/exploits/51315 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-31849
https://notcve.org/view.php?id=CVE-2022-31849
16 Jun 2022 — MERCURY MIPC451-4 1.0.22 Build 220105 Rel.55642n was discovered to contain a remote code execution (RCE) vulnerability which is exploitable via a crafted POST request. Se ha detectado que MERCURY MIPC451-4 versión 1.0.22 Build 220105 Rel.55642n, contiene una vulnerabilidad de ejecución de código remota (RCE) que puede aprovecharse por medio de una petición POST diseñada • https://github.com/skyedai910/Vuln/tree/master/MERCURY_MIPC451-4/command_execution_0 •
CVSS: 7.5EPSS: 10%CPEs: 2EXPL: 3CVE-2012-4999 – Mercury MR804 Router - Multiple HTTP Header Fields Denial of Service Vulnerabilities
https://notcve.org/view.php?id=CVE-2012-4999
19 Sep 2012 — Mercury MR804 Router 8.0 3.8.1 Build 101220 Rel.53006nB allows remote attackers to cause a denial of service (service hang) via a crafted string in HTTP header fields such as (1) If-Modified-Since, (2) If-None-Match, or (3) If-Unmodified-Since. NOTE: some of these details are obtained from third party information. El Router Mercury MR804 v8.0 3.8.1 Build 101220 Rel.53006nB permite a atacantes remotos provocar una denegación de servicio (por bloqueo del servicio) a través de una cadena especificamente modifi... • https://www.exploit-db.com/exploits/36868 • CWE-20: Improper Input Validation •