CVE-2025-36066

IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadi...

CVE-2025-36460

Multiple out-of-bounds read and write vulnerabilities exist in the ControlVault WBDI Driver Broadcom Storage Adapter functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. A specially crafted WinBioControlUnit call can lead to memory corruption. An...

Rockwell Automation 1715-AENTR EtherNet/IP Adapter 安全漏洞

The Rockwell Automation 1715-AENTR EtherNet/IP Adapter is a redundant Ethernet adapter module from Rockwell Automation. A denial of service vulnerability exists in the Rockwell Automation 1715-AENTR EtherNet/IP Adapter, which stems from improper handling of specially crafted payloads by CIP...

EUVD-2017-0349

Malware in sbrugna...

The vulnerability of the Apache Pulsar IO Kafka Connector and the software Apache Pulsar IO Kafka Connect Adaptor lies in the insufficient protection of registration data, allowing attackers to disclose sensitive information.

The vulnerability of the Apache Pulsar IO Kafka Connector and the Apache Pulsar IO Kafka Connect Adapter software is related to insufficient protection of registration data. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

CVE-2025-32020 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in crud-query-parser

The crud-query-parser library parses query parameters from HTTP requests and converts them to database queries. Improper neutralization of the order/sort parameter in the TypeORM adapter, which allows SQL injection. You are impacted by this vulnerability if you are using the TypeORM adapter,...

CVE-2024-24786 affecting package prometheus-adapter for versions less than 0.12.0-1

CVE-2024-24786 affecting package prometheus-adapter for versions less than 0.12.0-1. An upgraded version of the package is available that resolves this issue...

The vulnerability of the microprogrammed wireless network adapter software of Lenovo’s Quectel EM05-CE laptops, related to the lack of measures to neutralize special elements, allows a perpetrator to execute arbitrary commands.

The vulnerability of the microprogrammed wireless network adapter Quectel EM05-CE for Lenovo laptops is related to the lack of measures taken to neutralize special elements used in the operating system. Exploiting this vulnerability allows an attacker to execute arbitrary commands by sending...

The vulnerability of the IFC Adapter component of Siemens NX software for product design, development, and manufacturing allows a perpetrator to execute arbitrary code.

The vulnerability of the IFC Adapter component of Siemens NX software for product design, development, and manufacturing since version 1980 is related to the use of memory after it is freed during IFC file syntax analysis. Exploiting this vulnerability could allow an attacker to execute arbitrary...

SQL Injection

Overview Affected versions of this package are vulnerable to SQL Injection due to the sql.gsub function in lib/arjdbc/jdbc/adapter.rb not properly sanitizing user-supplied input beforeusing it in SQL queries. This may allow a remote attacker to inject or manipulate SQL queries in the back-end...

The vulnerability of Intel Ethernet E810 series network adapter drivers allows a hacker to cause a service failure.

The vulnerability of Intel Ethernet E810 series network adapter drivers is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to cause service failures...

CVE-2018-12041

An issue was discovered on the MediaTek AWUS036NH wireless USB adapter through 5.1.25.0. Attackers can remotely deny service by sending specially constructed 802.11 frames...