This page aggregates publicly disclosed CVE and security risk information related to dreambox, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2017-14135 | enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py in the webadmin plugin for opendreambox 2.0.0 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the command parameter to the /script URI. | [email protected] | 9.8 | 90.11% | 2017-09-04 | 2026-05-13 |
| CVE-2008-3936 | The web interface in Dreambox DM500C allows remote attackers to cause a denial of service (application hang) via a long URI. | [email protected] | 7.8 | 2.40% | 2008-09-05 | 2026-04-23 |