446 matches found
EUVD-2023-31852
Malicious code in bioql PyPI...
EUVD-2024-0956
Malicious code in bioql PyPI...
EUVD-2024-54475
Malicious code in bioql PyPI...
CVE-2025-34235 Vasion Print (formerly PrinterLogic) Weak SSL/TLS Certificate Validation RCE
Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 25.1.102 and Application prior to version 25.1.1413 Windows client deployments contain a registry key that can be enabled by administrators, causing the client to skip SSL/TLS certificate validation. An attacker who can...
Gen Digital CCleaner Link Following Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Gen Digital CCleaner. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. Some interaction on the part of an administrato...
TeamViewer Link Following Denial-of-Service Vulnerability
This vulnerability allows local attackers to create a denial-of-service condition on affected installations of TeamViewer. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...
CVE-2025-8612
AOMEI Backupper Workstation Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of AOMEI Backupper Workstation. An attacker must first obtain the ability to execute low-privileged code on the target...
CVE-2025-8612
AOMEI Backupper Workstation Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of AOMEI Backupper Workstation. An attacker must first obtain the ability to execute low-privileged code on the target...
CVE-2025-8612 AOMEI Backupper Workstation Link Following Local Privilege Escalation Vulnerability
AOMEI Backupper Workstation Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of AOMEI Backupper Workstation. An attacker must first obtain the ability to execute low-privileged code on the target...
Malicious code in typopro-web-TypoPRO-Junction (npm)
The package typopro-web-TypoPRO-Junction was found to contain malicious code...
MAL-2025-37439 Malicious code in typopro-web-TypoPRO-Junction (npm)
The package typopro-web-TypoPRO-Junction was found to contain malicious code...
Linux Distros Unpatched Vulnerability : CVE-2023-4052
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Firefox updater created a directory writable by non-privileged users. When uninstalling Firefox, any files in that directory would be recursively deleted wi...
Adaptive Variation-Resilient Random Number Generator for Embedded Encryption
With a growing interest in securing user data within the internet-of-things IoT, embedded encryption has become of paramount importance, requiring light-weight high-quality Random Number Generators RNGs. Emerging stochastic device technologies produce random numbers from stochastic physical...
CVE-2025-3771
A path or symbolic link manipulation vulnerability in SIR 1.0.3 and prior versions allows an authenticated non-admin local user to overwrite system files with SIR backup files, which can potentially cause a system crash. This was achieved by adding a malicious entry to the registry under the...
CVE-2025-3771
CVE-2025-3771 describes a path or symbolic-link manipulation vulnerability in Trellix System Information Reporter (SIR) version 1.0.3 and earlier. An authenticated non-admin local user can overwrite system files by adding a malicious entry to the Trellix SIR registry folder (or via policy) or by ...
PT-2025-26951
Name of the Vulnerable Software and Affected Versions: System Information Reporter versions 1.0.3 and prior Description: The issue allows a local user to manipulate the location of registry backup files by creating a junction symlink, potentially overwriting system files. This can be achieved by...
CVE-2025-5474
2BrightSparks SyncBackFree Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of 2BrightSparks SyncBackFree. An attacker must first obtain the ability to execute low-privileged code on the target syst...
CVE-2024-29188
WiX toolset lets developers create installers for Windows Installer, the Windows installation engine. The custom action behind WiX's RemoveFolderEx functionality could allow a standard user to delete protected directories. RemoveFolderEx deletes an entire directory tree during installation or...
CVE-2023-30672
Improper privilege management vulnerability in Samsung Smart Switch for Windows Installer prior to version 4.3.230433 allows attackers to cause permanent DoS via directory junction...
CVE-2023-30673
Improper validation of integrity check vulnerability in Smart Switch PC prior to version 4.3.230521 allows local attackers to delete arbitrary directory using directory junction...