CVE-2025-43941

Dell Unity, versions 5.5 and Prior, contains an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability to execute arbitrary command with root privileges. This...

PT-2025-44405

Name of the Vulnerable Software and Affected Versions Dell Unity versions 5.5 and prior Description Dell Unity versions 5.5 and prior contain an Improper Neutralization of Special Elements used in an OS Command Injection issue. An attacker with local access and low privileges could potentially...

Apple iOS 授权问题漏洞

Apple iOS is a set of operating systems developed for mobile devices by the American company Apple. Apple iOS 15 and iPadOS 15 previously had a security vulnerability that could allow malicious apps to access photo metadata without requiring a license...

OTRS OTRS 权限许可和访问控制问题漏洞

OTRS is an application from the German company OTRS. A service management software. A security vulnerability exists in OTRS that originates from viewing a linked FAQ article without a license...

CVE-2017-13097

CVE-2017-13097 refers to a weakness in the IEEE P1735 standard where an attacker can modify the Rights Block to remove or relax license requirements. The associated CERT/NVD entries describe this as part of a broader set of flaws in P1735 that can enable recovery of plaintext IP and insertion of ...

CVE-2017-13097 The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property (IP), including modification of Rights Block to remove or relax license requirement

The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property IP, as well as the management of access rights for such IP, including modification of Rights Block to remove or relax license requirement. The methods are flawed and, in the most egregious case...