CVE-2026-7832

A security flaw has been discovered in IObit Advanced SystemCare 19. This affects an unknown part of the file ASC.exe of the component Service. The manipulation results in symlink following. Attacking locally is a requirement. This attack is characterized by high complexity. It is indicated that...

CVE-2026-7832 IObit Advanced SystemCare Service ASC.exe symlink

A security flaw has been discovered in IObit Advanced SystemCare 19. This affects an unknown part of the file ASC.exe of the component Service. The manipulation results in symlink following. Attacking locally is a requirement. This attack is characterized by high complexity. It is indicated that...

CVE-2026-7832

The CVE describes a symlink following flaw in IObit Advanced SystemCare 19, affecting ASC.exe (Service component). The vulnerability concerns an unknown part of ASC.exe with manipulation leading to symlink following, requiring local access. Exploit maturity is reported as proof-of-concept; impact...

PT-2026-37038

Name of the Vulnerable Software and Affected Versions IObit Advanced SystemCare 19 Description A security flaw in the Service component's "ASC.exe" file allows for symlink following. A symbolic link symlink is a type of file that points to another file or directory. This issue requires local acce...

Improper Resource Shutdown or Release

Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release via the DecodeFromBytes function in the SRv6 L3 Service component. An attacker can cause a service disruption by sending specially crafted data to this function remotely. Remediation Upgrade...

CVE-2026-4962

A security flaw has been discovered in UltraVNC up to 1.6.4.0. Affected by this issue is some unknown functionality in the library version.dll of the component Service. The manipulation results in uncontrolled search path. The attack needs to be approached locally. This attack is characterized by...

EUVD-2026-16725

A security flaw has been discovered in UltraVNC up to 1.6.4.0. Affected by this issue is some unknown functionality in the library version.dll of the component Service. The manipulation results in uncontrolled search path. The attack needs to be approached locally. This attack is characterized by...

CVE-2026-4962 UltraVNC Service version.dll uncontrolled search path

A security flaw has been discovered in UltraVNC up to 1.6.4.0. Affected by this issue is some unknown functionality in the library version.dll of the component Service. The manipulation results in uncontrolled search path. The attack needs to be approached locally. This attack is characterized by...

CVE-2026-4962

A security flaw has been discovered in UltraVNC up to 1.6.4.0. Affected by this issue is some unknown functionality in the library version.dll of the component Service. The manipulation results in uncontrolled search path. The attack needs to be approached locally. This attack is characterized by...

PT-2026-28688

A security flaw has been discovered in UltraVNC up to 1.6.4.0. Affected by this issue is some unknown functionality in the library version.dll of the component Service. The manipulation results in uncontrolled search path. The attack needs to be approached locally. This attack is characterized by...

CVE-2025-57795

Explorance Blue versions prior to 8.14.13 contain an authenticated remote file download vulnerability in a web service component. In default configurations, this flaw can be leveraged to achieve remote code execution...

CVE-2025-57795

CVE-2025-57795 affects Explorance Blue, versions prior to 8.14.13. The vulnerability exists in a web service component and allows an authenticated remote file download, which in default configurations can lead to remote code execution. Affected software is Explorance Blue up to 8.14.12 inclusive;...

EUVD-2025-206462

Explorance Blue versions prior to 8.14.13 contain an authenticated remote file download vulnerability in a web service component. In default configurations, this flaw can be leveraged to achieve remote code execution...

ITeCProteccioAppServer 代码问题漏洞

ITeCProteccioAppServer is a backend service component from ITeC. A code issue vulnerability exists in ITeCProteccioAppServer that stems from the service path not being quoted, which could allow a local attacker to execute code and elevate system privileges...

CVE-2025-15254 Tenda W6-S ATE Service ate TendaAte os command injection

A vulnerability was found in Tenda W6-S 1.0.0.4510. This affects the function TendaAte of the file /goform/ate of the component ATE Service. Performing a manipulation results in os command injection. The attack may be initiated remotely. The exploit has been made public and could be used...

EUVD-2025-201239

Incorrect access control in the component ApiOrderService.java of platform v1.0.0 allows attackers to access sensitive information via a crafted request...

EUVD-2025-180537

A vulnerability has been found in Radarr 5.28.0.10274. The affected element is an unknown function of the file C:\ProgramData\Radarr\bin\Radarr.Console.exe of the component Service. Such manipulation leads to incorrect default permissions. The attack can only be performed from a local environment...

CVE-2025-13131

A vulnerability was found in Sonarr 4.0.15.2940. The impacted element is an unknown function of the file C:\ProgramData\Sonarr\bin\Sonarr.Console.exe of the component Service. Performing manipulation results in incorrect default permissions. The attack is only possible with local access. The vend...

Apeman ID71 访问控制错误漏洞

The Apeman ID71 is a webcam from Apeman. The Apeman ID71 suffers from an Access Control Error vulnerability that stems from a lack of authentication in the ONVIF Service component in the file /onvif/deviceservice, which could lead to a remote attack...

EUVD-2009-0903

Malware in sbrugna...