MAL-2025-35005 Malicious code in test-mlw2-brail-nancy (npm)

The package test-mlw2-brail-nancy was found to contain malicious code...

CVE-2025-35005

Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFMAC command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argumen...

CVE-2025-35005

Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFMAC command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argumen...

CVE-2025-35005 Microhard Bullet-LTE and IPn4Gii AT+MFMAC Argument Injection

Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFMAC command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argumen...

CVE-2025-35005 Microhard Bullet-LTE and IPn4Gii AT+MFMAC Argument Injection

Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFMAC command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argumen...

CVE-2025-35005

CVE-2025-35005 affects Microhard BulletLTE-NA2 and IPn4Gii-NA2. The issue is a post-authentication command injection in the AT+MFMAC command due to improper neutralization of argument delimiters, enabling privilege escalation. The vulnerability is classified as CWE-88 with CVSS v3.1 base score 7....

CVE-2021-35005

This vulnerability allows local attackers to disclose sensitive information on affected installations of TeamViewer. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the TeamViewer...

airflow-clickhouse-plugin (>=0.10.0 <=0.10.1), airflow-provider-ibm-db2 (=0.1.2) +4 more potentially affected by CVE-2023-35005 via apache-airflow (>=2.5.0 <=2.5.3)

apache-airflow PYPI version =2.5.0, =0.10.0, =2.3.0.dev0, =0.0.37, =0.1.2, =0.2.0, =0.2.1 Source cves: CVE-2023-35005 Source advisory: OSV:GHSA-MJFF-WV85-HMCJ...

CVE-2023-35005

In Apache Airflow, some potentially sensitive values were being shown to the user in certain situations. This vulnerability is mitigated by the fact configuration is not shown in the UI by default only if webserver exposeconfig is set to non-sensitive-only, and not all uncensored values are...

airflow-clickhouse-plugin (>=0.10.0 <=0.10.1), airflow-provider-ibm-db2 (=0.1.2) +4 more potentially affected by CVE-2023-35005 via apache-airflow (>=2.5.0 <=2.5.3)

apache-airflow PYPI version =2.5.0, =0.10.0, =2.3.0.dev0, =0.0.37, =0.1.2, =0.2.0, =0.2.1 Source cves: CVE-2023-35005 Source advisory: OSV:PYSEC-2023-89...

CVE-2023-35005

Apache Airflow (affected versions 2.5.0 up to 2.6.1) has an information disclosure issue where potentially sensitive values could be shown to users in certain UI scenarios. The root cause relates to how configuration values may be exposed in the web UI, with mitigations noting that configuration ...

CVE-2023-35005 Apache Airflow: Information disclosure on configuration view

In Apache Airflow, some potentially sensitive values were being shown to the user in certain situations. This vulnerability is mitigated by the fact configuration is not shown in the UI by default only if webserver exposeconfig is set to non-sensitive-only, and not all uncensored values are...

CVE-2021-35005

creationtimestamp| type| source ---|---|--- 2022-01-24 20:17:33+00:00| seen| https://t.me/cibsecurity/36138...

CVE-2021-35005

CVE-2021-35005 relates to TeamViewer and is supported across multiple sources (NVD, Red Hat, ZDI, CNVD, etc.). The concrete technical detail: a local information-disclosure flaw in the TeamViewer service caused by improper validation of user-supplied data, leading to a read past the end of an all...