Lucene search
K

569 matches found

CNNVD
CNNVD
added 2025/12/02 12:0 a.m.3 views

MeetMe 安全漏洞

MeetMe is a dating software from MeetMe, Inc. A security vulnerability exists in MeetMe version 2.2.5 and prior versions, which stems from insecure storage of sensitive information and could lead to the retrieval of embedded sensitive data...

8.8CVSS6.3AI score0.00103EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/14 10:1 p.m.6 views

CVE-2025-36096

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques...

9CVSS6.7AI score0.00269EPSS
Exploits0References1
OSV
OSV
added 2025/11/13 10:15 p.m.4 views

CVE-2025-36096

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques...

8.1CVSS5.8AI score0.00269EPSS
Exploits0References1
CVE
CVE
added 2025/11/13 10:1 p.m.16 views

CVE-2025-36096

CVE-2025-36096 concerns IBM AIX (versions 7.2/7.3) and IBM VIOS (3.1/4.1) where NIM private keys are stored insecurely in NIM environments, enabling unauthorized access via man-in-the-middle techniques. IBM’s Security Bulletin confirms this in conjunction with related CVEs (CVE-2025-36251, CVE-20...

9CVSS6.3AI score0.00269EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.7 views

PT-2025-46921

Name of the Vulnerable Software and Affected Versions IBM AIX versions 7.2 and 7.3 IBM VIOS versions 3.1 and 4.1 Description The software stores NIM private keys used in NIM environments in an insecure manner, making them susceptible to unauthorized access by an attacker employing man-in-the-midd...

9CVSS6.5AI score0.00269EPSS
Exploits0References19
Redos
Redos
added 2025/11/10 12:0 a.m.5 views

ROS-20251110-05

A vulnerability in the Linux-PAM authentication module is related to insecure storage of sensitive information. Exploitation of the vulnerability could allow an attacker to gain unauthorized access to protected information. information...

4.7CVSS7.1AI score0.00265EPSS
Exploits0
EUVD
EUVD
added 2025/10/28 5:49 p.m.3 views

EUVD-2025-36551

Contrast has insecure LUKS2 persistent storage partitions may be opened and used...

6.5AI score
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/10/28 5:49 p.m.8 views

Contrast has insecure LUKS2 persistent storage partitions may be opened and used

Summary A malicious host may provide a crafted LUKS2 volume to a Contrast pod VM that uses the secure persistent volume feature. The guest will open the volume and write secret data using a volume key known to the attacker. LUKS2 volume metadata is a not authenticated and b supports null...

6.6AI score
Exploits0References5Affected Software1
EUVD
EUVD
added 2025/10/27 4:20 p.m.5 views

EUVD-2025-36204

Constellation has insecure LUKS2 persistent storage partitions which may be opened and used...

8.3CVSS6.4AI score0.00105EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/10/13 9:29 p.m.6 views

CVE-2025-11645

A security vulnerability has been detected in Tomofun Furbo Mobile App up to 7.57.0a on Android. This affects an unknown part of the component Authentication Token Handler. The manipulation leads to insecure storage of sensitive information. It is possible to launch the attack on the physical...

2.4CVSS5.9AI score0.00204EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/12 9:30 p.m.5 views

EUVD-2025-33909

A weakness has been identified in Tomofun Furbo 360 and Furbo Mini. Affected by this issue is some unknown functionality of the component UART Interface. Executing manipulation can lead to insecure storage of sensitive information. The physical device can be targeted for the attack. This attack i...

2CVSS5.4AI score0.00251EPSS
Exploits1References7
NVD
NVD
added 2025/10/12 9:15 p.m.3 views

CVE-2025-11645

A security vulnerability has been detected in Tomofun Furbo Mobile App up to 7.57.0a on Android. This affects an unknown part of the component Authentication Token Handler. The manipulation leads to insecure storage of sensitive information. It is possible to launch the attack on the physical...

2.4CVSS0.00204EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/12 8:32 p.m.25 views

CVE-2025-11645 Tomofun Furbo Mobile App Authentication Token sensitive information

A security vulnerability has been detected in Tomofun Furbo Mobile App up to 7.57.0a on Android. This affects an unknown part of the component Authentication Token Handler. The manipulation leads to insecure storage of sensitive information. It is possible to launch the attack on the physical...

2.4CVSS0.00204EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/12 8:32 p.m.2 views

CVE-2025-11645 Tomofun Furbo Mobile App Authentication Token sensitive information

A security vulnerability has been detected in Tomofun Furbo Mobile App up to 7.57.0a on Android. This affects an unknown part of the component Authentication Token Handler. The manipulation leads to insecure storage of sensitive information. It is possible to launch the attack on the physical...

2.4CVSS5.7AI score0.00204EPSS
Exploits0References4
CVE
CVE
added 2025/10/12 8:32 p.m.20 views

CVE-2025-11645

CVE-2025-11645 (Tomofun Furbo Mobile App) affects Android versions up to 7.57.0a, arising from insecure storage in the Authentication Token Handler. The issue may allow information disclosure on a physical device; the exploit has been publicly disclosed. Multiple connected sources (including PT-2...

2.4CVSS3.7AI score0.00204EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/12 8:32 p.m.3 views

EUVD-2025-33908

A security vulnerability has been detected in Tomofun Furbo Mobile App up to 7.57.0a on Android. This affects an unknown part of the component Authentication Token Handler. The manipulation leads to insecure storage of sensitive information. It is possible to launch the attack on the physical...

2.4CVSS5.5AI score0.00204EPSS
Exploits0References5
NVD
NVD
added 2025/10/12 8:15 p.m.5 views

CVE-2025-11644

A weakness has been identified in Tomofun Furbo 360 and Furbo Mini. Affected by this issue is some unknown functionality of the component UART Interface. Executing manipulation can lead to insecure storage of sensitive information. The physical device can be targeted for the attack. This attack i...

4.2CVSS0.00251EPSS
Exploits1References6
CVE
CVE
added 2025/10/12 8:2 p.m.16 views

CVE-2025-11644

Tomofun Furbo 360 and Furbo Mini expose a UART Interface weakness that can lead to insecure storage of sensitive information. The flaw affects Furbo 360 up to FB0035_FW_036 and Furbo Mini up to MC0020_FW_074, requiring physical access to the device and described as high complexity to exploit, wit...

4.2CVSS3.4AI score0.00251EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2025/10/12 8:2 p.m.8 views

CVE-2025-11644 Tomofun Furbo 360/Furbo Mini UART sensitive information

A weakness has been identified in Tomofun Furbo 360 and Furbo Mini. Affected by this issue is some unknown functionality of the component UART Interface. Executing manipulation can lead to insecure storage of sensitive information. The physical device can be targeted for the attack. This attack i...

2CVSS0.00251EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/12 6:30 p.m.7 views

EUVD-2025-33902

A vulnerability has been found in Tomofun Furbo 360 and Furbo Mini. The impacted element is an unknown function of the file collectlogs.sh of the component Debug Log S3 Bucket Handler. The manipulation leads to insecure storage of sensitive information. An attack has to be approached locally. The...

4.8CVSS5.9AI score0.00211EPSS
Exploits1References5
Rows per page
Query Builder