CVE-2025-59695

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a user with OS root access to alter firmware on the Chassis Management Board without Authentication. This is called F04...

EUVD-2025-29604

Malicious code in bioql PyPI...

EUVD-2024-18173

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-39810

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bnxten: Fix memory corruption when FW resources change during ifdown bnxtsetdfltrings assumes that it is always called before any TC has been created. So it...

DEBIAN-CVE-2025-39810

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix memory corruption when FW resources change during ifdown bnxtsetdfltrings assumes that it is always called before any TC has been created. So it doesn't take bp-numtc into account and assumes that it is always 0 or 1...

CVE-2025-39810

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix memory corruption when FW resources change during ifdown bnxtsetdfltrings assumes that it is always called before any TC has been created. So it doesn't take bp-numtc into account and assumes that it is always 0 or 1...

CVE-2025-39810

CVE-2025-39810 – bnxt_en memory corruption fix in the Linux kernel driver. The issue arises when FW resources change during interface down, where bnxt_set_dflt_rings() can size bp->tx_ring[] too small if bp->num_tc > 1, permitting memory corruption in bnxt_alloc_cp_rings(). The root caus...

Firmware Version Change Detected (Medium)

Changes in the controller firmware represent a major change in the behavior of the device and usually cause a temporary interruption of operations. An attacker could use firmware changes to add malicious code to the controller, causing it to perform harmful operations which are hard to detect. Th...

Firmware Version Change Detected (Low)

Changes in the controller firmware represent a major change in the behavior of the device and usually cause a temporary interruption of operations. An attacker could use firmware changes to add malicious code to the controller, causing it to perform harmful operations which are hard to detect. Th...

Firmware Version Change Detected (Critical)

Changes in the controller firmware represent a major change in the behavior of the device and usually cause a temporary interruption of operations. An attacker could use firmware changes to add malicious code to the controller, causing it to perform harmful operations which are hard to detect. Th...

PT-2025-15400 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the pagetable walker cache coherency in the Linux kernel, which is not consistent across all SDM845/850 devices. This inconsistency leads to lock-ups and resets. The...

CVE-2024-20458

A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, remote attacker to view or delete the configuration or change the firmware on an affected device. This vulnerability is due to a lack of authentication o...

CVE-2024-20458

A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, remote attacker to view or delete the configuration or change the firmware on an affected device. This vulnerability is due to a lack of authentication o...

PT-2024-7343 · Cisco · Cisco Ata 190 Series Analog Telephone Adapter

Name of the Vulnerable Software and Affected Versions: Cisco ATA 190 Series Analog Telephone Adapter firmware affected versions not specified Description: A vulnerability in the web-based management interface of the Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an...

Cisco ATA 190 操作系统命令注入漏洞

The Cisco ATA 190 is an analog phone adapter from Cisco. The Cisco ATA 190 suffers from an operating system command injection vulnerability that stems from a lack of authentication at a particular HTTP endpoint. An unauthenticated, remote attacker could use this vulnerability to view or delete th...

PT-2023-2810 · Mitsubishi · Melsec Ws Series Ws0-Geth00200

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric Corporation MELSEC WS Series WS0-GETH00200 versions 2310 and prior Description: The issue allows a remote unauthenticated attacker to bypass authentication and illegally log into the affected module by connecting to it via...

CVE-2019-15894

CVE-2019-15894 affects Espressif ESP-IDF 2.x, 3.0.x–3.0.9, 3.1.x–3.1.6, 3.2.x–3.2.3, and 3.3.x–3.3.1.** An attacker using fault injection to disrupt the ESP32 CPU can bypass the Secure Boot digest verification at startup and boot unverified code from flash. This attack does not disable Flash Encr...

PT-2019-14458

Name of the Vulnerable Software and Affected Versions Espressif ESP-IDF versions 2.x, 3.0.x through 3.0.9, 3.1.x through 3.1.6, 3.2.x through 3.2.3, and 3.3.x through 3.3.1 Description An issue allows an attacker to bypass the Secure Boot digest verification at startup using fault injection to...