CVE-2022-42406

This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2019-18341

A vulnerability has been identified in Control Center Server CCS All versions V1.5.0. The SFTP service default port 22/tcp of the Control Center Server CCS contains an authentication bypass vulnerability. A remote attacker with network access to the CCS server could exploit this vulnerability to...

EUVD-2017-6728

Malware in sbrugna...

EUVD-2017-2540

Malware in sbrugna...

EUVD-2024-26859

Malicious code in bioql PyPI...

EUVD-2024-44541

Malicious code in bioql PyPI...

EUVD-2024-45078

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-22067

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: CORBA. Supported versions that are affected are Orac...

CVE-2025-46118

An issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139 and in Ruckus ZoneDirector prior to 10.5.1.0.279, where hard-coded credentials for the ftpuser account provide FTP access to the controller, enabling a remote attacker to upload or retrieve arbitrary...

Advisory ROSA-SA-2025-2880

Software: libjpeg-turbo 1.5.3 OS: ROSA Virtualization 2.1 packageevrstring: libjpeg-turbo-1.5.3-14.rv3 CVE-ID: CVE-2020-13790 BDU-ID: 2021-01352 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the startinputppm function from rdppm.c of the libjpeg-turbo image manipulation library is related to a...

CVE-2021-20756

Viewing restrictions bypass vulnerability in Address of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to obtain the data of Address without the viewing privilege...

CVE-2013-2351

Unspecified vulnerability in HP Network Node Manager i NNMi 9.00, 9.1x, and 9.2x allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors...

CVE-2012-2455

Advanced Productivity Software DTE Axiom before 12.3.3 does not validate the registration ID, which allows remote attackers to bypass authentication and read or modify data about users, customers, and projects via unspecified vectors...

PT-2025-17231 · Twonav · Twonav

Name of the Vulnerable Software and Affected Versions: twonav version 2.1.18-20241105 Description: The issue allows a remote attacker to obtain sensitive information via the link identification function. Recommendations: For twonav version 2.1.18-20241105, at the moment, there is no information...

CVE-2024-6396

A vulnerability in the backuprun function in aimhubio/aim version 3.19.3 allows remote attackers to overwrite any file on the host server and exfiltrate arbitrary data. The vulnerability arises due to improper handling of the runhash and repo.path parameters, which can be manipulated to create an...

PT-2024-21244 · Dell · Dell Insightiq

Name of the Vulnerable Software and Affected Versions: Dell InsightIQ version 5.0 Description: The issue is related to improper access control, allowing a remote low privileged attacker to potentially exploit it and gain unauthorized access to monitoring data. Recommendations: For Dell InsightIQ...

CVE-2023-27388

Improper authentication vulnerability in T&D Corporation and ESPEC MIC CORP. data logger products allows a remote unauthenticated attacker to login to the product as a registered user. Affected products and versions are as follows: T&D Corporation data logger products TR-71W/72W all firmware...

CVE-2022-40187

Foresight GC3 Launch Monitor 1.3.15.68 ships with a Target Communication Framework TCF service enabled. This service listens on a TCP port on all interfaces and allows for process debugging, file system modification, and terminal access as the root user. In conjunction with a hosted wireless acce...

CVE-2020-2585

Vulnerability in the Java SE product of Oracle Java SE component: JavaFX. The supported version that is affected is Java SE: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

Cisco SD-WAN Solution Certificate Validation Vulnerability

Cisco vEdge 100 Series Routers and so on are the products of the United States Cisco Cisco company. cisco vEdge 100 Series Routers is a 100 series router products. vManage Network Management System is a set of network management system. SD- WAN Solution is a set of network expansion solutions...