CVE-2025-27262

Ericsson Indoor Connect 8855 contains a command injection vulnerability which if exploited can result in an escalation of privileges...

CVE-2025-40836 Ericsson Indoor Connect 8855 - Improper Input Validation Vulnerability

Ericsson Indoor Connect 8855 contains an improper input validation vulnerability which if exploited can allow an attacker to execute commands with escalated privileges...

CVE-2025-27261

Ericsson Indoor Connect 8855 contains an SQL injection vulnerability which if exploited can result in unauthorized disclosure or modification of data...

CVE-2025-10957

The CVE-2025-10957 entry concerns the Syrotech SY-GPON-2010-WADONT router, where an improper access control in the FTP service may allow remote access via default credentials. Affected component: FTP service on the SY-GPON-2010-WADONT router. Root cause: insufficient access control enabling unaut...

Ericsson Indoor Connect 安全漏洞

Ericsson Indoor Connect is an indoor compact base station from Ericsson Sweden. A security vulnerability exists in Ericsson Indoor Connect version 8855, which stems from a command injection vulnerability that could lead to integrity compromise and confidentiality disclosure, as well as unauthoriz...

Ericsson Indoor Connect 安全漏洞

Ericsson Indoor Connect is an indoor compact base station from Ericsson Sweden. A security vulnerability exists in Ericsson Indoor Connect version 8855, which stems from susceptibility to SQL injection attacks that could lead to unauthorized disclosure and modification of user and configuration...

PT-2025-39396

Name of the Vulnerable Software and Affected Versions Ericsson Indoor Connect 8855 affected versions not specified Description The software contains an improper input validation issue. Successful exploitation could result in a loss of data integrity and confidentiality, potentially leading to...

Important: Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage

A Subscription Management tool for finding and reporting Red Hat product usage Red Hat Discovery, also known as Discovery, is an inspection and reporting tool that finds, identifies, and reports environment data, or facts, such as the number of physical and virtual systems on a network, their...

Creacast Creabox Manager 安全漏洞

Creacast Creabox Manager is a device management system from Creacast France. A security vulnerability exists in Creacast Creabox Manager version 4.4.4, which originates from a publicly accessible endpoint/get exposing sensitive configuration data, potentially leading to credential disclosure...

CVE-2025-57437

The Blackmagic Web Presenter HD firmware version 3.3 exposes sensitive information via an unauthenticated Telnet service on port 9977. When connected, the service reveals extensive device configuration data including: - Model, version, and unique identifiers - Network settings including IP, MAC,...

CVE-2025-40594

A vulnerability has been identified in SINAMICS G220 V6.4 All versions V6.4 HF2, SINAMICS S200 V6.4 All versions V6.4 HF7, SINAMICS S210 V6.4 All versions V6.4 HF2. The affected devices allow a factory reset to be executed without the required privileges due to improper privilege management as we...

CVE-2025-40594

A vulnerability has been identified in SINAMICS G220 V6.4 All versions V6.4 HF2, SINAMICS S200 V6.4 All versions V6.4 HF7, SINAMICS S210 V6.4 All versions V6.4 HF2. The affected devices allow a factory reset to be executed without the required privileges due to improper privilege management as we...

CVE-2025-40594

A vulnerability has been identified in SINAMICS G220 V6.4 All versions V6.4 HF2, SINAMICS S200 V6.4 All versions V6.4 HF7, SINAMICS S210 V6.4 All versions V6.4 HF2. The affected devices allow a factory reset to be executed without the required privileges due to improper privilege management as we...

PT-2025-36679

Name of the Vulnerable Software and Affected Versions: SINAMICS G220 versions prior to 6.4 HF2 SINAMICS S200 version 6.4 SINAMICS S210 versions prior to 6.4 HF2 Description: The affected devices allow a factory reset to be executed without the required privileges due to improper privilege...

CVE-2025-36162

IBM DevOps Deploy / IBM UrbanCode Deploy UCD 8.1 before 8.1.2.2 could allow an authenticated user to obtain sensitive information about configuration on the system...

CVE-2025-36162

CVE-2025-36162 affects IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) 8.1.x before 8.1.2.2. An authenticated user could obtain sensitive information about the system configuration. Affected versions include 8.1 through 8.1.2.1. The vulnerability is categorized as exposure of sensitive system info...

CVE-2025-36162 IBM DevOps Deploy / IBM UrbanCode Deploy information disclosure

IBM DevOps Deploy / IBM UrbanCode Deploy UCD 8.1 before 8.1.2.2 could allow an authenticated user to obtain sensitive information about configuration on the system...

IBM DevOps Deploy 安全漏洞

IBM DevOps Deploy is an application release solution from International Business Machines IBM, Inc. Standardizes and simplifies the process of deploying software components to each environment during the development cycle. A security vulnerability exists in IBM DevOps Deploy versions prior to...

PT-2025-35605

Name of the Vulnerable Software and Affected Versions: IBM DevOps Deploy / IBM UrbanCode Deploy UCD versions prior to 8.1.2.2 Description: An authenticated user may be able to obtain sensitive information about the system’s configuration. Recommendations: Update to version 8.1.2.2 or later...

Linux Distros Unpatched Vulnerability : CVE-2025-38648

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: spi: stm32: Check for cfg availability in stm32spiprobe The stm32spiprobe function now...