PT-2025-49009

Name of the Vulnerable Software and Affected Versions ansible-collection-community-general affected versions not specified Description A flaw exists in ansible-collection-community-general that can lead to information exposure of sensitive credentials, specifically plaintext passwords. This occur...

Linux Distros Unpatched Vulnerability : CVE-2025-14010

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext...

CVE-2025-59693

The Chassis Management Board in Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allows a physically proximate attacker to obtain debug access and escalate privileges by bypassing the tamper label and opening the chassis without leaving evidence, and accessing th...

EUVD-2025-175330

Keycloak has debug default bind address...

GHSA-J4VQ-Q93M-4683 Keycloak has debug default bind address

A vulnerability exists in Keycloak's server distribution where enabling debug mode --debug insecurely defaults to binding the Java Debug Wire Protocol JDWP port to all network interfaces 0.0.0.0. This exposes the debug port to the local network, allowing an attacker on the same network segment to...

Keycloak has debug default bind address

A vulnerability exists in Keycloak's server distribution where enabling debug mode --debug insecurely defaults to binding the Java Debug Wire Protocol JDWP port to all network interfaces 0.0.0.0. This exposes the debug port to the local network, allowing an attacker on the same network segment to...

CVE-2025-59693

The CVE affects Entrust nShield hardware: Chassis Management Board in nShield Connect XC, nShield 5c, and nShield HSMi up to firmware versions 13.6.11 and 13.7. Root cause is physical access bypass of tamper labels to reach the JTAG connector, enabling a proximate attacker to gain debug access an...

CVE-2025-59693

The Chassis Management Board in Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allows a physically proximate attacker to obtain debug access and escalate privileges by bypassing the tamper label and opening the chassis without leaving evidence, and accessing th...

Malicious code in debug-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88f2a76a5ede2df04c7d9b90d9fe0164f99a388aaf4ba018dc9b40f2b794d967 The package debug-common was found to contain malicious code...

EUVD-2025-200060

Malicious code in debug-common npm...

EUVD-2025-200063

Malicious code in animation-debug-app npm...

Malicious code in animation-debug-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8de5120a99a3428e311006c153a98bf97b0c46f7c9c633f241f75896adfe219 The package animation-debug-app was found to contain malicious code...

MAL-2025-191509 Malicious code in debug-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88f2a76a5ede2df04c7d9b90d9fe0164f99a388aaf4ba018dc9b40f2b794d967 The package debug-common was found to contain malicious code...

MAL-2025-191506 Malicious code in animation-debug-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8de5120a99a3428e311006c153a98bf97b0c46f7c9c633f241f75896adfe219 The package animation-debug-app was found to contain malicious code...

CVE-2025-64983

Smart Video Doorbell firmware versions prior to 2.01.078 contain an active debug code vulnerability that allows an attacker to connect via Telnet and gain access to the device...

SwitchBot Smart Video Doorbell vulnerable to active debug code

Overview Smart Video Doorbell provided by SwitchBot contains the following vulnerability. Active debug code CWE-489 - CVE-2025-64983 Researcher reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An attacker on ...

CVE-2025-64983

Smart Video Doorbell firmware versions prior to 2.01.078 contain an active debug code vulnerability that allows an attacker to connect via Telnet and gain access to the device...

CVE-2025-64983

Smart Video Doorbell firmware versions prior to 2.01.078 contain an active debug code vulnerability that allows an attacker to connect via Telnet and gain access to the device...

CVE-2025-64983

CVE-2025-64983 concerns SwitchBot’s Smart Video Doorbell. Firmware versions prior to 2.01.078 reportedly include an active debug code that can be exploited to connect via Telnet, granting an attacker access to the device. The vulnerability directly enables unauthorized access on an adjacent netwo...

CVE-2025-64983

Smart Video Doorbell firmware versions prior to 2.01.078 contain an active debug code vulnerability that allows an attacker to connect via Telnet and gain access to the device...