Don't Look Up: There Are Sensitive Internal Links in the Clear on GEO Satellites

Geosynchronous GEO satellite links provide IP backhaul to remote critical infrastructure for utilities, telecom, government, military, and commercial users. To date, academic studies of GEO infrastructure have focused on a handful of satellites and specific use cases. The authors of this paper...

EUVD-2022-41833

Malicious code in bioql PyPI...

EUVD-2025-23156

Malicious code in bioql PyPI...

PT-2025-31390

Name of the Vulnerable Software and Affected Versions GLPI versions 0.78 through 10.0.18 Description GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 0.78 through 10.0.18, a connected user can...

Improperly tracking asset reserve for WETH

Lines of code Vulnerability details Impact Function RdpxV2Corewithdraw lets delegate owners withdraw their unused WETH. However, withdrawn amount is not deducted from totalWethDelegated, which causes WETH asset reserve tracked improperly. The impacts could be: 1. Function sync gets reverted when...

Wyse Management Suite Security Bypass Vulnerability

Wyse Management Suite is a scalable solution for managing and optimizing Wyse endpoints from Dell, USA. The product includes centralized management of Wyse endpoints, asset tracking and automated device discovery. A security bypass vulnerability exists in prior versions of Wyse Management Suite...

Wyse Management Suite Information Disclosure Vulnerability

Wyse Management Suite is a scalable solution for managing and optimizing Wyse endpoints from Dell, USA. The product includes centralized management of Wyse endpoints, asset tracking and automated device discovery. An information disclosure vulnerability exists in versions prior to Wyse Management...

Wyse Management Suite has an unspecified vulnerability (CNVD-2023-09782)

Wyse Management Suite is a scalable solution for managing and optimizing Wyse endpoints from Dell, Inc. The product includes centralized Wyse endpoint management, asset tracking, and automated device discovery.A security vulnerability exists in Wyse Management Suite version 3.8. An attacker could...

ConnectWise Automate 安全漏洞

ConnectWise Automate is a cloud-based, local IT automation solution from ConnectWise USA. The product supports content management, file sharing, IT asset tracking and management, and more. A security vulnerability exists in ConnectWise Automate version 2022.1 that stems from...

Wyse Management Suite has an unspecified vulnerability (CNVD-2022-56660)

Wyse Management Suite is a scalable solution for managing and optimizing Wyse endpoints from Dell, Inc. The product includes centralized management of Wyse endpoints, asset tracking and automated device discovery.Wyse Management Suite 3.6.1 and prior versions contain a security vulnerability that...

Wyse Management Suite has an unspecified vulnerability (CNVD-2022-56656)

Wyse Management Suite is a scalable solution for managing and optimizing Wyse endpoints from Dell, Inc. The product includes centralized management of Wyse endpoints, asset tracking and automated device discovery.A security vulnerability exists in Wyse Management Suite 3.6.1 and prior versions,...

Malicious Package

Overview ably-asset-tracking-common is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if thi...

Wyse Device Agent Licensing Issue Vulnerability

DELL Wyse Management Suite is a scalable solution for managing and optimizing Wyse endpoints from Dell USA. The product includes centralized Wyse endpoint management, asset tracking, and automated device discovery.An authorization issue vulnerability exists in Wyse due to an error in processing...

Wyse Management Suite Deserialization Vulnerability

Wyse Management Suite is a scalable solution for managing and optimizing Wyse endpoints from Dell USA. The product includes centralized Wyse endpoint management, asset tracking, and automated device discovery.A deserialization vulnerability exists in Wyse Management Suite versions 3.3.1 and...