CVE-2026-27676 Missing Authorization check in SAP S/4HANA OData Service (Manage Technical Object Structures)

Due to missing authorization checks in the SAP S/4HANA OData Service Manage Technical Object Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability results in a low impact on integrity, while confidentiality and...

CVE-2026-27676

CVE-2026-27676 affects SAP S/4HANA’s OData Service (Manage Technical Object Structures). The vulnerability arises from missing authorization checks, enabling an attacker to update and delete child entities via exposed OData endpoints. Impact is described as low for integrity, with no impact on co...

EUVD-2026-17956

A vulnerability in Cisco Smart Software Manager On-Prem SSM On-Prem could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected SSM On-Prem host. This vulnerability is due to the unintentional exposure of an internal service. An...

CVE-2026-20160

Cisco Smart Software Manager On-Prem (SSM On-Prem) is affected by CVE-2026-20160 due to an unintended exposure of an internal service. An unauthenticated, remote attacker could send a crafted request to the exposed service API and execute commands on the underlying OS with root-level privileges. ...

Analysis of active exploitation of SolarWinds Web Help Desk

The Microsoft Defender Research Team observed a multi‑stage intrusion where threat actors exploited internet‑exposed SolarWinds Web Help Desk WHD instances to get an initial foothold and then laterally moved towards other high-value assets within the organization. However, we have not yet confirm...

CVE-2025-52694 Execution of arbitrary SQL commands

Successful exploitation of the SQL injection vulnerability could allow an unauthenticated remote attacker to execute arbitrary SQL commands on the vulnerable service when it is exposed to the Internet, potentially affecting data confidentiality, integrity, and availability. Users and administrato...

CVE-2025-52694

CVE-2025-52694 affects Advantech WISE-IoTSuite/SaaS Composer with an unauthenticated SQL Injection in the filename parameter of the URL path, using unsafe PostgreSQL queries. The Nuclei template details the vulnerable endpoint (displays/{filename}.json?org_id=) and notes that an attacker can inje...

PT-2026-1814

Name of the Vulnerable Software and Affected Versions Advantech IoTSuite & IoT Edge products affected versions not specified Description Successful exploitation of a SQL injection issue could allow an unauthenticated remote attacker to execute arbitrary SQL commands on the vulnerable service when...

EUVD-2018-6874

Malware in sbrugna...

CVE-2025-54923

CVE-2025-54923 affects Schneider Electric EcoStruxure Power Monitoring Expert (and related modules) with a deserialization of untrusted data vulnerability that can lead to remote code execution. Public sources in the connected set describe an issue in the GetFilteredSinkProvider/unsafe deserializ...

CVE-2025-5344

CVE-2025-5344 affects Bluebird devices with a pre-loaded kiosk application exposing an unsecured AIDL-type service, com.bluebird.kiosk.launcher.IpartnerKioskRemoteService . A local attacker can bind this service to modify the device’s global settings and wallpaper. The issue affects all versions ...

CVE-2019-17112

An issue was discovered in Zoho ManageEngine DataSecurity Plus before 5.0.1 5012. An exposed service allows a basic user "Operator" access level to access the configuration file of the mail server except for the password...

CVE-2024-7940

The product exposes a service that is intended for local only to all network interfaces without any authentication...

CVE-2024-7940

The product exposes a service that is intended for local only to all network interfaces without any authentication...

vantage6 has insecure SSH configuration for node and server containers

Impact Nodes and servers get a ssh config by default that permits root login with password authentication. In a proper deployment, the SSH service is not exposed so there is no risk, but not all deployments are ideal. The default should therefore be less permissive. We will probably opt to...

CVE-2023-25570 Apollo has potential access control security issue in eureka

Apollo is a configuration management system. Prior to version 2.1.0, there are potential security issues if users expose apollo-configservice to the internet, which is not recommended. This is because there is no authentication feature enabled for the built-in eureka service. Malicious hackers ma...

PT-2023-14625 · Archibus · Archibus Web Central

Name of the Vulnerable Software and Affected Versions: Archibus Web Central version 2022.03.01.107 Description: An issue was discovered in the application where a service exposed allows a basic user to access the profile information of all connected users. Recommendations: For Archibus Web Centra...

Night Owl Smart Doorbell FW 安全漏洞

Night Owl Smart Doorbell FW is a smart doorbell from Night Owl USA. A security vulnerability exists in Night Owl Smart Doorbell FW version 20190505 that allows a remote user to send push notification events via an exposed PNS server...

Code injection

An issue was discovered in Acronis True Image 2020 24.5.22510. antiransomwareservice.exe exposes a REST API that can be used by everyone, even unprivileged users. This API is used to communicate from the GUI to antiransomwareservice.exe. This can be exploited to add an arbitrary malicious...

PT-2020-5576 · Sophos · Sophos Sfos +1

Name of the Vulnerable Software and Affected Versions: Sophos XG Firewall versions 17.0, 17.1, 17.5 Sophos XG Firewall versions 18.0 through 2020-04-25 Description: A SQL injection vulnerability exists in Sophos XG Firewall, allowing for potential remote code execution and data exfiltration. The...