PT-2025-40419

Name of the Vulnerable Software and Affected Versions affected versions not specified Description An unauthenticated debug port may allow access to the device file system. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability...

Raisecom MSG1200 安全漏洞

The Raisecom MSG1200 is a Gigabit Converged Gateway from Raisecom China. A security vulnerability exists in the Raisecom MSG1200 that stems from an unauthenticated debug port that may allow access to the device file system...

CVE-2025-35031

Medical Informatics Engineering Enterprise Health includes the user's current session token in debug output. An attacker could convince a user to send this output to the attacker, thus allowing the attacker to impersonate that user. This issue is fixed as of 2025-04-08...

CVE-2025-56675

The EKEN video doorbell T6 BT60PLUSMAINV1.0GC108420230531 periodically sends debug logs to the EKEN cloud servers with sensitive information such as the Wi-Fi SSID and password...

CVE-2025-57428

Default credentials in Each Italy Wireless Mini Router WIRELESS-N 300M v28K.MiniRouter.20190211 allows attackers to gain access to the debug shell exposed via Telnet on Port 23 and execute hardware-level flash and register manipulation commands...

EKEN video doorbell T6 安全漏洞

EKEN video doorbell T6 is a visual doorbell device from EKEN. A security vulnerability exists in the EKEN video doorbell T6 BT60PLUSMAINV1.0GC108420230531 version, which originates from periodically sending debug logs containing sensitive information such as Wi-Fi SSIDs and passwords to a server ...

CVE-2025-56675

The EKEN video doorbell T6 BT60PLUSMAINV1.0GC108420230531 periodically sends debug logs to the EKEN cloud servers with sensitive information such as the Wi-Fi SSID and password...

CVE-2025-56675

The EKEN video doorbell T6 BT60PLUSMAINV1.0GC108420230531 periodically sends debug logs to the EKEN cloud servers with sensitive information such as the Wi-Fi SSID and password...

PT-2025-40018

Name of the Vulnerable Software and Affected Versions EKEN video doorbell T6 BT60PLUS MAIN V1.0 GC1084 20230531 Description The EKEN video doorbell T6 BT60PLUS MAIN V1.0 GC1084 20230531 firmware periodically transmits debug logs to EKEN cloud servers. These logs contain sensitive information,...

CVE-2025-56675

The CVE-2025-56675 entry concerns the EKEN video doorbell T6 BT60PLUS_MAIN_V1.0_GC1084_20230531, where the device periodically sends debug logs to EKEN cloud servers that include sensitive data such as the Wi‑Fi SSID and password. Public documents from Red Hat and others corroborate the issue as ...

CVE-2025-35031

Medical Informatics Engineering Enterprise Health includes the user's current session token in debug output. An attacker could convince a user to send this output to the attacker, thus allowing the attacker to impersonate that user. This issue is fixed as of 2025-04-08...

CVE-2025-35031

Medical Informatics Engineering Enterprise Health includes the user's current session token in debug output. An attacker could convince a user to send this output to the attacker, thus allowing the attacker to impersonate that user. This issue is fixed as of 2025-04-08...

CVE-2025-35031 Medical Informatics Engineering Enterprise Health includes session token in debug output

Medical Informatics Engineering Enterprise Health includes the user's current session token in debug output. An attacker could convince a user to send this output to the attacker, thus allowing the attacker to impersonate that user. This issue is fixed as of 2025-04-08...

CVE-2025-35031 Medical Informatics Engineering Enterprise Health includes session token in debug output

Medical Informatics Engineering Enterprise Health includes the user's current session token in debug output. An attacker could convince a user to send this output to the attacker, thus allowing the attacker to impersonate that user. This issue is fixed as of 2025-04-08...

CVE-2025-35031

Medical Informatics Engineering Enterprise Health is affected by CVE-2025-35031, where the software includes the user’s current session token in debug output. This enables an attacker to impersonate the user if the token is exfiltrated (e.g., via the user sending debug output). The issue is fixed...

Windows Silent Process Exit Persistence

Windows allows you to set up a debug process when a process exits. This module uploads a payload and declares that it is the debug process to launch when a specified process exits. Module Options msf use exploit/windows/persistence/imageexecoptions msf exploitimageexecoptions show targets...

CVE-2025-57428

Default credentials in Each Italy Wireless Mini Router WIRELESS-N 300M v28K.MiniRouter.20190211 allows attackers to gain access to the debug shell exposed via Telnet on Port 23 and execute hardware-level flash and register manipulation commands...

PT-2025-39872

Name of the Vulnerable Software and Affected Versions Medical Informatics Engineering Enterprise Health affected versions not specified Description The software includes a user's current session token in debug output. An attacker could potentially convince a user to send this output to the...

Medical Informatics Engineering Enterprise Health 安全漏洞

Medical Informatics Engineering Enterprise Health is a healthcare solution from US-based Medical Informatics Engineering. A security vulnerability exists in Medical Informatics Engineering Enterprise Health that stems from the inclusion of a user's current session token in the debug output, which...

CVE-2025-57428

The CVE-2025-57428 entry concerns Italy Wireless Mini Router WIRELESS-N 300M, firmware v28K.MiniRouter.20190211. Publicly available material confirms a default Telnet debug interface on port 23, with admin/admin credentials, granting access to a low-level shell. The exploit log shows commands suc...