1536 matches found
CVE-2025-59407
The Flock Safety DetectionProcessing com.flocksafety.android.objects application 6.35.33 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices bundles a Java Keystore flockrye.bks along with its hardcoded password flockhibiki17 in its code. The keysto...
CVE-2025-59407
The Flock Safety DetectionProcessing com.flocksafety.android.objects application 6.35.33 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices bundles a Java Keystore flockrye.bks along with its hardcoded password flockhibiki17 in its code. The keysto...
CVE-2025-59407
The CVE-2025-59407 entry affects Flock Safety DetectionProcessing for Android (version 6.35.33) on Falcon/Sparrow LPRs and Bravo Edge devices. The code bundles a Java Keystore (flock_rye.bks) with a hardcoded password (flockhibiki17); the keystore contains a private key, enabling potential privat...
Absolute Secure Access 安全漏洞
Absolute Secure Access is an application from Absolute, Inc. to provide Secure Service Edge SSE optimized for hybrid and mobile working models. A security vulnerability exists in Absolute Secure Access versions prior to 14.10 that stems from improper privilege settings and could lead to the readi...
CVE-2025-59407
The Flock Safety DetectionProcessing com.flocksafety.android.objects application 6.35.33 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices bundles a Java Keystore flockrye.bks along with its hardcoded password flockhibiki17 in its code. The keysto...
PT-2025-40413
Name of the Vulnerable Software and Affected Versions Flock Safety DetectionProcessing application version 6.35.33 Description The Flock Safety DetectionProcessing application for Android version 6.35.33, used on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices, includes...
PT-2025-40420
Name of the Vulnerable Software and Affected Versions Absolute Secure Access versions prior to 14.10 Description An excess permissions issue exists within the Warehouse component. An attacker who has access to the local file system can read the Java keystore file. The attack complexity is low, an...
Flock Safety DetectionProcessing 安全漏洞
Flock Safety DetectionProcessing is an algorithmic execution module from Flock Safety USA. A security vulnerability exists in Flock Safety DetectionProcessing version 6.35.33, which stems from a hard-coded keystore password in the code that could lead to private key disclosure...
CVE-2025-59407
The Flock Safety DetectionProcessing com.flocksafety.android.objects application 6.35.33 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices bundles a Java Keystore flockrye.bks along with its hardcoded password flockhibiki17 in its code. The keysto...
CVE-2025-55109
An authentication bypass vulnerability exists in the out-of-support Control-M/Agent versions 9.0.18 to 9.0.20 and potentially earlier unsupported versions when using an empty or default kdb keystore or a default PKCS12 keystore. A remote attacker with access to a signed third-party or demo...
CVE-2025-55110
Control-M/Agents use a kdb or PKCS12 keystore by default, and the default keystore password is well known and documented. An attacker with read access to the keystore could access sensitive data using this password...
Unspecified Vulnerability in BMC Control-M (CNVD-2025-22540)
BMC Control-M is an application from BMC Corporation. Simplifies application and data workflow orchestration locally or as a service. A security vulnerability exists in BMC Control-M that stems from the default use of the kdb or PKCS12 keystore with a known password, which can be exploited by an...
BMC Control-M Authentication Bypass Vulnerability
BMC Control-M is an application from BMC Corporation. Simplifies application and data workflow orchestration locally or as a service. An authentication bypass vulnerability exists in BMC Control-M that stems from an authentication bypass when using an empty or default kdb keystore or a default...
CVE-2025-55109
An authentication bypass vulnerability exists in the out-of-support Control-M/Agent versions 9.0.18 to 9.0.20 and potentially earlier unsupported versions when using an empty or default kdb keystore or a default PKCS12 keystore. A remote attacker with access to a signed third-party or demo...
CVE-2025-55109
An authentication bypass vulnerability exists in the out-of-support Control-M/Agent versions 9.0.18 to 9.0.20 and potentially earlier unsupported versions when using an empty or default kdb keystore or a default PKCS12 keystore. A remote attacker with access to a signed third-party or demo...
CVE-2025-55110
Control-M/Agents use a kdb or PKCS12 keystore by default, and the default keystore password is well known and documented. An attacker with read access to the keystore could access sensitive data using this password...
CVE-2025-55111
CVE-2025-55111 affects BMC Control-M/Agent; out-of-support versions 9.0.18–9.0.20 and some earlier/upgraded newer versions contain files with overly permissive permissions that store SSL keys, keystores, and policy passwords. An attacker with local access can read these files. The connected sourc...
CVE-2025-55111 BMC Control-M/Agent insecure default file permissions
Certain files with overly permissive permissions were identified in the out-of-support Control-M/Agent versions 9.0.18 to 9.0.20 and potentially earlier unsupported versions as well as in newer versions which were upgraded from an affected version. These files contain keys and passwords relating ...
CVE-2025-55111 BMC Control-M/Agent insecure default file permissions
Certain files with overly permissive permissions were identified in the out-of-support Control-M/Agent versions 9.0.18 to 9.0.20 and potentially earlier unsupported versions as well as in newer versions which were upgraded from an affected version. These files contain keys and passwords relating ...
CVE-2025-55110 BMC Control-M/Agent hardcoded default keystore password
Control-M/Agents use a kdb or PKCS12 keystore by default, and the default keystore password is well known and documented. An attacker with read access to the keystore could access sensitive data using this password...