EUVD-2025-201181

An issue was discovered on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. They run an SSH server accessible over the default port 22. The root account has a weak default password of ionadmin, and a password change policy for the root account is not enforced. Thus, an attacker with netwo...

EUVD-2018-17845

Malware in sbrugna...

EUVD-2017-9024

Malware in sbrugna...

EUVD-2025-12172

Malicious code in bioql PyPI...

EUVD-2024-32832

Malicious code in bioql PyPI...

EUVD-2023-12870

Malicious code in bioql PyPI...

CVE-2025-48416

An OpenSSH daemon listens on TCP port 22. There is a hard-coded entry in the "/etc/shadow" file in the firmware image for the "root" user. However, in the default SSH configuration the "PermitRootLogin" is disabled, preventing the root user from logging in via SSH. This configuration can be...

CVE-2025-48416

An OpenSSH daemon listens on TCP port 22. There is a hard-coded entry in the "/etc/shadow" file in the firmware image for the "root" user. However, in the default SSH configuration the "PermitRootLogin" is disabled, preventing the root user from logging in via SSH. This configuration can be...

PT-2025-22345

Name of the Vulnerable Software and Affected Versions OpenSSH affected versions not specified Description The issue concerns an OpenSSH daemon listening on TCP port 22, with a hard-coded entry in the "/etc/shadow" file for the "root" user. Although the default SSH configuration has...

Configure Proper Policies for INPUT of nftables

The INPUT chain is used to filter packets received from external systems. For any service provided for external systems, configure the corresponding INPUT policy and enable the related port so that external clients can access the service through the port. If the policy is not set, all packets tha...

CVE-2025-2773

BEC Technologies Multiple Routers sys ping Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of BEC Technologies Multiple Routers. Although authentication is required to exploit this vulnerability,...

CVE-2025-2773

BEC Technologies Multiple Routers sys ping Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of BEC Technologies Multiple Routers. Although authentication is required to exploit this vulnerability,...

CVE-2023-0881

Running DDoS on tcp port 22 will trigger a kernel crash. This issue is introduced by the backport of a commit regarding nftlookup without the subsequent fixes that were introduced after this commit. The resolution of this CVE introduces those commits to the linux-bluefield package...

CVE-2023-0881

CVE-2023-0881 : Concrete details show a kernel crash triggered by running DDoS against TCP port 22, due to a backport of a commit related to nft_lookup without subsequent fixes. The issue is addressed by applying the fixes/commits to the linux-bluefield package (Ubuntu) as part of the resolution....

CVE-2023-0881 DDoS in Ubuntu package linux-bluefield

Running DDoS on tcp port 22 will trigger a kernel crash. This issue is introduced by the backport of a commit regarding nftlookup without the subsequent fixes that were introduced after this commit. The resolution of this CVE introduces those commits to the linux-bluefield package...

CVE-2023-0881 DDoS in Ubuntu package linux-bluefield

Running DDoS on tcp port 22 will trigger a kernel crash. This issue is introduced by the backport of a commit regarding nftlookup without the subsequent fixes that were introduced after this commit. The resolution of this CVE introduces those commits to the linux-bluefield package...

CVE-2024-4282 Weak TLS Ciphers on Brocade SANnav OVA SSH port 22

Brocade SANnav OVA before SANnav 2.3.1b enables SHA1 deprecated setting for SSH for port 22...

CVE-2024-4282

CVE-2024-4282 affects Brocade SANnav OVA images prior to SANnav 2.3.1b. The issue is that the SSH port 22 configuration uses deprecated SHA-1 settings, i.e., weak TLS/cryptographic ciphers. Public materials describe this as enabling a SHA-1 deprecated setting for SSH, with the impact noting susce...

CVE-2024-4282 Weak TLS Ciphers on Brocade SANnav OVA SSH port 22

Brocade SANnav OVA before SANnav 2.3.1b enables SHA1 deprecated setting for SSH for port 22...

VMware Cloud Director Authentication Bypass (VMSA-2023-0026)

VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. On an upgraded version of VMware Cloud Director Appliance 10.5, a malicious actor with network access to the appliance can bypass log...