Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2026-1528)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2026-3770

A flaw has been found in SourceCodester Computer Laboratory Management System 1.0. This affects an unknown part. This manipulation causes cross-site request forgery. The attack is possible to be carried out remotely. The exploit has been published and may be used...

CVE-2026-3770

creationtimestamp| type| source ---|---|--- 2026-03-08 20:15:51+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-3770...

CVE-2025-3770 affecting package edk2 for versions less than 20230301gitf80f052277c8-43

CVE-2025-3770 affecting package edk2 for versions less than 20230301gitf80f052277c8-43. A patched version of the package is available...

Important: edk2

Issue Overview: EDK2 contains a vulnerability in BIOS where an attacker may cause "Protection Mechanism Failure" by local access. Successful exploitation of this vulnerability will lead to arbitrary code execution and impact Confidentiality, Integrity, and Availability. CVE-2025-3770 Affected...

CVE-2025-3770

CVE-2025-3770 refers to a vulnerability in EDK2 BIOS where a local attacker can trigger a Protection Mechanism Failure , enabling arbitrary code execution and impacting Confidentiality, Integrity, and Availability . Connected Nessus advisories for EulerOS, Oracle Linux, and Ubuntu translate this ...

CVE-2025-3770 SMM IDT Privilege Escalation Vulnerability

EDK2 contains a vulnerability in BIOS where an attacker may cause “Protection Mechanism Failure” by local access. Successful exploitation of this vulnerability will lead to arbitrary code execution and impact Confidentiality, Integrity, and Availability...

CVE-2025-3770 SMM IDT Privilege Escalation Vulnerability

EDK2 contains a vulnerability in BIOS where an attacker may cause “Protection Mechanism Failure” by local access. Successful exploitation of this vulnerability will lead to arbitrary code execution and impact Confidentiality, Integrity, and Availability...

CVE-2022-3770

A vulnerability classified as critical was found in Yunjing CMS. This vulnerability affects unknown code of the file /index/user/uploadimg.html. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public a...

CVE-2020-3770

Adobe Photoshop CC 2019 versions 20.0.8 and earlier, and Photoshop 2020 versions 21.1 and earlier have a buffer errors vulnerability. Successful exploitation could lead to arbitrary code execution...

CVE-2024-3770

The CVE-2024-3770 issue affects PHPGurukul Student Record System version 3.20, specifically the file /manage-courses.php?del=1. The root cause is improper validation of the del parameter, enabling SQL injection that can be triggered remotely. Public exploit guidance exists. Affected impact is hig...

CVE-2024-3770 PHPGurukul Student Record System sql injection

A vulnerability has been found in PHPGurukul Student Record System 3.20 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /manage-courses.php?del=1. The manipulation of the argument del leads to sql injection. The attack can be launched remotely. T...

CVE-2024-3770 PHPGurukul Student Record System sql injection

A vulnerability has been found in PHPGurukul Student Record System 3.20 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /manage-courses.php?del=1. The manipulation of the argument del leads to sql injection. The attack can be launched remotely. T...

CVE-2023-3770

creationtimestamp| type| source ---|---|--- 2023-10-02 18:40:26+00:00| seen| https://t.me/cibsecurity/71412...

CVE-2023-3770

CVE-2023-3770 describes an incorrect input validation vulnerability in Ingeteam’s INGEPAC DA devices. The flaw allows an attacker on the same network to use the UDP discovery port (1925/UDP) to obtain device‑specific information without authentication. Affected component is the data validation on...

CVE-2023-3770 Vulnerability in Ingeteam's INGEPAC DA

Incorrect validation vulnerability of the data entered, allowing an attacker with access to the network on which the affected device is located to use the discovery port protocol 1925/UDP to obtain device-specific information without the need for authentication...

CVE-2012-3770

creationtimestamp| type| source ---|---|--- 2023-09-14 22:24:52+00:00| seen| Telegram/1O62GwMRX-cXA1HERBIZ4kzrxiH80c8TC3uLWbW0VS60zAU...

BELL-CVE-2021-3770 CVE-2021-3770 does not affect BellSoft software

Bulletin has no description...

CVE-2022-3770

creationtimestamp| type| source ---|---|--- 2022-10-31 17:37:51+00:00| seen| https://t.me/cibsecurity/52283...

CVE-2022-3770

CVE-2022-3770 concerns Yunjing CMS. The vulnerability affects unknown code in the file /index/user/upload_img.html and allows unrestricted upload via manipulation of the file parameter, with remote triggering. The exploit has been publicly disclosed and may be used. Affected records (NVD, CVE lis...