Hitachi Energy AFS, AFR and AFF Series

RISK EVALUATION Successful exploitation of this vulnerability could compromise the integrity of the product data and disrupt its availability. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize...

EUVD-2025-138550

Malicious code in polymer-afavof-aff npm...

Malicious code in poglymer-ogmih-aff (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58f55eb5c0144224cb939e741739d78f34644210a136487bf3d9c1ca124f8131 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-138859

Malicious code in poglymer-ogmih-aff npm...

EUVD-2025-138539

Malicious code in polymer-aff-radaodd npm...

siddheshtea (=1.1.6) potentially affected by unknown CVE via nudela-aff-gafai (=1.0.0)

nudela-aff-gafai NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on nudela-aff-gafai and may be impacted: - siddheshtea =1.1.6 Source cves: unknown CVE Source advisory: OSV:MAL-2025-163725...

EUVD-2018-19732

Malware in sbrugna...

EUVD-2019-15072

Malware in sbrugna...

CVE-2019-5497

NetApp AFF A700s Baseboard Management Controller BMC firmware versions 1.22 and higher were shipped with a default account enabled that could allow unauthorized arbitrary command execution...

PT-2024-22727 · Wpvibes · Wpvibes Elementor Addon Elements

Name of the Vulnerable Software and Affected Versions: WPVibes Elementor Addon Elements versions 1.12.10 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an...

USN-6518-1 afflib vulnerability

Luis Rocha discovered that AFFLIB incorrectly handled certain input files. If a user or automated system were tricked into processing a specially crafted AFF image file, a remote attacker could possibly use this issue to cause a denial of service via application crash. CVE-2018-8050...

NetApp: FAS 8300/8700 & AFF A400 BMC Security Advisory - US

Lenovo Security Advisory: LEN-30687 Potential Impact: Unauthorized arbitrary command execution Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2019-17274 Summary Description: NetApp reported a vulnerability in FAS 8300/8700 and AFF A400 Baseboard Management Controller BMC firmwa...

CVE-2019-17274

NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller BMC firmware versions 13.x prior to 13.1P1 were shipped with a default account enabled that could allow unauthorized arbitrary command execution via local access...

Command injection

NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller BMC firmware versions 13.x prior to 13.1P1 were shipped with a default account enabled that could allow unauthorized arbitrary command execution via local access...

CVE-2019-17274

The CVE-2019-17274 entry affects NetApp FAS 8300/8700 and AFF A400 BMC firmware versions 13.x prior to 13.1P1, where a default account enabled on these devices could allow unauthorized arbitrary command execution via local access. Root cause: default credential left enabled in the BMC firmware. I...

PT-2020-19361 · Unknown +1 · Libiec61850 +1

Name of the Vulnerable Software and Affected Versions: libIEC61850 versions prior to 1.4.1 Description: The issue arises from a heap-based buffer overflow in the MmsValue decodeMmsData function when parsing the MMS BIT STRING data type. This occurs in the mms/iso mms/server/mms access result.c fi...

CVE-2019-5497

NetApp AFF A700s Baseboard Management Controller BMC firmware versions 1.22 and higher were shipped with a default account enabled that could allow unauthorized arbitrary command execution...

CVE-2019-5497

NetApp AFF A700s Baseboard Management Controller BMC firmware versions 1.22 and higher were shipped with a default account enabled that could allow unauthorized arbitrary command execution...

CVE-2019-5497

Affected product : NetApp AFF A700s Baseboard Management Controller (BMC) firmware 1.22 and later. Root cause : default account enabled on shipment allowing unauthorized arbitrary command execution. Impact : CVSS3 shows 9.8 (CRITICAL) with network attack vector and no user interaction required; p...

OSFClone - Open Source Utility To Create And Clone Forensic Disk Images

OSFClone is a free, self-booting solution which enables you to create or clone exact raw disk images quickly and independent of the installed operating system. In addition to raw disk images, OSFClone also supports imaging drives to the open Advance Forensics Format AFF , AFF is an open and...