CVE-2025-64122

Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...

CVE-2025-64122 Nuvation Energy Multi-Stack Controller Private Key Stored on Device

Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...

CVE-2025-15422

A flaw has been found in EmpireSoft EmpireCMS up to 8.0. This issue affects the function egetip of the file e/class/connect.php of the component IP Address Handler. This manipulation causes protection mechanism failure. The attack may be initiated remotely. The exploit has been published and may ...

CVE-2025-15422 EmpireSoft EmpireCMS IP Address connect.php egetip protection mechanism

A flaw has been found in EmpireSoft EmpireCMS up to 8.0. This issue affects the function egetip of the file e/class/connect.php of the component IP Address Handler. This manipulation causes protection mechanism failure. The attack may be initiated remotely. The exploit has been published and may ...

CVE-2025-15422 EmpireSoft EmpireCMS IP Address connect.php egetip protection mechanism

A flaw has been found in EmpireSoft EmpireCMS up to 8.0. This issue affects the function egetip of the file e/class/connect.php of the component IP Address Handler. This manipulation causes protection mechanism failure. The attack may be initiated remotely. The exploit has been published and may ...

CVE-2025-15422

EmpireSoft EmpireCMS (versions up to 8.0) is affected by a flaw in the IP Address Handler, specifically the eigenenegat ip logic in e/class/connect.php (function egetip). The vulnerability enables a remote attacker to bypass protection mechanisms, with an exploit already published. Multiple sourc...

Nuvation Energy Multi-Stack Controller 安全漏洞

The Nuvation Energy Multi-Stack Controller is a control unit in a battery management system from Nuvation Energy, Inc. A security vulnerability exists in Nuvation Energy Multi-Stack Controller version 2.5.1 and prior versions, which stems from insufficient credential protection and could lead to...

Threat Intelligence Driven IP Protection for Entrepreneurial SMEs

Entrepreneurial small to medium enterprises face significant cybersecurity challenges when developing valuable intellectual property IP. This paper addresses the critical gap in research on how E-SMEs can protect their IP assets from cybersecurity threats through effective threat intelligence and...

CVE-2025-62145

Missing Authorization vulnerability in NewClarity DMCA Protection Badge dmca-badge allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DMCA Protection Badge: from n/a through = 2.2.0...

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

PT-2026-20453

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Exynos Virtual Display driver in the Linux kernel has a concurrency issue due to missing lock protection during memory allocation and deallocation operations. This can lead to a...

PT-2026-27672

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the ems usb read bulk callback function related to handling USB urb data lengths. The function incorrectly uses the size of the buffer passed to...

PT-2026-26115

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to RCU Read-Copy-Update protection in the /proc/net/ptype interface. Specifically, the functions ptype seq next and ptype seq show do not adhere ...

PT-2026-8133

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to kernel stack trace recording. An infinite recursion could occur when tracing RCU events with the kernel stack trace trigger enabled, as the...

PT-2026-8215

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's Tegra210-quad SPI driver related to synchronization of the curr xfer variable within the interrupt request IRQ handler. Specifically, a race condition...

PT-2026-4495

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description A race condition can lead to a use-after-free issue within the ublk subsystem. Specifically, the vulnerability occurs between the asynchronous partition scan work and device teardown,...

PT-2026-29242

Name of the Vulnerable Software and Affected Versions Versions affected versions not specified Description A misconfiguration of the Cross-Origin Resource Sharing CORS policy exists when the internal webserver is enabled. An attacker may be able to trick an administrator logged into the dashboard...

PT-2026-6156

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel's virtio transports are susceptible to an issue where the transmission TX credit is derived directly from peer buf alloc, which is determined by the remote endpoint's SO...

PT-2026-20455

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's virtio crypto component related to spinlock protection when handling virtqueue notifications. Specifically, when a virtual machine boots with a single...

CVE-2025-66080

Missing Authorization vulnerability in WP Legal Pages WP Cookie Notice for GDPR, CCPA & ePrivacy Consent gdpr-cookie-consent allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Cookie Notice for GDPR, CCPA & ePrivacy Consent: from n/a through = 4.0.3...