Siemens SINEC NMS Improper Authentication Privilege Escalation Vulnerability

This vulnerability allows remote attackers to escalate privileges on affected installations of Siemens SINEC NMS. Authentication is required to exploit this vulnerability. The specific flaw exists within the web service, which listens on TCP port 443 by default. The issue results from improper...

CVE-2021-22005

The vCenter Server contains an arbitrary file upload vulnerability in the Analytics service. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to execute code on vCenter Server by uploading a specially crafted file...

Siemens SIPROTEC Inadequate Encryption Strength (CVE-2024-38867)

The affected devices are supporting weak ciphers on several ports 443/tcp for web, 4443/tcp for DIGSI 5 and configurable port for syslog over TLS. This could allow an unauthorized attacker in a man-in-the-middle position to decrypt any data passed over to and from those ports. This plugin only...

EUVD-2006-6455

Malware in sbrugna...

EUVD-2013-5371

Malware in sbrugna...

EUVD-2019-5195

Malware in sbrugna...

EUVD-2020-20793

Malware in sbrugna...

EUVD-2008-2055

Malware in sbrugna...

EUVD-2019-2645

Malware in sbrugna...

EUVD-2013-5370

Malware in sbrugna...

EUVD-2016-4972

Malware in sbrugna...

EUVD-2012-3053

Malware in sbrugna...

EUVD-2025-27765

Malicious code in bioql PyPI...

EUVD-2024-48491

Malicious code in bioql PyPI...

EUVD-2024-48495

Malicious code in bioql PyPI...

EUVD-2022-53118

Malicious code in bioql PyPI...

CVE-2025-30037

The system exposes several endpoints, typically including "/int/" in their path, that should be restricted to internal services, but are instead publicly accessible without authentication to any host able to reach the application server on port 443/tcp...

CVE-2025-30037

The system exposes several endpoints, typically including "/int/" in their path, that should be restricted to internal services, but are instead publicly accessible without authentication to any host able to reach the application server on port 443/tcp...

CVE-2025-30037 Missing authentication in APIs allowing data retrieval and modification

The system exposes several endpoints, typically including "/int/" in their path, that should be restricted to internal services, but are instead publicly accessible without authentication to any host able to reach the application server on port 443/tcp...

CVE-2025-30037 Missing authentication in APIs allowing data retrieval and modification

The system exposes several endpoints, typically including "/int/" in their path, that should be restricted to internal services, but are instead publicly accessible without authentication to any host able to reach the application server on port 443/tcp...