113 matches found
Keycloak < 26.4.4 Debug Mode JDWP Port Exposure (CVE-2025-11538)
The version of Keycloak installed on the remote host is prior to 26.4.4. It is, therefore, affected by a Port Exposure vulnerability: - A vulnerability exists in Keycloak's server distribution where enabling debug mode --debug insecurely defaults to binding the Java Debug Wire Protocol JDWP port ...
CVE-2020-7491
VERSION NOT SUPPORTED WHEN ASSIGNED A legacy debug port account in TCMs installed in Tricon system versions 10.2.0 through 10.5.3 is visible on the network and could allow inappropriate access. This vulnerability was remediated in TCM version 10.5.4...
EUVD-2025-202624
The ESP32 system on a chip SoC that powers the Meatmeet Pro was found to have JTAG enabled. By leaving JTAG enabled on an ESP32 in a commercial product an attacker with physical access to the device can connect over this port and reflash the device's firmware with malicious code which will be...
CVE-2025-65822
CVE-2025-65822 concerns the ESP32 SoC in the Meatmeet Pro, where JTAG is left enabled. The Red Hat/NVD/CNNVD and related entries describe that a physical attacker can connect via the JTAG port on a Meatmeet Pro device and reflash firmware with malicious code, potentially causing loss of device fu...
CVE-2025-65822
The ESP32 system on a chip SoC that powers the Meatmeet Pro was found to have JTAG enabled. By leaving JTAG enabled on an ESP32 in a commercial product an attacker with physical access to the device can connect over this port and reflash the device's firmware with malicious code which will be...
CVE-2025-11538
Keycloak is affected by CVE-2025-11538 in versions prior to 26.4.4 where enabling debug mode (--debug) binds the JDWP port to all interfaces (0.0.0.0), exposing the debug port on the local network. This potentially allows a local-network attacker to attach a remote debugger and achieve remote cod...
EUVD-2019-2653
Malware in sbrugna...
EUVD-2020-28616
Malware in sbrugna...
EUVD-2019-5529
Malware in sbrugna...
CVE-2025-10653
An unauthenticated debug port may allow access to the device file system...
EUVD-2021-31830
Malicious code in bioql PyPI...
EUVD-2022-46945
Malicious code in bioql PyPI...
EUVD-2025-25661
Malicious code in bioql PyPI...
EUVD-2024-43157
Malicious code in bioql PyPI...
EUVD-2025-32203
Malicious code in bioql PyPI...
CVE-2025-10653
An unauthenticated debug port may allow access to the device file system...
CVE-2025-10653
Technical details such as affected products/versions, root cause, and remediation are not publicly provided in the connected documents. Monitor for updates from vendors and security feeds to obtain concrete information and a confirmed fix.
CVE-2025-10653 Raise3D Pro2 Series 3D Printers Authentication Bypass Using an Alternate Path or Channel
An unauthenticated debug port may allow access to the device file system...
Raise3D Pro2 Series 3D Printers**
RISK EVALUATION Successful exploitation of this vulnerability could result in data exfiltration and compromise of the target device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network...
PT-2025-40419
Name of the Vulnerable Software and Affected Versions affected versions not specified Description An unauthenticated debug port may allow access to the device file system. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability...