CVE-2026-9039 Initialization of a resource with an insecure default in XCharge C6

A configuration weakness in the device’s remote management service allows an authenticated session to be established over a communication channel intended solely for vehicle-charger signaling. The service is accessible on interfaces exposed through the charging connector, and it accepts a default...

Belden Hirschmann HiEOS LRS11 安全漏洞

Belden Hirschmann HiEOS LRS11 is an industrial Ethernet switch operating system platform developed by the American company Belden. Versions of Belden Hirschmann HiEOS LRS11 prior to 01.1.00 contained security vulnerabilities. These vulnerabilities stemmed from improper handling of authentication ...

Tenda W15E 安全漏洞

The Tenda W15E is a wireless router produced by the Chinese company Tenda. The Tenda W15E V02.03.01.26cn version contains a security vulnerability. This vulnerability stems from improper access control, which may allow unverified attackers to download configuration files containing plaintext...

CVE-2026-20082

A vulnerability in the handling of the embryonic connection limits in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to cause incoming TCP SYN packets to be dropped incorrectly. This vulnerability is due to improper handling of new,...

CVE-2026-20082

The CVE-2026-20082 entry describes a vulnerability in Cisco Secure Firewall ASA software related to embryonic TCP connection handling under SYN flood conditions. An unauthenticated remote attacker can send crafted traffic to the device, causing incorrect dropping of incoming TCP SYNs destined to ...

EUVD-2016-8307

Malware in sbrugna...

CVE-2021-40684

Talend ESB Runtime in all versions from 5.1 to 7.3.1-R2021-09, 7.2.1-R2021-09, 7.1.1-R2021-09, has an unauthenticated Jolokia HTTP endpoint which allows remote access to the JMX of the runtime container, which would allow an attacker the ability to read or modify the container or software running...

CVE-2009-0695

hagent.exe in Wyse Device Manager WDM 4.7.x does not require authentication for commands, which allows remote attackers to obtain management access via a crafted query, as demonstrated by a V52 query that triggers a power-off action...

Authentication flaw

Unspecified vulnerability in Cisco Adaptive Security Appliance ASA and PIX 7.2 before 7.228, when using Layer 2 Tunneling Protocol L2TP or Remote Management Access, allows remote attackers to bypass LDAP authentication and gain privileges via unknown vectors...

CVE-2007-2462

CVE-2007-2462 affects Cisco ASA and PIX firewalls (ASA/PIX) running 7.2 prior to 7.2(2)8. The vulnerability allows remote attackers to bypass LDAP authentication and gain privileges when using Layer 2 Tunneling Protocol (L2TP) or Remote Management Access, via unspecified vectors. Connected source...

PT-2007-3786 · Cisco · Cisco Asa +1

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA and PIX version 7.2 before 7.228 Description: The issue concerns an unspecified vulnerability that allows remote attackers to bypass LDAP authentication and gain privileges when using Layer 2 Tunneling...

Linksys router vulnerability

SUMMARY: Linksys products running affected firmware versions are susceptible to a bug that allows unauthenticated access to the management interface. This bug affects both local and remote management if enabled. AFFECTED PRODUCTS per Linksys support: BEFSR41, BEFSR11, BEFSRU31: firmware versions...