49 matches found
MiracleLinux 8 : firefox-140.10.2-1.el8_10.ML.1 (AXSA:2026-760:12)
The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2026-760:12 advisory. firefox: Other issue in the WebRTC component CVE-2026-8094 firefox: Memory safety bugs fixed in Firefox ESR 115.35.2, Firefox ESR 140.10.2 and Firefo...
EUVD-2021-12934
Malware in sbrugna...
EUVD-2025-27258
Malicious code in bioql PyPI...
EUVD-2023-45700
Malicious code in bioql PyPI...
EUVD-2025-27588
Malicious code in bioql PyPI...
CVE-2025-47415
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CRESTRON TOUCHSCREENS x70 allows Relative Path Traversal.This issue affects TOUCHSCREENS x70: from 3.000.0110.001 before 3.001.0031.001. Confirmed Affected Hardware: TSW-760, TSW-1060 Confirmed Affected...
CVE-2025-47415
Summary (CVE-2025-47415): CRESTRON TOUCHSCREENS x70 are affected by a path-traversal vulnerability. Affected hardware: TSW-760 and TSW-1060. Affected firmware: 3.000.0110.001 and earlier. Fixed firmware: 3.001.0031.001. The issue allows relative path traversal and is limited to network-accessible...
CVE-2025-47415 RECWAVE Filepath Traversal
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CRESTRON TOUCHSCREENS x70 allows Relative Path Traversal.This issue affects TOUCHSCREENS x70: from 3.000.0110.001 before 3.001.0031.001. Confirmed Affected Hardware: TSW-760, TSW-1060 Confirmed Affected...
CVE-2025-47416
A vulnerability exists in the ConsoleFindCommandMatchList function in libsymproc. so imported by ctpd that may lead to unauthorized execution of an attacker-defined file that gets prioritized by the ConsoleFindCommandMatchList. A third-party researcher discovered that the...
CVE-2025-47416 ConsoleFindCommandMatchList
A vulnerability exists in the ConsoleFindCommandMatchList function in libsymproc. so imported by ctpd that may lead to unauthorized execution of an attacker-defined file that gets prioritized by the ConsoleFindCommandMatchList. A third-party researcher discovered that the...
CVE-2025-47416
CVE-2025-47416 affects Crestron touch panels TSW-760 and TSW-1060. The vulnerability resides in the ConsoleFindCommandMatchList function in libsymproc.so imported by ctpd, which may lead to unauthorized execution of an attacker-defined file prioritized by ConsoleFindCommandMatchList. The issue is...
PT-2025-36922
Name of the Vulnerable Software and Affected Versions: CRESTRON TOUCHSCREENS x70 versions 3.000.0110.001 through 3.001.0030.000 Description: A path traversal vulnerability exists in CRESTRON TOUCHSCREENS x70, allowing relative path traversal. This issue affects TSW-760 and TSW-1060 hardware runni...
PT-2025-36735
Name of the Vulnerable Software and Affected Versions: TSW-760 versions prior to 3.001.0031.001 TSW-1060 versions prior to 3.001.0031.001 Description: A vulnerability exists in the ConsoleFindCommandMatchList function within libsymproc.so imported by ctpd that may allow an attacker to execute an...
CVE-2021-26113
A use of a one-way hash with a predictable salt vulnerability CWE-760 in FortiWAN before 4.5.9 may allow an attacker who has previously come in possession of the password file to potentially guess passwords therein stored...
CVE-2023-41183
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-41183
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-41183
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-41183 NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-41183 NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-41183
The CVE-2023-41183 issue affects NETGEAR Orbi 760 routers, where the SOAP API implementation lacks authentication, enabling network-adjacent attackers to bypass authentication and access protected functionality. The NVD/NIST records (and ZDI) confirm an authentication bypass with CVSSv3.0 metrics...