CVE-2026-30769

EPSS 0.13%
Veröffentlicht 29.04.2026 00:00:00
Zuletzt bearbeitet 05.05.2026 14:31:16
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

wget2 Improper Certificate Validation

An issue in the TVicPort64.sys component of EnTech Taiwan TVicPort Product v4.0, File v5.2.1.0 allows attackers to escalate privileges via sending crafted IOCTL 0x80002008 requests.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 2 Referenzen 5

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Entechtaiwan ≫ Tvicport Version5.2.1.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.13%	0.029

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

https://www.entechtaiwan.com/dev/port/index.shtm

Product

https://gist.github.com/lleekkoo/6c73fa4e137aca6f5dfe6aec4f6a7b29

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-30769

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-30769

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-30769

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-30769