CVE-2019-25309

Zilab Remote Console Server 3.2.9 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that wil...

CVE-2019-25309 Zilab Remote Console Server 3.2.9 - 'Zilab Remote Console Server' Unquoted Service Path

Zilab Remote Console Server 3.2.9 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that wil...

Zilab Remote Console Server 代码问题漏洞

Zilab Remote Console Server is a series of serial port servers developed by the German company Zilab. Version 3.2.9 of Zilab Remote Console Server contains a code vulnerability caused by an unquoted service path. This vulnerability could allow local attackers to execute arbitrary code with elevat...

PT-2026-7604

Zilab Remote Console Server 3.2.9 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that wil...

CVE-2022-50927

Cyclades Serial Console Server 3.3.0 contains a local privilege escalation vulnerability due to overly permissive sudo privileges for the admin user and admin group. Attackers can exploit the default user configuration to gain root access by manipulating system binaries and leveraging unrestricte...

CVE-2022-50927

CVE-2022-50927 affects Cyclades Serial Console Server 3.3.0. The vulnerability is a local privilege escalation caused by overly permissive sudo privileges granted to the admin user and admin group. An attacker could exploit the default user configuration to obtain root access by manipulating syst...

CVE-2022-50927 Cyclades Serial Console Server 3.3.0 - Local Privilege Escalation

Cyclades Serial Console Server 3.3.0 contains a local privilege escalation vulnerability due to overly permissive sudo privileges for the admin user and admin group. Attackers can exploit the default user configuration to gain root access by manipulating system binaries and leveraging unrestricte...

EUVD-2025-36651

Jenkins MCP Server Plugin does not perform permission checks in multiple MCP tools...

Work Examiner Professional 安全漏洞

Work Examiner Professional is an employee computer monitoring software from Work Examiner USA. A security vulnerability exists in Work Examiner Professional that originates when traffic between the monitoring client, console, and server is transmitted in clear text, which could allow an attacker ...

EUVD-2005-2190

Malware in sbrugna...

EUVD-2019-5644

Malware in sbrugna...

EUVD-2005-0541

Malware in sbrugna...

EUVD-2005-2984

Malware in sbrugna...

EUVD-2014-9049

Malware in sbrugna...

EUVD-2023-23782

Malicious code in bioql PyPI...

Malicious code in opensearch-console-server (npm)

The package opensearch-console-server was found to contain malicious code...

MAL-2025-28332 Malicious code in opensearch-console-server (npm)

The package opensearch-console-server was found to contain malicious code...

CVE-2025-27501 Server Side Request Forgery in Ziti Console

OpenZiti is a free and open source project focused on bringing zero trust to any application. An endpoint on the admin panel can be accessed without any form of authentication. This endpoint accepts a user-supplied URL parameter to connect to an OpenZiti Controller and performs a server-side...

Western Telematic NPS Series、DSM Series和CPM Series 安全漏洞

Western Telematic NPS Series and others are products of Western Telematic, Inc.Western Telematic NPS Series is a series of network power switches.Western Telematic DSM Series is a series of console servers. Western Telematic CPM Series is a series of console servers. A security vulnerability exis...

CVE-2024-40728

A cross-site scripting XSS vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-server-ports/id/edit/...