PT-2025-36436

Name of the Vulnerable Software and Affected Versions: RICOH Streamline NX versions 3.5.1 through 24R3 Description: RICOH Streamline NX is susceptible to operation history tampering. An attacker capable of performing a man-in-the-middle attack may manipulate HTTP requests, potentially altering th...

CVE-2025-32330

In generateRandomPassword of LocalBluetoothLeBroadcast.java, there is a possible way to intercept the Auracast audio stream due to an insecure default value. This could lead to remote proximal/adjacent information disclosure with no additional execution privileges needed. User interaction is not...

CVE-2025-32330

In generateRandomPassword of LocalBluetoothLeBroadcast.java, there is a possible way to intercept the Auracast audio stream due to an insecure default value. This could lead to remote proximal/adjacent information disclosure with no additional execution privileges needed. User interaction is not...

ASB-A-389127608

In generateRandomPassword of LocalBluetoothLeBroadcast.java, there is a possible way to intercept the Auracast audio stream due to an insecure default value. This could lead to remote proximal/adjacent information disclosure with no additional execution privileges needed. User interaction is not...

CVE-2025-58126

Improper Certificate Validation in Checkmk Exchange plugin VMware vSAN allows attackers in MitM position to intercept traffic...

CVE-2025-58123

Improper Certificate Validation in Checkmk Exchange plugin BGP Monitoring allows attackers in MitM position to intercept traffic...

Linux Distros Unpatched Vulnerability : CVE-2020-7692

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PKCE support is not implemented in accordance with the RFC for OAuth 2.0 for Native Apps. Without the use of PKCE, the authorization code returned by an...

CVE-2025-58126

Improper Certificate Validation in Checkmk Exchange plugin VMware vSAN allows attackers in MitM position to intercept traffic...

CVE-2025-58127

CVE-2025-58127 concerns an improper certificate validation flaw in the Checkmk Exchange plugin for Dell PowerScale. The underlying issue is TLS/SSL certificate validation failure, which can allow an attacker in a network position to perform a Man-in-the-Middle (MitM) attack and intercept traffic....

CVE-2025-58126

CVE-2025-58126 affects the Checkmk Exchange plugin for VMware vSAN. The root cause is improper certificate validation (TLS/SSL) in the plugin, which permits a man-in-the-middle attacker to intercept traffic. Documented impact is exposure of communications in MitM scenarios; exploitation details a...

CVE-2025-58125

CVE-2025-58125 affects the Checkmk Exchange plugin Freebox v6 agent. The root cause is improper certificate validation, enabling attackers in a network MitM position to intercept traffic. Publicly provided documents consistently describe this flaw, with NVD and vendor/third-party feeds listing th...

CVE-2025-58124 Lack of TLS validation in plugin check-mk-api on Checkmk Exchange

Improper Certificate Validation in Checkmk Exchange plugin check-mk-api allows attackers in MitM position to intercept traffic...

CVE-2025-58123

CVE-2025-58123 affects the Checkmk Exchange plugin BGP Monitoring. The root cause is improper certificate validation, enabling MitM attackers to intercept traffic when positioned on the network. Documented sources confirm the vulnerability description but do not provide explicit affected versions...

Mitsubishi Electric MELSEC iQ-F Series CPU Module

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker the ability to obtain credential information by intercepting SLMP communication messages, and read or write the device values of the product by using the obtained credential information. In addition, the...

PT-2025-35081

Name of the Vulnerable Software and Affected Versions: Checkmk Exchange plugin Freebox v6 agent affected versions not specified Description: The Checkmk Exchange plugin Freebox v6 agent contains an improper certificate validation flaw. This allows attackers positioned in a Man-in-the-Middle MitM...

Checkmk Exchange plugin VMware vSAN 安全漏洞

Checkmk Exchange plugin VMware vSAN is a plugin for device status monitoring from Checkmk Germany. A security vulnerability exists in Checkmk Exchange plugin VMware vSAN that stems from improper certificate validation and could lead to a man-in-the-middle attacker intercepting traffic...

PT-2025-35079

Name of the Vulnerable Software and Affected Versions: Checkmk Exchange plugin versions affected versions not specified Description: Improper certificate validation in the Checkmk Exchange plugin’s BGP monitoring functionality allows attackers positioned in a man-in-the-middle MitM position to...

Checkmk Exchange plugin Freebox v6 agent 安全漏洞

Checkmk Exchange plugin Freebox v6 agent is a plugin for device status monitoring from Checkmk Germany. A security vulnerability exists in Checkmk Exchange plugin Freebox v6 agent that stems from improper certificate validation and could lead to a man-in-the-middle attacker intercepting traffic...

PT-2025-35083

Name of the Vulnerable Software and Affected Versions: Checkmk Exchange plugin Dell Powerscale affected versions not specified Description: The Checkmk Exchange plugin for Dell Powerscale contains an improper certificate validation flaw. This allows attackers positioned in a Man-in-the-Middle Mit...

PT-2025-35082

Name of the Vulnerable Software and Affected Versions: Checkmk Exchange plugin VMware vSAN affected versions not specified Description: The Checkmk Exchange plugin for VMware vSAN contains an improper certificate validation flaw. This allows attackers positioned in a Man-in-the-Middle MitM positi...