210 matches found
CVE-2025-15217
A security flaw has been discovered in Tenda AC23 16.03.07.52. Affected is the function formSetPPTPUserList of the component HTTP POST Request Handler. Performing a manipulation of the argument list results in buffer overflow. The attack can be initiated remotely...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992976)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992976 advisory. In the Linux kernel, the following vulnerability has been resolved: kprobes: Skip clearing aggrprobe's posthandler in kprobe-on-ftrace case In unregisterkprobetop, i...
PT-2025-53838
Name of the Vulnerable Software and Affected Versions Tenda AC23 version 16.03.07.52 Description A security issue exists in the Tenda AC23 router. The formSetPPTPUserList function within the HTTP POST Request Handler component is susceptible to a buffer overflow when the argument list is...
CVE-2025-15133
A vulnerability was identified in ZSPACE Z4Pro+ 1.0.0440024. The impacted element is the function zfilev2apiCloseSafe of the file /v2/file/safe/close of the component HTTP POST Request Handler. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit...
CVE-2025-15132
A vulnerability was determined in ZSPACE Z4Pro+ 1.0.0440024. The affected element is the function zfilev2apiopen of the file /v2/file/safe/open of the component HTTP POST Request Handler. This manipulation causes command injection. It is possible to initiate the attack remotely. The exploit has...
CVE-2025-15131
A vulnerability was found in ZSPACE Z4Pro+ 1.0.0440024. Impacted is the function zfilev2apiSafeStatus of the file /v2/file/safe/status of the component HTTP POST Request Handler. The manipulation results in command injection. The attack may be performed from remote. The exploit has been made publ...
EUVD-2025-205504
A vulnerability was determined in ZSPACE Z4Pro+ 1.0.0440024. The affected element is the function zfilev2apiopen of the file /v2/file/safe/open of the component HTTP POST Request Handler. This manipulation causes command injection. It is possible to initiate the attack remotely. The exploit has...
EUVD-2025-205507
A vulnerability was identified in ZSPACE Z4Pro+ 1.0.0440024. The impacted element is the function zfilev2apiCloseSafe of the file /v2/file/safe/close of the component HTTP POST Request Handler. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit...
CVE-2025-15132 ZSPACE Z4Pro+ HTTP POST Request open zfilev2_api_open command injection
A vulnerability was determined in ZSPACE Z4Pro+ 1.0.0440024. The affected element is the function zfilev2apiopen of the file /v2/file/safe/open of the component HTTP POST Request Handler. This manipulation causes command injection. It is possible to initiate the attack remotely. The exploit has...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990756)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990756 advisory. In the Linux kernel, the following vulnerability has been resolved: kprobes: Skip clearing aggrprobe's posthandler in kprobe-on-ftrace case In unregisterkprobetop, i...
EUVD-2023-33836
Malicious code in bioql PyPI...
EUVD-2023-58804
Malicious code in bioql PyPI...
EUVD-2022-52211
Malicious code in bioql PyPI...
EUVD-2025-28712
Malicious code in bioql PyPI...
EUVD-2024-48959
Malicious code in bioql PyPI...
EUVD-2023-59321
Malicious code in bioql PyPI...
EUVD-2025-16583
Malicious code in bioql PyPI...
EUVD-2025-18473
Malicious code in bioql PyPI...
EUVD-2025-1896
Malicious code in bioql PyPI...
EUVD-2025-21213
Malicious code in bioql PyPI...