Lucene search
K

33 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:49 p.m.9 views

CVE-2026-41085

Thermo Fisher Scientific Torrent Suite Dx through 5.14.2 has a privilege escalation vulnerability that may allow an authenticated user with limited access privileges to gain unauthorized administrator-level privileges through exploitation of specific system interfaces...

8.8CVSS5.5AI score0.0026EPSS
Exploits0References1
NVD
NVD
added 2026/05/18 5:16 p.m.33 views

CVE-2026-41085

Thermo Fisher Scientific Torrent Suite Dx through 5.14.2 has a privilege escalation vulnerability that may allow an authenticated user with limited access privileges to gain unauthorized administrator-level privileges through exploitation of specific system interfaces...

8.8CVSS0.0026EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/18 12:0 a.m.11 views

Thermo Fisher Scientific Torrent Suite Dx 安全漏洞

Thermo Fisher Scientific Torrent Suite Dx is a clinical gene sequencing data analysis platform provided by Thermo Fisher Scientific. Versions of Thermo Fisher Scientific Torrent Suite Dx prior to 5.14.2 contained security vulnerabilities. These vulnerabilities were due to issues with privilege...

8.8CVSS5.8AI score0.0026EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/18 12:0 a.m.47 views

CVE-2026-41085

Thermo Fisher Scientific Torrent Suite Dx through 5.14.2 has a privilege escalation vulnerability that may allow an authenticated user with limited access privileges to gain unauthorized administrator-level privileges through exploitation of specific system interfaces...

0.0026EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/18 12:0 a.m.15 views

PT-2026-41682

Thermo Fisher Scientific Torrent Suite Dx through 5.14.2 has a privilege escalation vulnerability that may allow an authenticated user with limited access privileges to gain unauthorized administrator-level privileges through exploitation of specific system interfaces...

8.8CVSS5.8AI score0.0026EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/12/05 12:9 a.m.12 views

CVE-2025-54305

An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. One of the middlewares included in this application, LocalhostAuthMiddleware, authenticates users as ionadmin if the REMOTEADDR property in request.META is set to 127.0.0.1, to 127.0.1.1, or to ::1. Any user wit...

7.8CVSS6.7AI score0.00139EPSS
Exploits0References1
NVD
NVD
added 2025/12/04 3:15 p.m.4 views

CVE-2025-54306

An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. A remote code execution vulnerability exists in the network configuration functionality, stemming from insufficient input validation when processing network configuration parameters through administrative...

7.2CVSS0.00708EPSS
Exploits0References3
NVD
NVD
added 2025/12/04 3:15 p.m.5 views

CVE-2025-54305

An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. One of the middlewares included in this application, LocalhostAuthMiddleware, authenticates users as ionadmin if the REMOTEADDR property in request.META is set to 127.0.0.1, to 127.0.1.1, or to ::1. Any user wit...

7.8CVSS0.00139EPSS
Exploits0References3
NVD
NVD
added 2025/12/04 3:15 p.m.11 views

CVE-2025-54303

The Thermo Fisher Torrent Suite Django application 5.18.1 has weak default credentials, which are stored as fixtures for the Django ORM API. The ionadmin user account can be used to authenticate to default deployments with the password ionadmin. The user guide recommends changing default...

9.8CVSS0.00338EPSS
Exploits0References3
OSV
OSV
added 2025/12/04 3:15 p.m.5 views

CVE-2025-54305

An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. One of the middlewares included in this application, LocalhostAuthMiddleware, authenticates users as ionadmin if the REMOTEADDR property in request.META is set to 127.0.0.1, to 127.0.1.1, or to ::1. Any user wit...

7.8CVSS5.8AI score0.00139EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/04 12:0 a.m.3 views

CVE-2025-53963

An issue was discovered on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. They run an SSH server accessible over the default port 22. The root account has a weak default password of ionadmin, and a password change policy for the root account is not enforced. Thus, an attacker with netwo...

7.5AI score0.00403EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/04 12:0 a.m.5 views

EUVD-2025-201180

The Thermo Fisher Torrent Suite Django application 5.18.1 has weak default credentials, which are stored as fixtures for the Django ORM API. The ionadmin user account can be used to authenticate to default deployments with the password ionadmin. The user guide recommends changing default...

6.4AI score0.00338EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.5 views

Thermo Fisher Torrent Suite Django application 安全漏洞

Thermo Fisher Torrent Suite Django application is a core software component of Thermo Fisher USA. A security vulnerability exists in Thermo Fisher Torrent Suite Django application version 5.18.1, which originates in the LocalhostAuthMiddleware middleware that performs automated authentication to ...

7.8CVSS6.6AI score0.00139EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.6 views

Thermo Fisher Torrent Suite Django application 安全漏洞

Thermo Fisher Torrent Suite Django application is a core software component of Thermo Fisher USA. A security vulnerability exists in Thermo Fisher Torrent Suite Django application version 5.18.1, which stems from improper path cleanup in the file upload feature and could lead to remote code...

8.8CVSS7.9AI score0.00664EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.5 views

Thermo Fisher Torrent Suite Django application 安全漏洞

The Thermo Fisher Torrent Suite Django application is a core software component of Thermo Fisher USA. A security vulnerability exists in Thermo Fisher Torrent Suite Django application version 5.18.1, which stems from the use of weak default credentials and failure to enforce a password change...

9.8CVSS7.1AI score0.00338EPSS
Exploits0References4
CVE
CVE
added 2025/12/04 12:0 a.m.21 views

CVE-2025-54307

CVE-2025-54307 affects Thermo Fisher Torrent Suite Django app 5.18.1. The vulnerable paths are /configure/plugins/plugin/upload/zip/ and /configure/newupdates/offline/bundle/upload/, where the plupload_file_upload handler constructs the destination path from an unsafe name parameter or uploaded f...

8.8CVSS7.9AI score0.00664EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-52865

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00163EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-27832

Malicious code in bioql PyPI...

8.5CVSS6.6AI score0.002EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/20 12:19 a.m.10 views

CVE-2025-32992

Thermo Fisher Scientific ePort through 3.0.0 has Incorrect Access Control...

8.5CVSS7.3AI score0.002EPSS
Exploits0References1
NVD
NVD
added 2025/08/18 8:15 p.m.5 views

CVE-2025-32992

Thermo Fisher Scientific ePort through 3.0.0 has Incorrect Access Control...

8.5CVSS0.002EPSS
Exploits0References2
Rows per page
Query Builder