73 matches found
CVE-2026-4988
A security flaw has been discovered in Open5GS 2.7.6. This issue affects the function smfgxccacb/smfgyccacb/smfs6b of the component CCA Message Handler. The manipulation results in denial of service. The attack may be launched remotely. Attacks of this nature are highly complex. The exploitabilit...
PT-2026-27104
A security vulnerability has been detected in Shenzhen HCC Technology MPOS M6 PLUS 1V.31-N. Affected by this vulnerability is an unknown functionality of the component Bluetooth. Such manipulation leads to missing authentication. The attack must be carried out from within the local network. Attac...
CVE-2026-4549
A flaw has been found in mickasmt next-saas-stripe-starter 1.0.0. Affected by this issue is the function openCustomerPortal of the file actions/open-customer-portal.ts of the component Stripe API. This manipulation causes authorization bypass. Remote exploitation of the attack is possible. The...
CVE-2026-2671
A vulnerability was detected in Mendi Neurofeedback Headset V4. Affected by this vulnerability is an unknown functionality of the component Bluetooth Low Energy Handler. Performing a manipulation results in cleartext transmission of sensitive information. The attack can only be performed from the...
PT-2026-20594
Name of the Vulnerable Software and Affected Versions Beetel 777VR1 versions up to 01.00.09 Description A security flaw exists in Beetel 777VR1 affecting the WPA2 PSK component. A manipulation of this component can lead to the disclosure of hard-coded credentials. An attacker requires access to t...
CVE-2025-1878
A vulnerability has been found in i-Drive i11 and i12 up to 20250227 and classified as problematic. This vulnerability affects unknown code of the component WiFi. The manipulation leads to use of default password. Access to the local network is required for this attack to succeed. The complexity ...
CVE-2025-40891
A Stored HTML Injection vulnerability was discovered in the Time Machine Snapshot Diff functionality due to improper validation of network traffic data. An unauthenticated attacker can send specially crafted network packets at two different times to inject HTML tags into asset attributes across t...
EUVD-2014-1226
Malware in sbrugna...
EUVD-2024-2037
Malicious code in bioql PyPI...
EUVD-2025-17044
Malicious code in bioql PyPI...
EUVD-2022-34427
Malicious code in bioql PyPI...
EUVD-2024-26058
Malicious code in bioql PyPI...
EUVD-2024-34644
Malicious code in bioql PyPI...
EUVD-2023-44433
Malicious code in bioql PyPI...
EUVD-2025-2026
Malicious code in bioql PyPI...
EUVD-2023-33908
Malicious code in bioql PyPI...
EUVD-2024-33619
Malicious code in bioql PyPI...
CVE-2025-9016
A vulnerability was identified in Mechrevo Control Center GX V2 5.56.51.48. This affects an unknown part of the file C:\Program Files\OEM\机械革命控制中心\AiStoneService\MyControlCenter\Command of the component Powershell Script Handler. The manipulation leads to uncontrolled search path. Local access is...
CVE-2025-9005 mtons mblog register information exposure
A vulnerability was determined in mtons mblog up to 3.5.0. Affected is an unknown function of the file /register. The manipulation leads to information exposure through error message. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is...
CVE-2025-8774
CVE-2025-8774 affects riscv-boom SonicBOOM up to version 2.2.3. The vulnerability is in the L1 Data Cache Handler, where manipulation causes observable timing discrepancies. Exploitation requires local access and is described as high attack complexity; vendor response has been absent. Public sour...