BIT-DRUPAL-2025-13083 Drupal core - Moderately critical - Information disclosure - SA-CORE-2025-008

Use of Web Browser Cache Containing Sensitive Information vulnerability in Drupal Drupal core allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Drupal core: from 8.0.0 before 10.4.9, from 10.5.0 before 10.5.6, from 11.0.0 before 11.1.9, from 11.2.0 before...

PT-2025-47346

Name of the Vulnerable Software and Affected Versions Drupal versions 8.0.0 through 10.4.9 Drupal versions 10.5.0 through 10.5.6 Drupal versions 11.0.0 through 11.1.9 Drupal versions 11.2.0 through 11.2.8 Description A flaw exists in Drupal core that allows for content spoofing through a user...

EUVD-2009-0151

Malware in sbrugna...

EUVD-2009-1236

Malware in sbrugna...

CVE-2022-3211

Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.5.6...

CVE-2019-10875

A URL spoofing vulnerability was found in all international versions of Xiaomi Mi browser 10.5.6-g aka the MIUI native browser and Mint Browser 1.5.3 due to the way they handle the "q" query parameter. The portion of an https URL before the ?q= substring is not shown to the user...

CVE-2025-22473

Dell SmartFabric OS10 Software, versions 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contains an Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code...

CVE-2025-22472

Dell SmartFabric OS10 Software, versions 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contains an Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to...

CVE-2024-49558

Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an Improper Privilege Management vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...

CVE-2024-49557

Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code...

CVE-2024-48838

Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains a Files or Directories Accessible to External Parties vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Filesystem access for attacker...

CVE-2024-48837

Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution...

CVE-2024-49560

Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains a command injection vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution...

PT-2024-8147 · Dell · Os10

Name of the Vulnerable Software and Affected Versions: Dell SmartFabric OS10 versions 10.5.3.x through 10.5.6.x Description: The issue is related to improper privilege management in the network operating system, which could allow an attacker to elevate their privileges. A low-privileged attacker...

CVE-2024-39577

Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability leading to code...

Dell SmartFabric OS10 命令注入漏洞

Dell SmartFabric OS10 is a Linux-based network switch operating system from Dell USA. A command injection vulnerability exists in Dell SmartFabric OS10 versions 10.5.6.x, 10.5.5.x, 10.5.4.x, and 10.5.3.x. The vulnerability, which stems from improper neutralization of a special element, could lead...

Dell SmartFabric OS10 资源管理错误漏洞

Dell SmartFabric OS10 is a set of Linux-based network switch operating systems from Dell USA. A resource management error vulnerability exists in Dell SmartFabric OS10 versions 10.5.6.x, 10.5.5.x, 10.5.4.x, and 10.5.3.x. The vulnerability stems from an authenticated user having physical access to...

PT-2024-27321 · Dell · Os10

Name of the Vulnerable Software and Affected Versions: Dell SmartFabric OS10 Software, versions 10.5.3.x through 10.5.6.x Description: The issue is related to an Uncontrolled Resource Consumption vulnerability. A remote unauthenticated host could potentially exploit this vulnerability, leading to...

CVE-2024-25949

Dell OS10 Networking Switches, versions10.5.6.x, 10.5.5.x, 10.5.4.x and 10.5.3.x ,contain an improper authorization vulnerability. A remote authenticated attacker could potentially exploit this vulnerability leading to escalation of privileges...

PT-2024-21238 · Dell · Dell Os10 Networking Switches

Name of the Vulnerable Software and Affected Versions: Dell OS10 Networking Switches versions 10.5.3.x through 10.5.6.x Description: The issue is related to an improper authorization vulnerability. A remote authenticated attacker could potentially exploit this vulnerability, leading to escalation...