147 matches found
PT-2025-45085
Name of the Vulnerable Software and Affected Versions Roboticsware products affected versions not specified Description Multiple Roboticsware products register Windows services with unquoted file paths. A user with write permission to the system drive’s root directory may execute arbitrary code...
Multiple Roboticsware products register Windows services with unquoted file paths
Overview Multiple Roboticsware products provided by Roboticsware PTE. LTD. contain the following vulnerability. Unquoted search path or element CWE-428 - CVE-2025-64151 Kazuma Matsumoto of GMO Cybersecurity by IERAE, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the develope...
CVE-2025-58720
Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally...
EUVD-2021-13857
Malware in sbrugna...
EUVD-2008-2395
Malware in sbrugna...
EUVD-2007-3028
Malware in sbrugna...
EUVD-2020-29127
Malware in sbrugna...
EUVD-2025-20584
Malicious code in bioql PyPI...
EUVD-2023-40827
Malicious code in bioql PyPI...
EUVD-2025-19879
Malicious code in bioql PyPI...
EUVD-2024-27960
Malicious code in bioql PyPI...
EUVD-2025-1603
Malicious code in bioql PyPI...
EUVD-2024-43759
Malicious code in bioql PyPI...
EUVD-2024-43757
Malicious code in bioql PyPI...
CVE-2025-9818
A vulnerability CWE-428 has been identified in the Uninterruptible Power Supply UPS management application provided by OMRON SOCIAL SOLUTIONS Co., Ltd., where the executable file paths of Windows services are not enclosed in quotation marks. If the installation folder path of this product contain...
Detecting and Visualizing Lateral Movement Attacks with Trellix XDR
Detecting and Visualizing Lateral Movement Attacks with Trellix Helix Connect By Maulik Maheta and Adithya Chandra · July 17, 2025 Executive summary This blog marks the third installment in our series on detecting and visualizing lateral movement attacks with Trellix Helix Connect. A lateral...
CVE-2025-48823
Cryptographic issues in Windows Cryptographic Services allows an unauthorized attacker to disclose information over a network...
Microsoft Patch Tuesday for July 2025 — Snort rules and prominent vulnerabilities
Microsoft has released its monthly security update for July 2025, which includes 132 vulnerabilities affecting a range of products, including 14 that Microsoft marked as "critical." In this month's release, Microsoft observed none of the included vulnerabilities being actively exploited in the...
CVE-2025-48823
CVE-2025-48823: Windows Cryptographic Services vulnerability allowing an unauthenticated network attacker to disclose information. Connected data lists CVSS v3.1 base score 5.9 (Medium) with Confidentiality Impact high and no listed impact on integrity/availability. The only explicit detail in so...
CVE-2025-43713
ASNA Assist and ASNA Registrar before 2025-03-31 allow deserialization attacks against .NET remoting. These are Windows system services that support license key management and deprecated Windows network authentication. The services are implemented with .NET remoting and can be exploited via...