Critical exposure
CVE-2025-34035 Engeniustech Epg5000 Firmware Command Injection
- CVSS 10
New critical Engeniustech Epg5000 Firmware Command Injection (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical exposure
New critical Engeniustech Epg5000 Firmware Command Injection (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Tvt Td-2004ts-cl-c Firmware Command Injection (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Linksys E1000 Command Injection (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
A hardcoded credential vulnerability exists in the Blue Angel Software Suite deployed on embedded Linux systems.
An OS command injection vulnerability exists in EnGenius EnShare Cloud Service version 1.4.11 and earlier.
An OS command injection vulnerability exists in white-labeled DVRs manufactured by TVT, affecting a custom HTTP service called "Cross Web...
An OS command injection vulnerability exists in various models of E-Series Linksys routers via the /tmUnblock.cgi and /hndUnblock.cgi end...
A code injection vulnerability exists in Yonyou UFIDA NC v6.5 and prior due to the exposure of the BeanShell testing servlet (bsh.servlet...
An arbitrary file upload vulnerability exists in the Zhiyuan OA platform via the wpsAssistServlet interface.
An OS command injection vulnerability exists in the Chinese versions of Sangfor Endpoint Detection and Response (EDR) management platform...
Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload firmware through a public update page, pot...
Multiple wireless router models from Sapido have an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inje...
Multiple wireless router models from Sapido have an Exposure of Sensitive Information vulnerability, allowing unauthenticated remote atta...