CVE-2026-42919

Affected product: BIG-IP ( appliance mode feature ). The issue allows an authenticated administrator to bypass appliance mode security and execute arbitrary commands with higher privileges, a control‑plane only escalation with no data‑plane exposure as described in the advisory. For BIG-IP Next/1...

CVE-2026-20008

A vulnerability in a small subset of CLI commands that are used on Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an authenticated, local attacker to craft Lua code that could be used on the underlying operating...

CVE-2019-12310

ExaGrid appliances with firmware version v4.8.1.1044.P50 have a /monitor/data/Upgrade/ directory traversal vulnerability, which allows remote attackers to view and retrieve verbose logging information. Files within this directory were observed to contain sensitive run-time information, including...

Cisco Multiple Products Improper Input Validation Vulnerability

Cisco Secure Email Gateway, Secure Email, AsyncOS Software, and Web Manager appliances contains an improper input validation vulnerability that allows threat actors to execute arbitrary commands with root privileges on the underlying operating system of an affected appliance...

F5 BIG-IP 资源管理错误漏洞

F5 BIG-IP is an application delivery platform that integrates network traffic management, application security management, and load balancing from F5 USA. A resource management error vulnerability exists in the F5 BIG-IP, which stems from the fact that MPTCP-enabled TCP configurations can cause T...

EUVD-2025-31624

Malicious code in bioql PyPI...

EUVD-2025-31640

Malicious code in bioql PyPI...

CVE-2025-34188

Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 1.0.735 and Application prior to 20.0.1330 macOS/Linux client deployments contain a vulnerability in the local logging mechanism. Authentication session tokens, including PHPSESSID, XSRF-TOKEN, and laravelsession, are...

Quest KACE Systems Management Appliance 安全漏洞

Quest Software Quest KACE Systems Management Appliance is an IT asset management appliance from Quest Software, Inc. A security vulnerability exists in the Quest KACE Systems Management Appliance that stems from insufficient validation of backup file uploads, which could result in the upload of a...

CVE-2023-20215

A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to bypass a configured rule, allowing traffic onto a network that should have been blocked. This vulnerability is due to improper detection of malicious...

CVE-2025-24507

This vulnerability allows appliance compromise at boot time...

Security Bulletin: IBM MQ Appliance is vulnerable to a denial of service (CVE-2024-51470)

Summary IBM MQ Appliance has addressed a denial of service vulnerability. Vulnerability Details CVEID:CVE-2024-51470 DESCRIPTION: IBM MQ could allow an authenticated user to cause a denial-of-service due to messages with improperly set values. CWE:CWE-754: Improper Check for Unusual or Exceptiona...

IBM Security Verify Access 安全漏洞

IBM Security Verify Access ISAM is a service from International Business Machines IBM that improves user access security. The service enables secure and simple access to platforms such as web, mobile, IoT and cloud technologies through the use of risk-based access, single sign-on, integrated acce...

PT-2024-24260 · Ibm · Ibm Security Verify Access Appliance

Name of the Vulnerable Software and Affected Versions: IBM Security Verify Access Appliance versions 10.0.0 through 10.0.7 Description: The issue allows a malicious actor to conduct a man-in-the-middle attack when deploying Open Source scripts due to missing certificate validation. Recommendation...

PT-2024-19390 · Sonicwall · Sonicwall Email Security Appliance

Name of the Vulnerable Software and Affected Versions: SonicWall Email Security Appliance affected versions not specified Description: The issue is related to an improper limitation of a pathname to a restricted directory, also known as a Path Traversal vulnerability. This could allow a remote...

PT-2024-21955 · Unknown · Lbt T300-T390

Name of the Vulnerable Software and Affected Versions: LBT T300-T390 version 2.2.1.8 Description: The issue is related to a stack overflow via the ApCliSsid parameter in the updateCurAPlist function, allowing attackers to cause a Denial of Service DoS via a crafted POST request. Recommendations:...

IBM Security Access Manager Appliance 安全漏洞

IBM Security Access Manager Appliance ISAM Appliance is a network appliance-based security solution from International Business Machines IBM. The product is mainly used for access control and Web-based threat protection, providing system performance monitoring, log analysis and diagnosis. An Acce...

IBM Security Access Manager Appliance Security Vulnerability

IBM Security Access Manager Appliance ISAM Appliance is a network appliance-based security solution from International Business Machines IBM. The product is primarily used for access control and Web-based threat protection, providing system performance monitoring, log analysis and diagnostics. A...

IBM Security Access Manager Appliance Security Vulnerability

IBM Security Access Manager Appliance ISAM Appliance is a network appliance-based security solution from International Business Machines IBM. The product is primarily used for access control and Web-based threat protection, providing system performance monitoring, log analysis and diagnostics. A...

CVE-2023-44291

Dell DM5500 5.14.0.0 contains an OS command injection vulnerability in the appliance. A remote attacker with high privileges could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the underlying OS, with the privileges of the vulnerable application...