EUVD-2025-200130

Improper verification of source of a communication channel in SmartTouchCall prior to version 1.0.1.1 allows remote attackers to access sensitive information. User interaction is required for triggering this vulnerability...

CVE-2025-58488

Improper verification of source of a communication channel in SmartTouchCall prior to version 1.0.1.1 allows remote attackers to access sensitive information. User interaction is required for triggering this vulnerability...

PT-2025-48606

Name of the Vulnerable Software and Affected Versions SmartTouchCall versions prior to 1.0.1.1 Description A flaw exists in the verification process of communication channels within SmartTouchCall. This issue allows remote attackers to potentially access sensitive information. User interaction is...

UBUNTU-CVE-2025-31133

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

EUVD-2019-7042

Malware in sbrugna...

EUVD-2005-2146

Malware in sbrugna...

EUVD-2021-18938

Malware in sbrugna...

📄 Piciorgros TMO-100 Configuration Change

Piciorgros TMO-100 allows for an unauthorized configuration change via TFTP. This issue affects versions prior to 4.20. Classification -------------- - CWE-306: Missing Authentication for Critical Function - CWE-940: Improper Verification of Source of a Communication Channel - CWE-200: Exposure o...

CVE-2024-38886

An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform a Traffic Injection attack due to improper verification of the source of a communication channel...

CVE-2024-36506

An improper verification of source of a communication channel vulnerability CWE-940 in FortiClientEMS 7.4.0, 7.2.0 through 7.2.4, 7.0 all versions, 6.4 all versions may allow a remote attacker to bypass the trusted host feature via session connection...

CVE-2021-32077

Primary Source Verification in VerityStream MSOW Solutions before 3.1.1 allows an anonymous internet user to discover Social Security Number SSN values via a brute-force attack on a sometimes hidden search field, because the last four SSN digits are part of the supported combination of search...

Device Mode Transition Detected (High)

The state of the controller code changed, regardless of the state expected by the process. When not part of scheduled maintenance, forcing can be used to introduce hard-to-detect, long-lasting changes that are harmful to operations. This plugin only works with Tenable.ot. Please visit...

CVE-2025-43965

creationtimestamp| type| source ---|---|--- 2025-04-23 15:04:37+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13050 2025-04-23 17:19:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnipapz3qq2r 2025-04-23 18:39:46+00:00| seen| https://t.me/cvedetector/23592 2026-02-04...

GHSA-C9PR-Q8GX-3MGP

creationtimestamp| type| source ---|---|--- 2025-04-02 21:34:12+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10143 2025-04-02 22:06:50+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114270641178668879 2025-04-02 22:06:50+00:00| seen|...

CVE-2022-4800

Improper Verification of Source of a Communication Channel in GitHub repository usememos/memos prior to 0.9.1...

CVE-2024-43771

creationtimestamp| type| source ---|---|--- 2025-01-21 23:17:01+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgbydkbpco2t 2025-01-21 23:50:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lgc26iscxn2b 2025-01-22 18:02:33+00:00| seen|...

CVE-2024-36506

An improper verification of source of a communication channel vulnerability CWE-940 in FortiClientEMS 7.4.0, 7.2.0 through 7.2.4, 7.0 all versions, 6.4 all versions may allow a remote attacker to bypass the trusted host feature via session connection...

PT-2025-1234 · Unknown · Ipv6-In-Ipv4 Tunneling

Name of the Vulnerable Software and Affected Versions: IPv6-in-IPv4 tunneling RFC 4213 versions not specified Description: The issue is related to the IPv6-in-IPv4 tunneling protocol, which allows an attacker to spoof and route traffic via an exposed network interface. This can be exploited by a...

CVE-2024-56728

creationtimestamp| type| source ---|---|--- 2024-12-29 12:10:06+00:00| seen| https://infosec.exchange/users/cve/statuses/113736037584609678 2024-12-29 12:15:43+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3legyntwank2f 2025-08-14 10:00:00+00:00| seen|...

CVE-2024-49052

creationtimestamp| type| source ---|---|--- 2024-11-26 19:47:43+00:00| seen| https://infosec.exchange/users/cve/statuses/113550980708800465 2024-11-26 20:17:26+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113551097595837936 2025-02-06 02:44:20+00:00| seen|...