714 matches found
CVE-2025-3784
Cleartext Storage of Sensitive Information Vulnerability in GX Works2 all versions allows an attacker to disclose credential information stored in plaintext from project files. As a result, the attacker may be able to open project files protected by user authentication using disclosed credential...
CVE-2025-3784
CVE-2025-3784 affects Mitsubishi Electric GX Works2 (all versions) and is a vulnerability in cleartext storage of sensitive information where credentials are stored in plaintext in project files. This could allow an attacker with local access to disclose credentials and subsequently open protecte...
CVE-2025-3784 Information Disclosure Vulnerability in GX Works2
Cleartext Storage of Sensitive Information Vulnerability in GX Works2 all versions allows an attacker to disclose credential information stored in plaintext from project files. As a result, the attacker may be able to open project files protected by user authentication using disclosed credential...
CVE-2025-3784 Information Disclosure Vulnerability in GX Works2
Cleartext Storage of Sensitive Information Vulnerability in GX Works2 all versions allows an attacker to disclose credential information stored in plaintext from project files. As a result, the attacker may be able to open project files protected by user authentication using disclosed credential...
PT-2025-48232
Name of the Vulnerable Software and Affected Versions GX Works2 affected versions not specified Description A security issue exists in GX Works2 where sensitive credential information is stored in plaintext within project files. This allows an attacker to potentially disclose these credentials,...
CVE-2025-9317
The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...
CVE-2025-9317
The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...
CVE-2025-9317 AVEVA Edge Use of a Broken or Risky Cryptographic Algorithm
The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...
CVE-2025-9317 AVEVA Edge Use of a Broken or Risky Cryptographic Algorithm
The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...
EUVD-2025-197663
The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...
CVE-2025-9317
Summary: CVE-2025-9317 affects AVEVA Edge components used in AVEVA Edge, Edge Project files, and Edge Offline Cache, with later Red Hat/NVD references corroborating the same vulnerability. The underlying issue is the use of weak cryptographic hashes (MD5) to protect passwords, enabling a local at...
Malicious code in mutual_armadillo_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c78b8bc63a44bb336afbf948c6029a83e76e2fea61deba71fce5c4099de9d23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in qori-bakwan74-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c25ccf9a40c52095cb8303ff6756cd670f80963a5bc7d6e88519c498948bdcf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-78822 Malicious code in historical_gazelle_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee5050e824f8a604d06085c4e7cc5fb19358f72117f9129d25702b612c746b3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-61471 Malicious code in thoughtful_vicuna_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e3265ba9d89dea383b18462301f595c36ca4f0df8f288c61d3c088715d94644 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Fuji Electric V-SFT-6 安全漏洞
Fuji Electric V-SFT-6 is a Fuji Electric operator interface software from Fuji Electric, Japan. A security vulnerability exists in Fuji Electric V-SFT-6 that originates from a stack buffer overflow when processing specially crafted project files, which could lead to the execution of arbitrary cod...
PT-2025-43565
Name of the Vulnerable Software and Affected Versions Productivity Suite version 4.4.1.19 Description A relative path traversal ZipSlip issue exists in Productivity Suite software. This allows an attacker who can modify a productivity project to potentially execute arbitrary code on the system...
EUVD-2020-8173
Malware in sbrugna...
EUVD-2018-19242
Malware in sbrugna...
EUVD-2019-4999
Malware in sbrugna...