PT-2026-45556

FlexRIC v2.0.0 allows a single SCTP connection to bind multiple xapp ids by sending multiple E42 SETUP REQUESTs. On disconnect, only the first registered xapp id's resources are cleaned up; subsequent xapp ids and their subscriptions remain as stale entries. A remote attacker can exploit this to...

Juniper Junos OS Multiple Vulnerabilities (JSA82974)

The version of Junos OS installed on the remote host is affected by multiple vulnerabilities as referenced in the JSA82974 advisory. - Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applications on the Windows 64...

EUVD-2021-17613

Malware in sbrugna...

EUVD-2020-30720

Malware in sbrugna...

EUVD-2020-30757

Malware in sbrugna...

EUVD-2017-5418

Malware in sbrugna...

EUVD-2023-32655

Malicious code in bioql PyPI...

EUVD-2021-31357

Malicious code in bioql PyPI...

EUVD-2023-54651

Malicious code in bioql PyPI...

NewStart CGSL MAIN 7.02 : tongsuo Vulnerability (NS-SA-2025-0197)

The remote NewStart CGSL host, running version MAIN 7.02, has tongsuo packages installed that are affected by a vulnerability: - Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applications on the Windows 64 platfo...

CVE-2023-29051

User-defined OXMF templates could be used to access a limited part of the internal OX App Suite Java API. The existing switch to disable the feature by default was not effective in this case. Unauthorized users could discover and modify application state, including objects related to other users...

CVE-2021-30696

An attacker in a privileged network position may be able to misrepresent application state. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A logic issue was addressed with improved state management...

CVE-2020-9941

This issue was addressed with improved checks. This issue is fixed in macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave. A remote attacker may be able to unexpectedly alter application state...

CVE-2020-9978

This issue was addressed with improved setting propagation. This issue is fixed in macOS Big Sur 11.0.1, tvOS 14.0, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, watchOS 7.0, iOS 14.0 and iPadOS 14.0. An attacker in a privileged network position may be ab...

CVE-2025-48018

An authenticated user can modify application state data...

CVE-2025-48018

An authenticated user can modify application state data...

CVE-2025-48018 Deserialization of Untrusted Data

An authenticated user can modify application state data...

CVE-2025-48018

CVE-2025-48018 affects Schweitzer Engineering Laboratories SEL Series software/firmware. The vulnerability enables an authenticated user to modify application state data, with CVSS 3.1 base metrics: LOCAL access, HIGH impact to confidentiality, integrity, and availability, and privileges required...

CVE-2025-48018 Deserialization of Untrusted Data

An authenticated user can modify application state data...

PT-2025-22154 · Schweitzer Engineering Laboratories · Sel-5030 Acselerator Quickset

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An authenticated user can modify application state data. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...