8 matches found
PT-2026-33493
Name of the Vulnerable Software and Affected Versions Anviz CX2 Lite affected versions not specified Anviz CX7 affected versions not specified Description Anviz access control devices allow unauthenticated firmware uploads. This flaw enables attackers to upload crafted archives, which are accepte...
EUVD-2025-31625
Malicious code in bioql PyPI...
CVE-2025-34215
Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 22.0.1026 and Application prior to version 20.0.2702 only VA deployments expose an unauthenticated firmware-upload flow: a public page returns a signed token usable at va-api/v1/update, and every Docker image contains the...
CVE-2025-34215 Vasion Print (formerly PrinterLogic) Unauthenticated Firmware Update Endpoint RCE
Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 22.0.1026 and Application prior to version 20.0.2702 only VA deployments expose an unauthenticated firmware-upload flow: a public page returns a signed token usable at va-api/v1/update, and every Docker image contains the...
PT-2025-39882
Name of the Vulnerable Software and Affected Versions Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 22.0.1026 Vasion Print formerly PrinterLogic Application versions prior to 20.0.2702 Description The Vasion Print Virtual Appliance Host and Application deployments ar...
Vasion Print Virtual Appliance Host 安全漏洞
Vasion Print Virtual Appliance Host is a print management software from Vasion USA. A security vulnerability exists in Vasion Print Virtual Appliance Host versions prior to 22.0.1026 that stems from an unauthenticated firmware upload process and hard-coded credentials, which could lead to remote...
Western Digital Arkeia Appliance 10.0.10 - Multiple Vulnerabilities
Exploit for php platform in category web applications Arkeia Appliance v10.0.10 is prone to 2 security vulnerabilties: 1 Unauthenticated firmware upload There are no restrictions when a POST request is send to http:///scripts/upload.php thus allowing any unauthenticated client to upload any data ...
Western Digital Arkeia Appliance 10010 Upload / LFI
Exploit Title: Western Digital Arkeia Appliance v10.0.10 Date: Sep 17 2013 Exploit Author: xistence Vendor Homepage: www.arkeia.com Tested on: Virtual Appliance - ESXi 5.1 Affected Version : v10.0.10 and lower Link:...