CVE-2025-54615

Vulnerability of insufficient information protection in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-54615

Technical details are not publicly available in the provided documents. Monitor for updates from Huawei and other sources to confirm affected products, versions, and any fixes.

CVE-2025-8656

Kenwood DMX958XR is affected by a vulnerability in the libSystemLib library where update-version validation is missing. This allows physically present attackers to downgrade software without authentication. The issue can enable arbitrary code execution in the context of root when combined with ot...

CVE-2025-8656 Kenwood DMX958XR Protection Mechanism Failure Software Downgrade Vulnerability

Kenwood DMX958XR Protection Mechanism Failure Software Downgrade Vulnerability. This vulnerability allows physically present attackers to downgrade software on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability. The specific flaw exist...

CVE-2025-44958

RUCKUS Network Director RND before 4.5 stores passwords in a recoverable format...

IBM Guardium Data Protection 安全漏洞

IBM Guardium Data Protection is a comprehensive data security platform from International Business Machines IBM. A security vulnerability exists in IBM Guardium Data Protection that stems from the explicit transmission of sensitive credential information, which could lead to information disclosur...

From Learning to Unlearning: Biomedical Security Protection in Multimodal Large Language Models

The security of biomedical Multimodal Large Language Models MLLMs has attracted increasing attention. However, training samples easily contain private information and incorrect knowledge that are difficult to detect, potentially leading to privacy leakage or erroneous outputs after deployment. An...

Linux Distros Unpatched Vulnerability : CVE-2024-26754

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: gtp: fix use-after-free and null-ptr- deref in gtpgenldumppdp The gtpnetops pernet operation...

Linux Distros Unpatched Vulnerability : CVE-2024-56706

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: s390/cpumsf: Fix and protect memory allocation of SDBs with mutex Reservation of the PMU...

SelectiveShield: Lightweight Hybrid Defense against Gradient Leakage in Federated Learning

Federated Learning FL enables collaborative model training on decentralized data but remains vulnerable to gradient leakage attacks that can reconstruct sensitive user information. Existing defense mechanisms, such as differential privacy DP and homomorphic encryption HE, often introduce a...

The vulnerability of the Find My function in macOS and iPadOS systems allows a perpetrator to disclose protected information.

The vulnerability of the Find My function in macOS and iPadOS is related to insufficient protection of service data. Exploiting this vulnerability can allow attackers to disclose sensitive information...

Linux Distros Unpatched Vulnerability : CVE-2024-42233

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: filemap: replace pteoffsetmap with pteoffsetmapnolock The vmf-ptl in...

Linux Distros Unpatched Vulnerability : CVE-2022-50218

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iio: light: isl29028: Fix the warning in isl29028remove The driver use the non-managed form ...

ROS-20250806-13

Golang programming language vulnerability is related to improper input validation. Exploitation exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code A vulnerability in the crypto-elliptic component of the Golang programming language is related to the...

PT-2025-32176 · Ibm · Guardium Data Protection

Name of the Vulnerable Software and Affected Versions: IBM Guardium Data Protection affected versions not specified Description: IBM Guardium Data Protection may allow a remote attacker to obtain sensitive information due to the cleartext transmission of sensitive credential information...

PT-2025-32022 · Huawei · Harmonyos

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The issue involves insufficient information protection within the media library module. Successful exploitation may affect service confidentiality...

Security Bulletin: IBM Guardium Data Protection is affected by a RHEL7 Kernel vulnerability (CVE-2024-36971)

Summary IBM Guardium Data Protection has addressed this vulnerability in an update. Vulnerability Details CVEID:CVE-2024-36971 DESCRIPTION: In the Linux kernel, the following vulnerability has been resolved: net: fix dstnegativeadvice race dstnegativeadvice does not enforce proper RCU rules when...

Elevate your protection with expanded Microsoft Defender Experts coverage

Defender Experts now offers 24/7, expert-driven protection for cloud workloads, beginning with hybrid and multicloud servers in Microsoft Defender for Cloud. Additionally, third-party network signals can be used in Microsoft Defender Experts for XDR to enhance incidents for faster and more accura...

Security Bulletin: IBM Guardium Data Protection is affected by multiple Tomcat vulnerabilities (CVE-2025-24813, CVE-2024-50379)

Summary IBM Guardium Data Protection has addressed these vulnerabilities in an update. Vulnerability Details CVEID:CVE-2025-24813 DESCRIPTION: Path Equivalence: 'file.Name' Internal Dot leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files...

Security Bulletin: IBM Guardium Data Protection is affected by a Privilege Escalation vulnerability (CVE-2025-3473)

Summary IBM Guardium Data Protection has addressed this vulnerability in an update. Vulnerability Details CVEID:CVE-2025-3473 DESCRIPTION: IBM Security Guardium could allow a local privileged user to escalate their privileges to root due to insecure inherited permissions created by the program...