Lucene search
+L

714 matches found

NVD
NVD
added 2025/11/27 5:16 a.m.7 views

CVE-2025-3784

Cleartext Storage of Sensitive Information Vulnerability in GX Works2 all versions allows an attacker to disclose credential information stored in plaintext from project files. As a result, the attacker may be able to open project files protected by user authentication using disclosed credential...

5.5CVSS0.00094EPSS
Exploits0References3
CVE
CVE
added 2025/11/27 4:28 a.m.14 views

CVE-2025-3784

CVE-2025-3784 affects Mitsubishi Electric GX Works2 (all versions) and is a vulnerability in cleartext storage of sensitive information where credentials are stored in plaintext in project files. This could allow an attacker with local access to disclose credentials and subsequently open protecte...

5.5CVSS6.1AI score0.00094EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/27 4:28 a.m.3 views

CVE-2025-3784 Information Disclosure Vulnerability in GX Works2

Cleartext Storage of Sensitive Information Vulnerability in GX Works2 all versions allows an attacker to disclose credential information stored in plaintext from project files. As a result, the attacker may be able to open project files protected by user authentication using disclosed credential...

5.5CVSS6.1AI score0.00094EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/27 4:28 a.m.13 views

CVE-2025-3784 Information Disclosure Vulnerability in GX Works2

Cleartext Storage of Sensitive Information Vulnerability in GX Works2 all versions allows an attacker to disclose credential information stored in plaintext from project files. As a result, the attacker may be able to open project files protected by user authentication using disclosed credential...

5.5CVSS0.00094EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/11/27 12:0 a.m.8 views

PT-2025-48232

Name of the Vulnerable Software and Affected Versions GX Works2 affected versions not specified Description A security issue exists in GX Works2 where sensitive credential information is stored in plaintext within project files. This allows an attacker to potentially disclose these credentials,...

5.5CVSS6AI score0.00094EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/11/17 9:7 a.m.7 views

CVE-2025-9317

The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...

8.4CVSS6.7AI score0.00097EPSS
Exploits0References1
NVD
NVD
added 2025/11/15 12:15 a.m.8 views

CVE-2025-9317

The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...

8.4CVSS0.00097EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/14 11:49 p.m.10 views

CVE-2025-9317 AVEVA Edge Use of a Broken or Risky Cryptographic Algorithm

The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...

8.4CVSS0.00097EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/14 11:49 p.m.5 views

CVE-2025-9317 AVEVA Edge Use of a Broken or Risky Cryptographic Algorithm

The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...

8.4CVSS6.3AI score0.00097EPSS
Exploits0References3
EUVD
EUVD
added 2025/11/14 11:49 p.m.9 views

EUVD-2025-197663

The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...

8.4CVSS6.3AI score0.00097EPSS
Exploits0References4
CVE
CVE
added 2025/11/14 11:49 p.m.37 views

CVE-2025-9317

Summary: CVE-2025-9317 affects AVEVA Edge components used in AVEVA Edge, Edge Project files, and Edge Offline Cache, with later Red Hat/NVD references corroborating the same vulnerability. The underlying issue is the use of weak cryptographic hashes (MD5) to protect passwords, enabling a local at...

8.4CVSS6.4AI score0.00097EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 3:19 p.m.4 views

Malicious code in mutual_armadillo_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c78b8bc63a44bb336afbf948c6029a83e76e2fea61deba71fce5c4099de9d23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 4:25 a.m.5 views

Malicious code in qori-bakwan74-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c25ccf9a40c52095cb8303ff6756cd670f80963a5bc7d6e88519c498948bdcf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/11 3:48 a.m.2 views

MAL-2025-78822 Malicious code in historical_gazelle_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee5050e824f8a604d06085c4e7cc5fb19358f72117f9129d25702b612c746b3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/10 6:2 p.m.3 views

MAL-2025-61471 Malicious code in thoughtful_vicuna_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e3265ba9d89dea383b18462301f595c36ca4f0df8f288c61d3c088715d94644 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2025/11/04 12:0 a.m.7 views

Fuji Electric V-SFT-6 安全漏洞

Fuji Electric V-SFT-6 is a Fuji Electric operator interface software from Fuji Electric, Japan. A security vulnerability exists in Fuji Electric V-SFT-6 that originates from a stack buffer overflow when processing specially crafted project files, which could lead to the execution of arbitrary cod...

8.4CVSS7.2AI score0.00174EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/23 12:0 a.m.7 views

PT-2025-43565

Name of the Vulnerable Software and Affected Versions Productivity Suite version 4.4.1.19 Description A relative path traversal ZipSlip issue exists in Productivity Suite software. This allows an attacker who can modify a productivity project to potentially execute arbitrary code on the system...

8.8CVSS7.2AI score0.00506EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-8173

Malware in sbrugna...

7.8CVSS7.4AI score0.03735EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-19242

Malware in sbrugna...

5.3CVSS5.5AI score0.00364EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-4999

Malware in sbrugna...

7.8CVSS7.5AI score0.01906EPSS
Exploits0References2
Rows per page
Query Builder