EUVD-2025-11857

Malicious code in bioql PyPI...

CVE-2024-11857

Bluetooth HCI Adaptor from Realtek has a Link Following vulnerability. Local attackers with regular privileges can create a symbolic link with the same name as a specific file, causing the product to delete arbitrary files pointed to by the link. Subsequently, attackers can leverage arbitrary fil...

CVE-2024-11857

creationtimestamp| type| source ---|---|--- 2025-06-02 04:05:47+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqlvjxbmjb42 2025-06-02 08:56:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqmfsurrzh2r...

CVE-2020-11857

An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. The vulnerability could allow remote attackers to access the OBR host as a non-admin user...

Metasploit Wrap-Up

Operations shell Operations and management software make popular targets due to their users typically having elevated privileges across a network. Our own wvu contributed the VMware vRealize Operations vROps Manager SSRF RCE exploit module for the vulnerabilities discovered by security researcher...

CVE-2020-11857

creationtimestamp| type| source ---|---|--- 2021-04-29 15:54:48+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/ssh/microfocusobrshrboadmin.rb 2025-02-06 03:13:44+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:10:22+00:00| seen|...

CVE-2020-11857

CVE-2020-11857 affects Micro Focus Operations Bridge Reporter up to v10.40, with an authorization bypass (and, per ZDI, a hard-coded shrboadmin password) enabling remote access to the OBR host and, in the cited advisory, remote code execution. Affected versions are 10.40 and earlier; no explicit ...

CVE-2019-11857

The CVE-2019-11857 entry concerns ALEOS ACEOS AceManager prior to versions 4.12.0, 4.9.5, and 4.4.9. The root cause is lack of input sanitization/validation in AceManager, leading to disclosure of sensitive system information. The vulnerability affects ACEOS/ALEOS components handling input in Ace...

Integer overflow

An issue was discovered on Samsung mobile devices with M6.0, N7.x and O8.x except exynos9610/9820 in all Platforms, M6.0 except MSM8909 SC77xx/9830 exynos3470/5420, N7.0 except MSM8939, N7.1 except MSM8996 SDM6xx/M6737T software. There is an integer underflow with a resultant buffer overflow in...

CVE-2018-21054

CVE-2018-21054 describes an integer underflow causing a buffer overflow in eCryptFS on Samsung mobile devices running M(6.0), N(7.x), and O(8.x) (with some model/version exclusions). Affected component is eCryptFS; root cause is underflow leading to overflow, with potential impact across confiden...

CVE-2018-21054

An issue was discovered on Samsung mobile devices with M6.0, N7.x and O8.x except exynos9610/9820 in all Platforms, M6.0 except MSM8909 SC77xx/9830 exynos3470/5420, N7.0 except MSM8939, N7.1 except MSM8996 SDM6xx/M6737T software. There is an integer underflow with a resultant buffer overflow in...

CVE-2018-11857

Improper input validation in WLAN encrypt/decrypt module can lead to a buffer copy in Snapdragon Mobile in version SD 835, SD 845, SD 850...

CVE-2018-11857

CVE-2018-11857 involves improper input validation in the WLAN encrypt/decrypt module in Qualcomm Snapdragon Mobile, causing a buffer copy vulnerability. Affected are SD 835, 845, and 850-based devices. The entry indicates local attack potential with high impact to confidentiality, integrity, and ...