43 matches found
EUVD-2025-2102
Malicious code in bioql PyPI...
EUVD-2022-33925
Malicious code in bioql PyPI...
EUVD-2025-31136
Malicious code in bioql PyPI...
EUVD-2025-31135
Malicious code in bioql PyPI...
CVE-2025-10879
All versions of Dingtian DT-R002 are vulnerable to an Insufficiently Protected Credentials vulnerability that could allow an attacker to retrieve the current user's username without authentication...
CVE-2025-10880
All versions of Dingtian DT-R002 are vulnerable to an Insufficiently Protected Credentials vulnerability that could allow an attacker to extract the proprietary "Dingtian Binary" protocol password by sending an unauthenticated GET request...
CVE-2025-10880
All versions of Dingtian DT-R002 are vulnerable to an Insufficiently Protected Credentials vulnerability that could allow an attacker to extract the proprietary "Dingtian Binary" protocol password by sending an unauthenticated GET request...
CVE-2025-10879
All versions of Dingtian DT-R002 are vulnerable to an Insufficiently Protected Credentials vulnerability that could allow an attacker to retrieve the current user's username without authentication...
CVE-2025-10880 Insufficiently Protected Credentials in Dingtian DT-R002
All versions of Dingtian DT-R002 are vulnerable to an Insufficiently Protected Credentials vulnerability that could allow an attacker to extract the proprietary "Dingtian Binary" protocol password by sending an unauthenticated GET request...
CVE-2025-10880 Insufficiently Protected Credentials in Dingtian DT-R002
All versions of Dingtian DT-R002 are vulnerable to an Insufficiently Protected Credentials vulnerability that could allow an attacker to extract the proprietary "Dingtian Binary" protocol password by sending an unauthenticated GET request...
CVE-2025-10880
CVE-2025-10880 affects all versions of Dingtian DT-R002. The vulnerability is described as Insufficiently Protected Credentials, enabling an unauthenticated attacker to extract the proprietary “Dingtian Binary” protocol password by issuing an unauthenticated GET request. Multiple feeds (NVD, Red ...
CVE-2025-10879
CVE-2025-10879 affects all versions of the Dingtian DT-R002. The vulnerability is described as Insufficiently Protected Credentials that could allow an unauthenticated attacker to retrieve the current user’s username (and, per ICS docs, potentially extract the proprietary protocol password by an ...
CVE-2025-10879 Insufficiently Protected Credentials in Dingtian DT-R002
All versions of Dingtian DT-R002 are vulnerable to an Insufficiently Protected Credentials vulnerability that could allow an attacker to retrieve the current user's username without authentication...
CVE-2025-10879 Insufficiently Protected Credentials in Dingtian DT-R002
All versions of Dingtian DT-R002 are vulnerable to an Insufficiently Protected Credentials vulnerability that could allow an attacker to retrieve the current user's username without authentication...
CISA Releases One Industrial Control Systems Advisory
CISA released one Industrial Control Systems ICS advisory on September 25, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-268-01 Dingtian DT-R002 CISA encourages users and administrators to review newly...
Dingtian DT-R002
RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to retrieve credentials without authentication. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as: Minimize network...
PT-2025-39428
Name of the Vulnerable Software and Affected Versions Dingtian DT-R002 affected versions not specified Description All versions of Dingtian DT-R002 are susceptible to a flaw related to insufficient protection of credentials. An unauthenticated attacker can obtain the proprietary "Dingtian Binary"...
PT-2025-39427
Name of the Vulnerable Software and Affected Versions Dingtian DT-R002 affected versions not specified Description The software contains a flaw related to Insufficiently Protected Credentials. This could allow an attacker to retrieve the current user's username without authentication...
Dingtian DT-R002 安全漏洞
The Dingtian DT-R002 is a repeater device from Dingtian China. A security vulnerability exists in the Dingtian DT-R002 that stems from insufficient credential protection and could allow an attacker to extract a proprietary protocol password via an unauthenticated GET request...
Dingtian DT-R002 安全漏洞
The Dingtian DT-R002 is a repeater device from Dingtian China. A security vulnerability exists in the Dingtian DT-R002 that stems from insufficient credential protection and could allow an unauthenticated attacker to retrieve the current username...