ModulithShop 信任管理问题漏洞

ModulithShop is an online shopping mall system from the individual developers of Shopsuite. ModulithShop suffers from a Trust Management Issue vulnerability that stems from misbehavior of the component RSA/OAuth2/Database, which could lead to hard-coded credentials...

EUVD-2021-0070

Malware in sbrugna...

EUVD-2014-3360

Malware in sbrugna...

EUVD-2025-23579

Malicious code in bioql PyPI...

Vulnerability of the Server component: Security: Encryption of the MySQL Server database management system, which allows attackers to cause service interruptions.

The vulnerability of the MySQL Server component’s Security: Encryption module is related to an uncontrolled resource consumption. Exploiting this vulnerability may allow a malicious actor to cause service interruptions...

PT-2025-30762

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The mod hdcp hdcp1 enable encryption function calls get first active display without checking its return value. If the display list is empty, get first active display returns a null...

Vulnerability of the MySQL Server component: Security: Encryption. This component allows a hacker to gain unauthorized access for reading, modifying, or deleting data, or to cause a service failure.

The vulnerability of the MySQL Server component’s Security: Encryption module is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to read, modify, or delete data, or to cause service interruptions...

Vulnerability of the Server component: Security: Encryption of the Oracle MySQL Server database management system, which allows attackers to cause service interruptions.

The vulnerability of the Server component’s Security: Encryption module of the Oracle MySQL Server database management system is related to resource release errors. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL protocol...

Vulnerability of the Server component: Security: Encryption of the MySQL Server database management system, which allows attackers to cause service interruptions.

The vulnerability of the MySQL Server component’s Security: Encryption module is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...

多款Cisco产品处理逻辑错误漏洞

Cisco Firepower Threat Defense FTD and Cisco Adaptive Security Appliances Software ASA Software are both products of Cisco, Inc.Cisco Firepower Threat Defense is a set of unified software that provides next-generation firewall services. Defense is a set of unified software to provide...

Nextcloud Server File Block Overwrite Vulnerability (NC-SA-2020-038)

Nextcloud Server is prone to a vulnerability where Message Authentication Codes calculated by the Default Encryption Module allow an attacker to silently overwrite blocks in a file. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and...

Vulnerability of the Server component: Security: Encryption of the MySQL Server database management system, which allows attackers to cause service interruptions.

The vulnerability of the MySQL Server component’s Security: Encryption module is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL network protocol...

Message Authentication Codes calculated by the Default Encryption Module allow an attacker to silently overwrite blocks in a file (NC-SA-2020-038)

A wrong generation of the passphrase for the encrypted block in Nextcloud Server 19.0.1 allowed an attacker to overwrite blocks in a file...

Vulnerability of the Server component: Security: Encryption of the MySQL Server database management system, which allows attackers to gain unauthorized access to protected information.

The vulnerability of the MySQL Server component’s Security: Encryption module is related to the lack of protection for operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using the MySQL network protocol...

Odoo Access Control Error Vulnerability (CNVD-2019-30570)

Odoo is an open source commercial system from the Belgian company Odoo. An access control error vulnerability exists in the password encryption module in Odoo version 9.0 Community and Enterprise, which can be exploited by an attacker to modify another user's password...

Cisco Adaptive Security Appliance Software Denial of Service Vulnerability (CNVD-2019-15875)

The Cisco Firepower 2100 Series and Cisco Adaptive Security Virtual Appliance are both products of Cisco Corporation.The Firepower 2100 Series is a 2100 series firewall appliance.The Cisco Adaptive Security Virtual Appliance is a virtualized version of the Cisco ASA Adaptive Security Appliance. T...

The vulnerability of the encryption module for internal data in Philips e-Alert Unit software solutions allows a intruder to gain full access to the device’s data.

The vulnerability of the encryption module for internal data in Philips e-Alert Unit medical visualization systems arises from the rigid encoding of the cryptographic key used for encrypting internal data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain full...

PT-2017-19013 · Synology · Synology Diskstation Manager

Name of the Vulnerable Software and Affected Versions: Synology DiskStation Manager DSM versions prior to 6.1.3-15152 Description: A design flaw in SYNO.API.Encryption allows remote attackers to bypass the encryption protection mechanism via the crafted version parameter. Recommendations: For...

Wannacry depth of analysis: the first stage tasksche-vulnerability warning-the black bar safety net

WannaCry ransomware is a 2017 of the most popular ransomware, which uses a Microsoft vulnerability in the global range attacks make the world more than 100 countries, hundreds of thousands of users by the impact. Has a global range of network security education for all. As a security industry...

CVE-2014-3347

Cisco IOS 15.14M2 on Cisco 1800 ISR devices, when the ISDN Basic Rate Interface is enabled, allows remote attackers to cause a denial of service device hang by leveraging knowledge of the ISDN phone number to trigger an interrupt timer collision during entropy collection, leading to an invalid...