EUVD-2025-198515

Black Duck SCA versions prior to 2025.10.0 had user role permissions configured in an overly broad manner. Users with the scoped Project Manager user role with the Global User Read access permission enabled access to certain Project Administrator functionalities which should have be inaccessible...

PT-2025-34946

Name of the Vulnerable Software and Affected Versions: Arcserve Unified Data Protection UDP versions prior to 10.2 Arcserve Unified Data Protection UDP versions 8.0 through 10.1 Arcserve Unified Data Protection UDP versions 7.x and earlier Description: An authentication bypass in Arcserve Unified...

SUSE CVE-2025-0504

Black Duck SCA versions prior to 2025.10.0 had user role permissions configured in an overly broad manner. Users with the scoped Project Manager user role with the Global User Read access permission enabled access to certain Project Administrator functionalities which should have be inaccessible...

ManageEngine ServiceDesk Plus User Rights Management Vulnerability

ServiceDesk Plus is web-based helpdesk software that helps users manage all their communications from a single point. A user rights management vulnerability exists in ManageEngine ServiceDesk Plus that allows an attacker to access certain features that are only available to administrative users...