862 matches found
Use of Hard-coded Cryptographic Key
Overview Affected versions of this package are vulnerable to Use of Hard-coded Cryptographic Key for encrypting sensitive configurations when NeuVector stores data. The static key can be used to retrieve configuration data. Remediation Upgrade github.com/neuvector/neuvector/controller/api to...
EUVD-2025-35218
The Reolink desktop application uses a hard-coded and predictable AES encryption key to encrypt user configuration files allowing attackers with local access to decrypt sensitive application data stored in %APPDATA%. A different vulnerability than CVE-2025-56802...
CVE-2025-56801
The Reolink Desktop Application 8.18.12 contains hardcoded credentials as the Initialization Vector IV in its AES-CFB encryption implementation allowing attackers with access to the application environment to reliably decrypt encrypted configuration data. NOTE: the Supplier's position is that...
EUVD-2025-34848
An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A flaw in broken access control has been identified in the /api/v1/setting/data endpoint of the affected device. This flaw allows a low-privileged authenticated user to ca...
CVE-2025-40771
A vulnerability has been identified in SIMATIC CP 1542SP-1 6GK7542-6UX00-0XE0 All versions V2.4.24, SIMATIC CP 1542SP-1 IRC 6GK7542-6VX00-0XE0 All versions V2.4.24, SIMATIC CP 1543SP-1 6GK7543-6WX00-0XE0 All versions V2.4.24, SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL 6AG2542-6VX00-4XE0 All versions...
CVE-2025-40771
CVE-2025-40771 affects Siemens SIMATIC CP 1542SP-1, CP 1542SP-1 IRC, CP 1543SP-1 and SIPLUS ET 200SP variants (and related CPs) with versions older than 2.4.24. The root cause is improper authentication of configuration connections, allowing an unauthenticated remote attacker to access configurat...
CVE-2025-40771
A vulnerability has been identified in SIMATIC CP 1542SP-1 6GK7542-6UX00-0XE0 All versions V2.4.24, SIMATIC CP 1542SP-1 IRC 6GK7542-6VX00-0XE0 All versions V2.4.24, SIMATIC CP 1543SP-1 6GK7543-6WX00-0XE0 All versions V2.4.24, SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL 6AG2542-6VX00-4XE0 All versions...
CVE-2025-40771
A vulnerability has been identified in SIMATIC CP 1542SP-1 6GK7542-6UX00-0XE0 All versions V2.4.24, SIMATIC CP 1542SP-1 IRC 6GK7542-6VX00-0XE0 All versions V2.4.24, SIMATIC CP 1543SP-1 6GK7543-6WX00-0XE0 All versions V2.4.24, SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL 6AG2542-6VX00-4XE0 All versions...
Siemens SIMATIC CP Series 访问控制错误漏洞
The Siemens SIMATIC CP Series is a family of communication processors from Siemens Germany. An access control error vulnerability exists in the Siemens SIMATIC CP Series that stems from a failure to properly validate a configuration connection, which could allow an unauthenticated, remote attacke...
PT-2025-41883
Name of the Vulnerable Software and Affected Versions SIMATIC CP 1542SP-1 versions prior to 2.4.24 SIMATIC CP 1542SP-1 IRC versions prior to 2.4.24 SIMATIC CP 1543SP-1 versions prior to 2.4.24 SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL versions prior to 2.4.24 SIPLUS ET 200SP CP 1543SP-1 ISEC versio...
Siemens SIMATIC ET 200SP Communication Processors
SUMMARY SIMATIC ET 200SP communication processors CP 1542SP-1, CP 1542SP-1 IRC and CP 1543SP-1, incl. SIPLUS variants contain an authentication vulnerability that could allow an unauthenticated remote attacker to access the configuration data. Siemens has released new versions for the affected...
EUVD-2025-33817
The Trinity Audio – Text to Speech AI audio player to convert content into audio plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.21.0 via the /admin/inc/phpinfo.php file that gets created on install. This makes it possible for...
CVE-2025-11192 Fabric Engine (VOSS) AutoSense Authentication Bypass
A vulnerability in Extreme Networks’ Fabric Engine VOSS before 9.3 was discovered. When SD-WAN AutoSense is enabled on a port, it may automatically configure fabric connectivity without validating ISIS authentication settings. The SD-WAN AutoSense implementation may be exploited by malicious acto...
EUVD-2019-16391
Malware in sbrugna...
EUVD-2006-3282
Malware in sbrugna...
EUVD-2018-0234
Malware in sbrugna...
EUVD-2020-28638
Malware in sbrugna...
EUVD-2017-16444
Malware in sbrugna...
EUVD-2018-1286
Malware in sbrugna...
EUVD-2012-0888
Malware in sbrugna...