60 matches found
EUVD-2024-40428
Malicious code in bioql PyPI...
EUVD-2024-39168
Malicious code in bioql PyPI...
EUVD-2025-30192
Malicious code in bioql PyPI...
EUVD-2024-40427
Malicious code in bioql PyPI...
EUVD-2024-41450
Malicious code in bioql PyPI...
EUVD-2024-41292
Malicious code in bioql PyPI...
CVE-2025-30519
Dover Fueling Solutions ProGauge MagLink LX4 Devices have default root credentials that cannot be changed through standard administrative means. An attacker with network access to the device can gain administrative access to the system...
CVE-2025-55068
Dover Fueling Solutions ProGauge MagLink LX4 Devices fail to handle Unix time values beyond a certain point. An attacker can manually change the system time to exploit this limitation, potentially causing errors in authentication and leading to a denial-of-service condition...
CVE-2025-30519
CVE-2025-30519 affects Dover Fueling Solutions ProGauge MagLink LX4 devices. The issue is that the devices ship with default root credentials that cannot be changed via standard administrative means, enabling an attacker with network access to obtain administrative control of the system. Public s...
CVE-2025-30519 Dover Fueling Solutions ProGauge MagLink LX4 Devices Use of Weak Credentials
Dover Fueling Solutions ProGauge MagLink LX4 Devices have default root credentials that cannot be changed through standard administrative means. An attacker with network access to the device can gain administrative access to the system...
CVE-2025-54807
CVE-2025-54807 affects Dover Fueling Solutions ProGauge MagLink LX4 devices and related MAGLINK LX Console family. The root cause is a hard-coded cryptographic key used to validate authentication tokens embedded in affected device firmware. This allows an attacker who obtains the signing key to b...
CVE-2025-54807 Dover Fueling Solutions ProGauge MagLink LX4 Devices Use of Hard-coded Cryptographic Key
The secret used for validating authentication tokens is hardcoded in device firmware for affected versions. An attacker who obtains the signing key can bypass authentication, gaining complete access to the system...
CVE-2025-55068 Dover Fueling Solutions ProGauge MagLink LX4 Devices Integer Overflow or Wraparound
Dover Fueling Solutions ProGauge MagLink LX4 Devices fail to handle Unix time values beyond a certain point. An attacker can manually change the system time to exploit this limitation, potentially causing errors in authentication and leading to a denial-of-service condition...
CVE-2025-55068
CVE-2025-55068 affects Dover Fueling Solutions ProGauge MagLink LX4 Devices (and related MAGLINK LX products noted in connected sources). The vulnerability arises from the devices’ handling of Unix time values beyond a certain point, allowing a network-available attacker to manually adjust the sy...
CVE-2025-55068 Dover Fueling Solutions ProGauge MagLink LX4 Devices Integer Overflow or Wraparound
Dover Fueling Solutions ProGauge MagLink LX4 Devices fail to handle Unix time values beyond a certain point. An attacker can manually change the system time to exploit this limitation, potentially causing errors in authentication and leading to a denial-of-service condition...
CISA Releases Nine Industrial Control Systems Advisories
CISA released nine Industrial Control Systems ICS advisories on September 18, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-261-01 Westermo Network Technologies WeOS 5 ICSA-25-261-02 Westermo Network...
Dover Fueling Solutions ProGauge MagLink LX4 Devices
RISK EVALUATION Successful exploitation of these vulnerabilities could result in a remote attacker causing a denial-of-service condition or gaining administrative access to the device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...
Dover Fueling Solutions多款产品 安全漏洞
Dover Fueling Solutions MAGLINK LX Console and others are products of Dover Fueling Solutions.Dover Fueling Solutions MAGLINK LX Console is an integrated console for fuel stations and oil distribution. This console is designed to help manage the various operations of a fuel station, including...
Dover Fueling Solutions ProGauge MagLink LX4 安全漏洞
The Dover Fueling Solutions ProGauge MagLink LX4 is an automated tank gauging system console from Dover Fueling Solutions, USA. A security vulnerability exists in several Dover products that stems from the use of default root credentials that cannot be changed through standard administrative...
CVE-2025-5310
Dover Fueling Solutions ProGauge MagLink LX Consoles expose an undocumented and unauthenticated target communication framework TCF interface on a specific port. Files can be created, deleted, or modified, potentially leading to remote code execution...