汇总 endruntechnologies 相关全部产品的 CVE 与安全漏洞情报,包括 CVSS、EPSS、公开时间与漏洞情报数据。
常见弱点模式包括 跨站脚本、CSRF与路径处理缺陷,在 生产负载与软件部署 使用场景中可能带来 会话劫持与文件覆盖 等风险。
相关漏洞数据主要来源于公开漏洞披露与安全公告,可用于评估历史漏洞暴露面与修复优先级。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2025-60969 | Directory Traversal vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0076-000 Ver 4.00 allows attackers to gain sensitive information. | [email protected] | 5.7 | 0.55% | 2025-10-06 | 2025-10-10 |
| CVE-2025-60967 | Cross Site Scripting (XSS) vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0076-000 Ver 4.00 allows attackers to gain sensitive information. | [email protected] | 7.3 | 0.27% | 2025-10-06 | 2025-10-10 |
| CVE-2025-60965 | OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, gain sensitive information, and possibly other unspecified impacts. | [email protected] | 9.1 | 1.66% | 2025-10-06 | 2025-10-10 |
| CVE-2025-60964 | OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, gain sensitive information, and possibly other unspecified impacts. | [email protected] | 9.1 | 1.66% | 2025-10-06 | 2025-10-10 |
| CVE-2025-60963 | OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive information. | [email protected] | 8.2 | 1.22% | 2025-10-06 | 2025-10-10 |
| CVE-2025-60962 | OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to gain sensitive information, and possibly other unspecified impacts. | [email protected] | 8.2 | 1.02% | 2025-10-06 | 2025-10-10 |
| CVE-2025-60961 | Cross Site Scripting (XSS) vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to gain sensitive information, and possibly other unspecified impacts. | [email protected] | 6.1 | 0.22% | 2025-10-06 | 2025-10-10 |
| CVE-2025-60960 | OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive information. | [email protected] | 8.2 | 1.22% | 2025-10-06 | 2025-10-10 |
| CVE-2025-60959 | OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to gain sensitive information. | [email protected] | 8.2 | 1.02% | 2025-10-06 | 2025-10-10 |
| CVE-2025-60958 | Cross Site Scripting (XSS) vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to gain sensitive information. | [email protected] | 7.3 | 0.27% | 2025-10-06 | 2025-10-10 |
| CVE-2025-60957 | OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive information. | [email protected] | 9.9 | 1.62% | 2025-10-06 | 2025-10-10 |
| CVE-2025-60956 | Cross Site Request Forgery (CSRF) vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and gain sensitive information. | [email protected] | 8.0 | 0.20% | 2025-10-06 | 2025-10-10 |