EUVD-2023-49459

Malicious code in bioql PyPI...

PT-2025-21779 · Unknown · Tiiwee X1 Alarm System

Name of the Vulnerable Software and Affected Versions: Tiiwee X1 Alarm System version TWX1HAKV2 Description: The issue allows for authentication bypass through capture-replay, resulting in physical access to protected facilities without triggering an alarm. Recommendations: For Tiiwee X1 Alarm...

PT-2025-5978 · Audiocodes · Audiocodes One Voice Operations Center

Name of the Vulnerable Software and Affected Versions: AudioCodes One Voice Operations Center OVOC versions prior to 8.4.582 Description: A path traversal issue allows sensitive data to be read without any authentication. This means that an attacker could potentially access confidential informati...

CVE-2024-3263

CVE-2024-3263 affects YMS VIS Pro due to improper system-credentials generation and weak password policy, enabling brute-force login attempts. Public details identify affected versions as VIS Pro 3.3.0.7). There is no explicit exploitation details or public in-the-wild exploit information provide...

CVE-2023-45152

Engelsystem is a shift planning system for chaos events. A Blind SSRF in the "Import schedule" functionality makes it possible to perform a port scan against the local environment. This vulnerability has been fixed in commit ee7d30b33. If a patch cannot be deployed, operators should ensure that n...

CVE-2023-45152 Blind Server Side Request Forgery (SSRF) in remote schedule import feature in Engelsystem

Engelsystem is a shift planning system for chaos events. A Blind SSRF in the "Import schedule" functionality makes it possible to perform a port scan against the local environment. This vulnerability has been fixed in commit ee7d30b33. If a patch cannot be deployed, operators should ensure that n...

DRUPAL-CONTRIB-2023-030

This module enables you to allow and/or require users to use a second authentication method in addition to password authentication. The module doesn't sufficiently ensure all core login routes, including the password reset page, require a second factor credential. This vulnerability is mitigated ...

Microsoft Windows: Require additional authentication at startup

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winadditionalauthstartup.nasl 11363 2018-09-12 13:46:05Z emoss $ Check value for Require additional authentication at startup Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net...

Microsoft Windows: Require additional authentication at startup (TPM startup key)

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winaddauthtpmstartupkey.nasl 11363 2018-09-12 13:46:05Z emoss $ Check value for Require additional authentication at startup: Configure TPM startup key Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH...