MAL-2025-36444 Malicious code in test-mlw2-thorn-glint (npm)

The package test-mlw2-thorn-glint was found to contain malicious code...

CVE-2024-36444

cgi-bin/fdmcgiwebv2.cgi on Swissphone DiCal-RED 4009 devices allows an unauthenticated attacker to gain access to device logs...

CVE-2021-36444

Cross Site Request Forgery CSRF vulnerability in imcat 5.4 allows remote attackers to gain escalated privileges via flaws one time token generation on the add administrator page...

CVE-2020-36444

An issue was discovered in the async-coap crate through 2020-12-08 for Rust. Send and Sync are implemented for ArcGuard without trait bounds on RC...

CVE-2021-36444

creationtimestamp| type| source ---|---|--- 2025-03-26 17:25:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8910...

DiCal-RED 4009 Log Disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-040 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Versions: Unknown Tested Versions: 4009 Vulnerability Type: Improper Authentication CWE-287 Risk Level: High Solution Status: Open Manufacturer Notification:...

CVE-2024-36444

creationtimestamp| type| source ---|---|--- 2024-08-22 17:42:30+00:00| seen| https://t.me/cvedetector/3918...

CVE-2024-36444

cgi-bin/fdmcgiwebv2.cgi on Swissphone DiCal-RED 4009 devices allows an unauthenticated attacker to gain access to device logs...

CVE-2024-36444

CVE-2024-36444 affects Swissphone DiCal-RED 4009 devices. The issue is exposed via the endpoint cgi-bin/fdmcgiwebv2.cgi , enabling an unauthenticated attacker to access device logs. Multiple sources classify this as an authentication issue (Imporper Authentication/CWE-287) and note the vendor has...

CVE-2021-36444

CVE-2021-36444 affects imcat 5.4, with a CSRF flaw on the add administrator page due to a flawed one-time token generation. This can allow remote attackers to escalate privileges. The advisory notes a PoC exists; no in-the-wild exploit status is confirmed in the provided records. APT-style remedi...

CVE-2022-36444

creationtimestamp| type| source ---|---|--- 2022-07-25 12:32:53+00:00| seen| https://t.me/cibsecurity/46884...

CVE-2022-36444

Affected products: Atos Unify OpenScape SBC (versions 9–10 before 10R2.2.1), OpenScape Branch (versions 9–10 before 10R2.1.1), and OpenScape BCF 10 before 10R9.12.1. Root cause/impact: a remote code execution vulnerability allows an unauthenticated attacker with network access to the admin interf...

async-coap-tokio (=0.1.0) potentially affected by CVE-2020-36444 via async-coap (=0.1.0)

async-coap CARGO version =0.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on async-coap and may be impacted: - async-coap-tokio =0.1.0 Source cves: CVE-2020-36444 Source advisory: OSV:GHSA-9J8Q-M9X5-9G6J...

CVE-2020-36444

creationtimestamp| type| source ---|---|--- 2021-08-08 12:41:33+00:00| seen| https://t.me/cibsecurity/26993...

CVE-2020-36444

An issue was discovered in the async-coap crate through 2020-12-08 for Rust. Send and Sync are implemented for ArcGuard without trait bounds on RC...

CVE-2020-36444

Summary (CVE-2020-36444) : The issue affects the Rust crate async-coap (through 2020-12-08). The Send/Sync implementations for ArcGuard are defined without trait bounds on RC. This enables scenarios where RC may be non-Send or non-Sync to be sent across threads, and allows concurrent access to RC...

async-coap-tokio (=0.1.0) potentially affected by CVE-2020-36444 via async-coap (=0.1.0)

async-coap CARGO version =0.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on async-coap and may be impacted: - async-coap-tokio =0.1.0 Source cves: CVE-2020-36444 Source advisory: OSV:RUSTSEC-2020-0124...