MiracleLinux 7 : firewalld-0.4.3.2-8.el7 (AXSA:2016-1171:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-1171:01 advisory. firewalld is a firewall service daemon that provides a dynamic customizable firewall with a D-Bus interface. Security issues fixed with this release:...

Mozilla Firefox ESR < 45.8

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 45.8. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-06 advisory. - Mozilla developers and community members Boris Zbarsky, Christian Holler, Honza Bambas, Jon Coppeard,...

Mozilla Thunderbird < 45.8

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 45.8. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-07 advisory. - Mozilla developers and community members Boris Zbarsky, Christian Holler, Honza Bambas, Jon Coppeard,...

EUVD-2018-2555

Malware in sbrugna...

EUVD-2024-49730

Malicious code in bioql PyPI...

Rockwell Automation Stratix Managed Switches Cross-site Request Forgery to Code Execution (CVE-2025-7350)

A security issue affecting multiple Cisco devices also directly impacts Stratix 5410, 5700, and 8000 devices. This can lead to remote code execution by uploading and running malicious configurations without authentication. This plugin only works with Tenable.ot. Please visit...

CVE-2025-7350

A security issue affecting multiple Cisco devices also directly impacts Stratix® 5410, 5700, and 8000 devices. This can lead to remote code execution by uploading and running malicious configurations without authentication...

PT-2025-36722

Name of the Vulnerable Software and Affected Versions: Cisco Stratix 5410, 5700, and 8000 devices versions prior to IOS 15.28E6 Rockwell Stratix devices versions prior to IOS 15.28E6 Description: A security issue affects Cisco and Rockwell Stratix devices, potentially leading to remote code...

Unauthorized Access Vulnerability in NPort 5410 of Mosaic Technology (Shanghai) Co.

The NPort 5410 is an industrial-grade serial communication processor, mainly used to connect traditional serial devices to the network for remote management and monitoring. An unauthorized access vulnerability exists in the NPort 5410 of Mosaic Technology Shanghai Co. Ltd, which can be exploited ...

CVE-2025-5410

A vulnerability was found in Mist Community Edition up to 4.7.1. It has been declared as problematic. This vulnerability affects the function sessionstartresponse of the file src/mist/api/auth/middleware.py. The manipulation leads to cross-site request forgery. The attack can be initiated remotel...

Unauthorized Access Vulnerability in NPort 5410 of Mosaic Technology (Shanghai) Co.

The NPort 5410 is an industrial-grade serial communication processor, mainly used to connect traditional serial devices to the network for remote management and monitoring. The NPort 5410 has an unauthorized access vulnerability that can be exploited by attackers to obtain sensitive information...

CVE-2025-5410

A vulnerability was found in Mist Community Edition up to 4.7.1. It has been declared as problematic. This vulnerability affects the function sessionstartresponse of the file src/mist/api/auth/middleware.py. The manipulation leads to cross-site request forgery. The attack can be initiated remotel...

CVE-2025-5410

A vulnerability was found in Mist Community Edition up to 4.7.1. It has been declared as problematic. This vulnerability affects the function sessionstartresponse of the file src/mist/api/auth/middleware.py. The manipulation leads to cross-site request forgery. The attack can be initiated remotel...

CVE-2025-5410

creationtimestamp| type| source ---|---|--- 2025-06-01 23:15:19+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqlfcwuh2dp2 2025-06-02 02:22:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqlpqyd3m52s...

CVE-2025-5410 Mist Community Edition middleware.py session_start_response cross-site request forgery

A vulnerability was found in Mist Community Edition up to 4.7.1. It has been declared as problematic. This vulnerability affects the function sessionstartresponse of the file src/mist/api/auth/middleware.py. The manipulation leads to cross-site request forgery. The attack can be initiated remotel...

CVE-2025-5410 Mist Community Edition middleware.py session_start_response cross-site request forgery

A vulnerability was found in Mist Community Edition up to 4.7.1. It has been declared as problematic. This vulnerability affects the function sessionstartresponse of the file src/mist/api/auth/middleware.py. The manipulation leads to cross-site request forgery. The attack can be initiated remotel...

CVE-2024-9100

Zohocorp ManageEngine Analytics Plus versions before 5410 and Zoho Analytics On-Premise versions before 5410 are vulnerable to Path traversal...

CVE-2022-36266

In Airspan AirSpot 5410 version 0.3.4.1-4 and under there exists a stored XSS vulnerability. As the binary file /home/www/cgi-bin/login.cgi does not check if the user is authenticated, a malicious actor can craft a specific request on the login.cgi endpoint that contains a base32 encoded XSS...

CVE-2024-5410

creationtimestamp| type| source ---|---|--- 2025-02-13 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-15...

CVE-2024-9100

CVE-2024-9100 affects Zohocorp ManageEngine Analytics Plus prior to 5410 and Zoho Analytics On-Premise prior to 5410. The issue is a Path Traversal vulnerability. Public details confirm the affected versions and the underlying vulnerability class; no exploitation details are provided in the docum...