Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: i2c: acpi: fixed a resource leak in device addition during reconfiguration. The acpii2cfindadapterbyhandle function calls busfinddevice, which takes a reference to the adapter. This reference is never released, resulting in a...

CVE-2025-65828

An unauthenticated attacker within proximity of the Meatmeet device can issue several commands over Bluetooth Low Energy BLE to these devices which would result in a Denial of Service. These commands include: shutdown, restart, clear config. Clear config would disassociate the current device from...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987591)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987591 advisory. In the Linux kernel, the following vulnerability has been resolved: i2c: acpi: fix resource leak in reconfiguration device addition acpii2cfindadapterbyhandle calls...

EUVD-2009-0203

Malware in sbrugna...

EUVD-2024-35719

Malicious code in bioql PyPI...

CVE-2020-21884

Unibox SMB 2.4 and UniBox Enterprise Series 2.4 and UniBox Campus Series 2.4 contain a cross-site request forgery CSRF vulnerability in /tools/network-trace, /listusers, /listbyod?usertype=raduser, /dhcpleases, /go?rid=202 in which a specially crafted HTTP request may reconfigure the device...

CVE-2019-10919

A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions V8.3. Attackers with access to port 10005/tcp could perform device reconfigurations and obtain project files from the devices. The system manual recommends to protect access to this port. The security vulnerabili...

CVE-2022-49869

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix possible crash in bnxthwrmsetcoal During the error recovery sequence, the rtnllock is not held for the entire duration and some datastructures may be freed during the sequence. Check for the BNXTSTATEOPEN flag instead...

CVE-2024-35244

There are several hidden accounts. Some of them are intended for maintenance engineers, and with the knowledge of their passwords e.g., by examining the coredump, these accounts can be used to re-configure the device. As for the details of affected product names, model numbers, and versions, refe...

PT-2024-26405 · Sharp +1 · Multiple Mfps

Name of the Vulnerable Software and Affected Versions: No specific product names, model numbers, or versions are mentioned in the provided descriptions. Description: There are several hidden accounts, some of which are intended for maintenance engineers. With knowledge of their passwords, these...

DEBIAN-CVE-2021-47425

In the Linux kernel, the following vulnerability has been resolved: i2c: acpi: fix resource leak in reconfiguration device addition acpii2cfindadapterbyhandle calls busfinddevice which takes a reference on the adapter which is never released which will result in a reference count leak and render...

Powertek PDU Buffer Overflow Vulnerability

Powertek is a company that manufactures data center-grade intelligent PDUs Power Distribution Units, i.e., heavy-duty power strips for server racks. The Powertek PDUs suffer from a buffer overflow vulnerability that can be exploited by an attacker to cause disclosure of the active session id of t...

Powertek PDU 安全漏洞

Powertek is a company that manufactures data center-grade intelligent PDUs Power Distribution Units, i.e., heavy-duty power strips for server racks. The Powertek PDUs suffer from a buffer overflow vulnerability that can be exploited by an attacker to cause disclosure of the active session id of t...

HP LaserJet Pro printer 安全漏洞

Hp LaserJet Pro Printer is a laser printer from Hewlett-Packard Hp. hp LaserJet Pro printer has a security vulnerability that could be exploited by an attacker to potentially allow an unauthorized user to reconfigure, reset the device...

B. Braun SpaceCom2 Access Control Error Vulnerability

B. Braun SpaceCom2, a hardware device from B. Braun, is used to connect to external devices to record data in a patient data management system, PC or USB stick.An access control error vulnerability exists in previous versions of B. Braun SpaceCom2 012U000062, which stems from a lack of...

Authentication flaw

A Missing Authentication for Critical Function vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows a remote attacker to reconfigure the device from an unknown source because of lack of authentication on proprietary networking commands...

CVE-2020-21884

Unibox SMB 2.4 and UniBox Enterprise Series 2.4 and UniBox Campus Series 2.4 contain a cross-site request forgery CSRF vulnerability in /tools/network-trace, /listusers, /listbyod?usertype=raduser, /dhcpleases, /go?rid=202 in which a specially crafted HTTP request may reconfigure the device...