CVE-2026-9789 NitroSense V3: Security Vulnerability Information

A Local Privilege Escalation LPE vulnerability affects Acer NitroSense software versions prior to 3.01.3052. The vulnerability stems from the the PSAdminAgent service, which creates a Named Pipe with a weak Access Control List ACL. This allows any authenticated local user to connect and send...

EUVD-2026-9879

ZimaOS is a fork of CasaOS, an operating system for Zima devices and x86-64 systems with UEFI. In version 1.5.2-beta3, users are restricted from deleting internal system files or folders through the application interface. However, when interacting directly with the API, these restrictions can be...

CVE-2022-31466

Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...

EUVD-2025-16181

Malicious code in bioql PyPI...

EUVD-2021-3302

Malicious code in bioql PyPI...

EUVD-2022-41621

Malicious code in bioql PyPI...

CVE-2025-30171

System File Deletion vulnerabilities in ASPECT provide attackers access to delete system files if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

CVE-2023-27501

SAP NetWeaver AS for ABAP and ABAP Platform - versions 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, 791, allows an attacker to exploit insufficient validation of path information provided by users, thus exploiting a directory traversal flaw in an available service to delete...

CVE-2025-30171 Admin Authorized System File Deletion

System File Deletion vulnerabilities in ASPECT provide attackers access to delete system files if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

CVE-2025-30171

This CVE affects ABB ASPECT-Enterprise (through 3.08.03), ABB NEXUS Series (through 3.08.03), and ABB MATRIX Series (through 3.08.03). The vulnerability is a System File Deletion issue where, if session administrator credentials are compromised, an attacker can delete system files. CVSS metrics s...

CVE-2025-30171 Admin Authorized System File Deletion

System File Deletion vulnerabilities in ASPECT provide attackers access to delete system files if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

CVE-2025-0926

Gee-netics, member of AXIS Camera Station Pro Bug Bounty Program, has found that it is possible for a non-admin user to remove system files causing a boot loop by redirecting a file deletion when recording video. Axis has released a patched version for the highlighted flaw. Please refer to the Ax...

CVE-2025-0926

Gee-netics, member of AXIS Camera Station Pro Bug Bounty Program, has found that it is possible for a non-admin user to remove system files causing a boot loop by redirecting a file deletion when recording video. Axis has released a patched version for the highlighted flaw. Please refer to the Ax...

CVE-2025-0926

CVE-2025-0926 affects AXIS Camera Station Pro. A non-admin user can remove system files, causing a boot loop by redirecting a file deletion during video recording. The issue is tied to Axis products and is mitigated by a patched Axis advisory; Axis has released a fixed version. Exploitation detai...

PT-2025-17599 · Axis · Axis Camera Station Pro

Name of the Vulnerable Software and Affected Versions: AXIS Camera Station Pro affected versions not specified Description: A non-admin user can remove system files, causing a boot loop, by redirecting a file deletion when recording video. Recommendations: At the moment, there is no information...

Veeam Backup & Replication 安全漏洞

Veeam Backup & Replication is a backup and replication software from Veeam USA. A security vulnerability exists in Veeam Backup & Replication 12.2.0.334 and previous versions 12.X. The vulnerability stems from an insufficient blacklist during deserialization, which allows for the deletion of any...

WatchGuard多款产品 安全漏洞

WatchGuard EPDR and others are products of WatchGuard USA.WatchGuard EPDR is an application.WatchGuard Panda AD360 is an advanced cybersecurity solution that integrates EPP, EDR and machine learning technologies.WatchGuard Panda Dome is an antivirus program. A security vulnerability exists in...

GHSA-6RQ9-53C3-F7VJ onnx allows Arbitrary File Overwrite in download_model_with_test_data

A vulnerability in the downloadmodelwithtestdata function of the onnx/onnx framework, versions before 1.16.2, allow for arbitrary file overwrite due to inadequate prevention of path traversal attacks in malicious tar files. This vulnerability enables attackers to overwrite any file on the system,...

CVE-2023-2915 Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerability

The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, Due to improper input validation, a path traversal vulnerability exists when the ThinManager software processes a certain function. If exploited, an unauthenticated remote threat actor can...

SAP NetWeaver AS 路径遍历漏洞

SAP NetWeaver AS is a SAP network application server from SAP. It not only provides web services, but is also the basic platform for SAP software. A path traversal vulnerability exists in SAP NetWeaver AS for ABAP and ABAP Platform, which could allow an attacker to exploit insufficient validation...