CVE-2025-22463

creationtimestamp| type| source ---|---|--- 2025-06-10 15:51:18+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114659863942584780 2025-06-10 16:01:27+00:00| published-proof-of-concept| Telegram/Cx1-p36APBve2ZXOx6JZQ1ihep0qwdXJnQmLSJI9jXODK8 2025-06-11 04:33:14+00:00| seen|...

CVE-2025-22463

A hardcoded key in Ivanti Workspace Control before version 10.19.10.0 allows a local authenticated attacker to decrypt the stored environment password...

Security Advisory Ivanti Workspace Control (CVE-2025-5353, CVE- CVE-2025-22463, CVE-2025-22455)

Summary Ivanti has released updates for Ivanti Workspace Control which address three high severity vulnerabilities. Successful exploitation could lead to credential compromise. We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure. Vulnerability...

CVE-2024-22463

Dell PowerScale OneFS versions 8.2.x through 9.6.0.x are affected by a vulnerability described as the use of a broken or risky cryptographic algorithm, which can lead to disclosure and integrity concerns for sensitive data. The issue is triggered by the software’s cryptographic implementation rat...

CVE-2023-22463

creationtimestamp| type| source ---|---|--- 2023-01-04 18:18:19+00:00| seen| https://t.me/cibsecurity/55897 2025-03-10 21:39:13+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7061...

CVE-2023-22463 KubePi's Hardcoded Jwtsigkeys allows malicious actor to login with a forged JWT token

KubePi is a k8s panel. The jwt authentication function of KubePi through version 1.6.2 uses hard-coded Jwtsigkeys, resulting in the same Jwtsigkeys for all online projects. This means that an attacker can forge any jwt token to take over the administrator account of any online project. Furthermor...

CVE-2023-22463

KubePi (Kubernetes panel)

CVE-2023-22463 KubePi's Hardcoded Jwtsigkeys allows malicious actor to login with a forged JWT token

KubePi is a k8s panel. The jwt authentication function of KubePi through version 1.6.2 uses hard-coded Jwtsigkeys, resulting in the same Jwtsigkeys for all online projects. This means that an attacker can forge any jwt token to take over the administrator account of any online project. Furthermor...

CVE-2022-22463

creationtimestamp| type| source ---|---|--- 2022-07-08 22:18:32+00:00| seen| https://t.me/cibsecurity/45830...

CVE-2021-22463

A component of the HarmonyOS has a Use After Free vulnerability . Local attackers may exploit this vulnerability to cause Kernel Information disclosure...

CVE-2021-22463

CVE-2021-22463 concerns a Use After Free vulnerability in a HarmonyOS component that may allow a local attacker to cause a kernel information disclosure. The available connected records confirm: affected product line is HarmonyOS; vulnerability type is Use After Free; impact is kernel information...