572 matches found
EUVD-2024-2695
Malicious code in bioql PyPI...
EUVD-2023-0379
Malicious code in bioql PyPI...
EUVD-2022-1068
Malicious code in bioql PyPI...
EUVD-2023-45282
Malicious code in bioql PyPI...
AI-Powered App Exposes User Data, Creates Risk of Supply Chain Attacks
Trend™ Research’s analysis of Wondershare RepairIt reveals how the AI-driven app exposed sensitive user data due to unsecure cloud storage practices and hardcoded credentials, creating risks of model tampering and supply chain attacks...
CVE-2025-53884 NeuVector has an insecure password storage vulnerable to rainbow attack
NeuVector stores user passwords and API keys using a simple, unsalted hash. This method is vulnerable to rainbow table attack offline attack where hashes of known passwords are precomputed...
CVE-2025-54083
Insecure Storage of Sensitive Information vulnerability in Calix GigaCenter ONT Quantenna SoC modules allows admin access to the web interface.This issue affects GigaCenter ONT: 844E, 844G, 844GE, 854GE...
CVE-2025-54083
Insecure Storage of Sensitive Information vulnerability in Calix GigaCenter ONT Quantenna SoC modules allows admin access to the web interface.This issue affects GigaCenter ONT: 844E, 844G, 844GE, 854GE...
CVE-2025-54083 Calix GigaCenter ONT firmware - Sensitive Information Disclosure
Insecure Storage of Sensitive Information vulnerability in Calix GigaCenter ONT Quantenna SoC modules allows admin access to the web interface.This issue affects GigaCenter ONT: 844E, 844G, 844GE, 854GE...
CVE-2025-54083 Calix GigaCenter ONT firmware - Sensitive Information Disclosure
Insecure Storage of Sensitive Information vulnerability in Calix GigaCenter ONT Quantenna SoC modules allows admin access to the web interface.This issue affects GigaCenter ONT: 844E, 844G, 844GE, 854GE...
CVE-2025-42933
CVE-2025-42933 affects SAP Business One through the SLD backend service, where a flaw in enforcing encryption of certain APIs exposes sensitive credentials in HTTP response bodies. The issue impacts confidentiality, integrity, and availability. CVSS 3.1 base score 8.8 (Network, Low attack complex...
CVE-2025-42933 Insecure Storage of Sensitive Information in SAP Business One (SLD)
When a user logs in via SAP Business One native client, the SLD backend service fails to enforce proper encryption of certain APIs. This leads to exposure of sensitive credentials within http response body. As a result, it has a high impact on the confidentiality, integrity, and availability of t...
PT-2025-36960
Name of the Vulnerable Software and Affected Versions: Calix GigaCenter ONT versions 844E Calix GigaCenter ONT versions 844G Calix GigaCenter ONT versions 844GE Calix GigaCenter ONT versions 854GE Description: An issue exists in Calix GigaCenter ONT Quantenna SoC modules that allows administrativ...
CVE-2025-41682 Credential Disclosure via Insecure Storage on Charge Controller
An authenticated, low-privileged attacker can obtain credentials stored on the charge controller including the manufacturer password...
CVE-2025-41682
CVE-2025-41682 affects Bender GmbH & Co. KG charge controllers (e.g., CC612, CC613, ICC15xx). An authenticated, low-privileged attacker can access credentials stored on the device, including the manufacturer password, via insecure storage. Documents indicate this is a credential-disclosure vulner...
CVE-2025-41682 Credential Disclosure via Insecure Storage on Charge Controller
An authenticated, low-privileged attacker can obtain credentials stored on the charge controller including the manufacturer password...
CVE-2025-21041
Insecure Storage of Sensitive Information in Secure Folder prior to Android 16 allows local attackers to access sensitive information...
CVE-2025-21041
Insecure Storage of Sensitive Information in Secure Folder prior to Android 16 allows local attackers to access sensitive information...
CVE-2025-21041
Insecure Storage of Sensitive Information in Secure Folder prior to Android 16 allows local attackers to access sensitive information...
CVE-2025-21041
CVE-2025-21041 concerns Samsung Secure Folder on Android versions earlier than 16. The issue is described as insecure storage of sensitive information, enabling local attackers to access confidential data due to inadequate protection in the Secure Folder storage. Affected product is Samsung Secur...