261 matches found
ManageEngine Desktop Central Java Deserialization
Zoho ManageEngine Desktop Central before 10.0.474 is vulnerable to a deserialization of untrusted data, which permits remote code execution. id: CVE-2020-10189 info: name: ManageEngine Desktop Central Java Deserialization author: king-alexander severity: critical description: | Zoho ManageEngine...
PT-2026-40125
The Ludwig framework thru 0.10.4 is vulnerable to insecure deserialization CWE-502 in its model serving component. When starting a model server with the ludwig serve command, the framework loads model weight files using torch.load without enabling the security-restrictive weights only=True...
flash-attention contains an insecure deserialization vulnerability in its checkpoint loading mechanism
The flash-attention training framework thru commit e724e2588cbe754beb97cf7c011b5e7e34119e62 2025-13-04 contains an insecure deserialization vulnerability CWE-502 in its checkpoint loading mechanism. The loadcheckpoint function in checkpoint.py and the checkpoint loading code in eval.py use...
CVE-2021-22777
A CWE-502: Deserialization of Untrusted Data vulnerability exists that could cause code execution by opening a malicious project file...
MAL-2025-192332 Malicious code in elf-stats-flickering-lantern-502 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebc613b513833195464938e6e5c51e891b1a9978f9648ee11ec41bb76519e2d2 The package elf-stats-flickering-lantern-502 was found to contain malicious code...
Malicious code in elf-stats-flickering-lantern-502 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebc613b513833195464938e6e5c51e891b1a9978f9648ee11ec41bb76519e2d2 The package elf-stats-flickering-lantern-502 was found to contain malicious code...
MAL-2025-192032 Malicious code in elf-stats-festive-wreath-502 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23cf502be6558f6cdee55cfa362f50b7dc6877d994c9901ba28a31ac1b70cc37 The package elf-stats-festive-wreath-502 was found to contain malicious code...
EUVD-2025-200920
Malicious code in elf-stats-festive-wreath-502 npm...
Malicious code in elf-stats-festive-wreath-502 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23cf502be6558f6cdee55cfa362f50b7dc6877d994c9901ba28a31ac1b70cc37 The package elf-stats-festive-wreath-502 was found to contain malicious code...
CVE-2025-55221
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted network packet can lead to a denial of service. An attacker can send an unauthenticated packet to trigger this vulnerability.This...
CVE-2025-55221
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted network packet can lead to a denial of service. An attacker can send an unauthenticated packet to trigger this vulnerability.This...
CVE-2025-54848
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this...
CVE-2025-54848
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this...
CVE-2025-54849
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this...
CVE-2025-54849
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this...
CVE-2025-54849
CVE-2025-54849 affects Socomec DIRIS Digiware M-70 gateway (firmware 1.6.9). A DoS exists in Modbus TCP and Modbus RTU over TCP due to unauthenticated access that can be triggered by a crafted Modbus TCP Write Single Register (code 6) message to port 502, writing value 1 to register 4352, which c...
EUVD-2025-200033
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this...
EUVD-2025-200034
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this...
CVE-2025-54848
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this...
CVE-2025-54848
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this...