Linux Distros Unpatched Vulnerability : CVE-2026-7900

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overflow in ANGLE in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform ...

Exploit for OS Command Injection in Fortinet Fortisiem

CYBERDUDEBIVASH FortiSIEM CVE-2025-64155 Scanner Authorized h...

Exploit for OS Command Injection in Fortinet Fortisiem

CVE-2025-25256 - Fortinet FortiSIEM Vulnerability Overview...

Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit Code

Fortinet is alerting customers of a critical security flaw in FortiSIEM for which it said there exists an exploit in the wild. The vulnerability, tracked as CVE-2025-25256 , carries a CVSS score of 9.8 out of a maximum of 10.0. "An improper neutralization of special elements used in an OS command...

CVE-2025-7900

The femanager extension for TYPO3 allows Insecure Direct Object Reference resulting in unauthorized modification of userdata. This issue affects femanager version 6.4.1 and below, 7.0.0 to 7.5.2 and 8.0.0 to 8.3.0...

CVE-2025-7900

creationtimestamp| type| source ---|---|--- 2025-07-22 13:01:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lukkrztxat2v...

CVE-2025-7900

The femanager extension for TYPO3 allows Insecure Direct Object Reference resulting in unauthorized modification of userdata. This issue affects femanager version 6.4.1 and below, 7.0.0 to 7.5.2 and 8.0.0 to 8.3.0...

CVE-2025-7900

The femanager extension for TYPO3 allows Insecure Direct Object Reference resulting in unauthorized modification of userdata. This issue affects femanager version 6.4.1 and below, 7.0.0 to 7.5.2 and 8.0.0 to 8.3.0...

CVE-2025-7900 Insecure Direct Object Reference in extension "femanager" (femanager)

The femanager extension for TYPO3 allows Insecure Direct Object Reference resulting in unauthorized modification of userdata. This issue affects femanager version 6.4.1 and below, 7.0.0 to 7.5.2 and 8.0.0 to 8.3.0...

CVE-2025-7900

CVE-2025-7900 — The femanager extension for TYPO3 contains an Insecure Direct Object Reference that allows unauthorized modification of userdata. Affected versions: 6.4.1 and below; 7.0.0–7.5.2; 8.0.0–8.3.0. Root cause: IDOR in user data handling. Impact: unauthorized modification of userdata. Re...

CVE-2024-7900

creationtimestamp| type| source ---|---|--- 2024-08-17 23:12:10+00:00| seen| https://t.me/cvedetector/3437...

Cisco Unified IP Phones 7900 Series Unsigned Code Installation (CVE-2011-1637)

Cisco Unified IP Phones 7900 devices aka TNP phones with software before 9.2.1 do not properly verify signatures for software images, which allows local users to gain privileges via a crafted image, aka Bug ID CSCtn65962. This plugin only works with Tenable.ot. Please visit...

Cisco Unified IP Phones 7900 Permissions, Privileges, and Access Controls (CVE-2011-1603)

Cisco Unified IP Phones 7900 devices aka TNP phones with software before 9.2.1 allow local users to gain privileges via unspecified vectors, aka Bug ID CSCtn65815. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

Cisco Unified IP Phones 7900 Permissions, Privileges, and Access Controls (CVE-2011-1602)

The su utility on Cisco Unified IP Phones 7900 devices aka TNP phones with software before 9.0.3 allows local users to gain privileges via unspecified vectors, aka Bug ID CSCtf07426. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

MAL-2024-881 Malicious code in wlwz-2312-7900 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 878aeb82a49d804368d247c215e6c7558f6dd72355c907d30d144233ef77b4de Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in wlwz-2312-7900 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 878aeb82a49d804368d247c215e6c7558f6dd72355c907d30d144233ef77b4de Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

PT-2023-1536

Name of the Vulnerable Software and Affected Versions Cisco IP Phone versions prior to the fixed version Description Multiple vulnerabilities in the web-based management interface of certain Cisco IP Phones could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denia...

CVE-2019-5280

The SIP TLS module of Huawei CloudLink Phone 7900 with V600R019C10 has a TLS certificate verification vulnerability. Due to insufficient verification of specific parameters of the TLS server certificate, attackers can perform man-in-the-middle attacks, leading to the affected phones registered...

Security feature bypass

The SIP TLS module of Huawei CloudLink Phone 7900 with V600R019C10 has a TLS certificate verification vulnerability. Due to insufficient verification of specific parameters of the TLS server certificate, attackers can perform man-in-the-middle attacks, leading to the affected phones registered...

CVE-2019-5280

The CVE-2019-5280 issue affects Huawei CloudLink Phone 7900 (V600R019C10) SIP TLS module. The root cause is insufficient verification of TLS server certificate parameters, enabling potential man-in-the-middle attacks that can cause abnormal phone registrations and affect IP phone availability. Pu...