EUVD-2025-48388

Malicious code in cindy-mendut77-sukiwir npm...

CVE-2025-48388

creationtimestamp| type| source ---|---|--- 2025-05-29 10:08:17+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqchwvgwyfv2 2025-05-29 13:51:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqcugxgcq627...

CVE-2022-48388

In powerEx service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges...

CVE-2023-48388 Multisuns EasyLog web+ - Use of Hard-coded Password

Multisuns EasyLog web+ has a vulnerability of using hard-coded credentials. An remote attacker can exploit this vulnerability to access the system to perform arbitrary system operations or disrupt service...

CVE-2023-48388

CVE-2023-48388 affects Multisuns EasyLog web+ and centers on use of hard-coded credentials. The available connected sources confirm a remote, network-exposed vulnerability allowing an attacker to gain access and perform arbitrary system operations or disrupt service, with CVSS 3.1 vector: AV:N/AC...

CVE-2022-48388

creationtimestamp| type| source ---|---|--- 2023-05-09 07:43:16+00:00| seen| https://t.me/cibsecurity/63561...

CVE-2022-48388

In powerEx service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges...

CVE-2022-48388

The CVE-2022-48388 entry concerns UNISOC Chipsets’ powerEx service module. The vulnerability arises from a missing permission check in the powerEx service, enabling local escalation of privilege with no additional execution privileges. Affected component: powerEx service on UNISOC chipsets. Impac...