icewhaletech Summary
Latest vulnerabilities published by icewhaletech
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Authentication Bypass Vulnerability in ZimaOS by IceWhaleTech
CVE-2026-21891IcewhaletechZimaos9.4CRITICALFile Upload Vulnerability in ZimaOS Affects Root Access
CVE-2025-58432IcewhaletechZimaos5.2MEDIUMFile Access Vulnerability in ZimaOS Affecting Localhost Users
CVE-2025-58431IcewhaletechZimaos4.8MEDIUMSensitive Data Exposure in ZimaOS API Endpoints Affecting Zima Devices
CVE-2024-49357IcewhaletechZimaos7.5HIGHZimaOS Vulnerability Allows Username Enumeration
CVE-2024-49358IcewhaletechZimaos5.3MEDIUMZimaOS Vulnerable to Directory Traversal Attack
CVE-2024-49359IcewhaletechZimaos7.5HIGHZimaOS Arbitrary File Read via Parameter Manipulation
CVE-2024-48931IcewhaletechZimaos7.5HIGHZimaOS Unauthenticated API Discloses Usernames
CVE-2024-48932IcewhaletechZimaos5.3MEDIUMUsername Enumeration in CasaOS via bypass of CVE-2024-24766
CVE-2024-28232IcewhaletechCasaos-userservice7.5HIGHCasaOS Login Page Disclosed Username Enumeration Vulnerability
CVE-2024-24766IcewhaletechCasaos-userservice7.5HIGHCasaOS UserService Vulnerability: Full Server Access via Password Brute Force
CVE-2024-24767IcewhaletechCasaos-userservice9.8CRITICALCasaOS UserService Update Fixes Path Filtering Vulnerability
CVE-2024-24765IcewhaletechCasaos-userservice9.8CRITICALCasaOS Command Injection vulnerability
CVE-2023-37469IcewhaletechCasaos8.8HIGHIncorrect identification of source IP addresses in CasaOS
CVE-2023-37265IcewhaletechCasaos-gatewayEPSS 91%9.8CRITICALWeak json web token (JWT) secrets in CasaOS
CVE-2023-37266IcewhaletechCasaosEPSS 89%9.8CRITICAL