CVE-2025-62386

CVE-2025-62386 is a SQL injection vulnerability in Ivanti Endpoint Manager. According to connected sources, it allows a remote authenticated attacker to read arbitrary data from the database, with a CVSS v3.1 base score of 6.5 (Medium) and confidentiality impact High. The issue affects Ivanti End...

CVE-2025-62389

CVE-2025-62389 is a SQL injection vulnerability in Ivanti Endpoint Manager. The vulnerability allows a remote authenticated attacker to read arbitrary data from the database. Multiple connected advisories confirm this family of SQL injection issues affects Ivanti Endpoint Manager and note a remed...

CVE-2025-62392

SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database...

CVE-2025-62392

CVE-2025-62392 is an SQL injection in Ivanti Endpoint Manager that allows a remote authenticated attacker to read arbitrary data from the database. The CVE is discussed across multiple feeds (NVD, Red Hat, ENISA/NCSC, CNVD) with consistent description of a SQL injection vulnerability in Ivanti En...

CVE-2025-11623

CVE-2025-11623 is a SQL injection vulnerability in Ivanti Endpoint Manager (EPM) that enables a remote authenticated attacker to read arbitrary data from the database. Multiple connected sources (NVD, RH, CNVD, EUVD, CNNVD, CVE lists) describe Ivanti Endpoint Manager as the affected product and c...

CVE-2025-21068

Out-of-bounds read in the reading of image data in Samsung Notes prior to version 4.4.30.63 allows local attackers to access out-of-bounds memory...

EUVD-2021-0413

Malware in sbrugna...

EUVD-2021-26037

Malware in sbrugna...

EUVD-2007-5003

Malware in sbrugna...

EUVD-2018-6524

Malware in sbrugna...

EUVD-2019-19111

Malware in sbrugna...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: mysql (UTSA-2025-986138)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986138 advisory. Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 an...

EUVD-2022-51047

Malicious code in bioql PyPI...

EUVD-2025-25034

Malicious code in bioql PyPI...

EUVD-2023-26917

Malicious code in bioql PyPI...

EUVD-2023-26081

Malicious code in bioql PyPI...

EUVD-2022-30319

Malicious code in bioql PyPI...

CVE-2025-47211

A path traversal vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the...

CVE-2023-53524

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: pcie: Fix integer overflow in iwlwritetouserbuf An integer overflow occurs in the iwlwritetouserbuf function, which is called by the iwldbgfsmonitordataread function. static bool iwlwritetouserbufchar user userbuf,...

CVE-2023-53524 wifi: iwlwifi: pcie: Fix integer overflow in iwl_write_to_user_buf

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: pcie: Fix integer overflow in iwlwritetouserbuf An integer overflow occurs in the iwlwritetouserbuf function, which is called by the iwldbgfsmonitordataread function. static bool iwlwritetouserbufchar user userbuf,...