CVE-2025-1367

A vulnerability was found in MicroWord eScan Antivirus 7.0.32 on Linux. It has been classified as critical. This affects the function sprintf of the component USB Password Handler. The manipulation leads to buffer overflow. An attack has to be approached locally. The vendor was contacted early...

CVE-2025-1367

A vulnerability was found in MicroWord eScan Antivirus 7.0.32 on Linux. It has been classified as critical. This affects the function sprintf of the component USB Password Handler. The manipulation leads to buffer overflow. An attack has to be approached locally. The vendor was contacted early...

CVE-2025-1367 MicroWord eScan Antivirus USB Password sprintf buffer overflow

A vulnerability was found in MicroWord eScan Antivirus 7.0.32 on Linux. It has been classified as critical. This affects the function sprintf of the component USB Password Handler. The manipulation leads to buffer overflow. An attack has to be approached locally. The vendor was contacted early...

CVE-2025-1367

Summary of CVE-2025-1367 (MicroWord eScan Antivirus 7.0.32, Linux) : The USB Password Handler’s use of the C function sprintf is reported to cause a buffer overflow. Documents consistently describe this as a locally exploitable vulnerability, requiring local access to the system. Reported impact ...

CVE-2025-1367 MicroWord eScan Antivirus USB Password sprintf buffer overflow

A vulnerability was found in MicroWord eScan Antivirus 7.0.32 on Linux. It has been classified as critical. This affects the function sprintf of the component USB Password Handler. The manipulation leads to buffer overflow. An attack has to be approached locally. The vendor was contacted early...

MicroWorld eScan Antivirus 安全漏洞

MicroWorld eScan Antivirus is an antivirus software from MicroWorld, Inc. A security vulnerability exists in MicroWorld eScan Antivirus version 7.0.32, which originates from a buffer overflow in the sprintf function of the USB Password Handler component...

PT-2025-6897 · Microworld · Microword Escan Antivirus

Name of the Vulnerable Software and Affected Versions: MicroWord eScan Antivirus version 7.0.32 Description: A critical issue has been discovered affecting the sprintf function of the USB Password Handler component. This issue leads to a buffer overflow. The attack must be approached locally,...

PT-2025-6899 · Microworld · Microword Escan Antivirus

Name of the Vulnerable Software and Affected Versions: MicroWord eScan Antivirus version 7.0.32 Description: A critical vulnerability was found in the USB Password Handler component of MicroWord eScan Antivirus, leading to os command injection. The attack must be approached locally and has a high...

CVE-2025-1081

A vulnerability was found in Bharti Airtel Xstream Fiber up to 20250123. It has been rated as problematic. This issue affects some unknown processing of the component WiFi Password Handler. The manipulation leads to use of weak credentials. The attack needs to be done within the local network. Th...

Airtel Xstream 安全漏洞

Airtel Xstream is a streaming controller from Airtel India. A security vulnerability exists in Airtel Xstream 20250123 and earlier versions, which stems from the use of weak credentials by the WiFi Password Handler component, resulting in an attack that can be carried out on the local network...

PT-2025-5873 · Bharti Airtel · Bharti Airtel Xstream Fiber

Name of the Vulnerable Software and Affected Versions: Bharti Airtel Xstream Fiber up to 20250123 Description: A vulnerability was found in the WiFi Password Handler component, leading to the use of weak credentials. The attack must be done within the local network and has a high complexity, maki...

CVE-2024-12185

A vulnerability has been found in code-projects Hotel Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Administrator Login Password Handler. The manipulation of the argument Str2 leads to stack-based buffer overflow. An attack has to be...

PT-2024-17476 · Unknown · Code-Projects Hotel Management System

Name of the Vulnerable Software and Affected Versions: code-projects Hotel Management System version 1.0 Description: A problem has been found in the code-projects Hotel Management System, affecting unknown code of the Administrator Login Password Handler component. The manipulation of the Str2...

The vulnerability of the E2EE Password Handler component in the server-based corporate messaging platform supporting file and video conferences like Rocket.Chat Mobile allows a hacker to escalate their privileges.

The vulnerability of the E2EE Password Handler component in the server-based corporate messaging system that supports file and video conferences in Rocket.Chat Mobile is related to the use of weak user credentials. Exploiting this vulnerability could allow a malicious actor to gain increased...

CVE-2024-9040

A vulnerability, which was classified as problematic, was found in code-projects Blood Bank Management System 1.0. This affects an unknown part of the component Password Handler. The manipulation leads to cleartext storage in a file or on disk. An attack has to be approached locally...

CVE-2024-9040

A vulnerability, which was classified as problematic, was found in code-projects Blood Bank Management System 1.0. This affects an unknown part of the component Password Handler. The manipulation leads to cleartext storage in a file or on disk. An attack has to be approached locally...

CVE-2024-9040

CVE-2024-9040 affects code-projects Blood Bank Management System 1.0, specifically the password handling component. The issue enables cleartext storage of passwords in a file or on disk, with exploitation requiring a local attack. The CVE’s core impact is confidentiality loss and potential accoun...

PT-2024-39384 · Unknown · Code-Projects Blood Bank Management System

Name of the Vulnerable Software and Affected Versions: code-projects Blood Bank Management System version 1.0 Description: A problematic vulnerability was found in the code-projects Blood Bank Management System, affecting an unknown part of the Password Handler component. This leads to cleartext...

CVE-2024-6183

A vulnerability classified as problematic has been found in EZ-Suite EZ-Partner 5. Affected is an unknown function of the component Forgot Password Handler. The manipulation leads to basic cross site scripting. It is possible to launch the attack remotely. VDB-269154 is the identifier assigned to...

PT-2024-37440 · Unknown · Ez-Suite Ez-Partner

Name of the Vulnerable Software and Affected Versions: EZ-Suite EZ-Partner version 5 Description: A vulnerability has been found in the Forgot Password Handler component, leading to basic cross site scripting. The manipulation can be launched remotely. The vendor was contacted about this disclosu...