PT-2026-41398

Name of the Vulnerable Software and Affected Versions Budibase versions prior to 3.38.1 Description Budibase contains a route-level authorization misconfiguration where the endpoint "PUT /api/datasources/:datasourceId" is incorrectly assigned to the authorizedRoutes group with TABLE/READ...

CVE-2021-28488

Ericsson Network Manager ENM before 21.2 has incorrect access-control behavior that only affects the level of access available to persons who were already granted a highly privileged role. Users in the same AMOS authorization group can retrieve managed-network data that was not set to be accessib...

EUVD-2021-15165

Malware in sbrugna...

EUVD-2025-27209

Malicious code in bioql PyPI...

EUVD-2025-27200

Malicious code in bioql PyPI...

CVE-2025-42929

Due to missing input validation, an attacker with high privilege access to ABAP reports could delete the content of arbitrary database tables, if the tables are not protected by an authorization group. This leads to a high impact on integrity and availability of the database...

CVE-2025-42916

Due to missing input validation, an attacker with high privilege access to ABAP reports could delete the content of arbitrary database tables, if the tables are not protected by an authorization group. This leads to a high impact on integrity and availability of the database but no impact on...

CVE-2025-42929

CVE-2025-42929 describes a missing input validation vulnerability in SAP Landscape Transformation Replication Server (ABAP reports). The root cause is insufficient input validation in a component handling ABAP reports, allowing a high-privilege attacker to delete the content of arbitrary database...

CVE-2025-42929 Missing input validation vulnerability in SAP Landscape Transformation Replication Server

Due to missing input validation, an attacker with high privilege access to ABAP reports could delete the content of arbitrary database tables, if the tables are not protected by an authorization group. This leads to a high impact on integrity and availability of the database...

CVE-2025-42916

CVE-2025-42916 concerns a missing input validation in SAP S/4HANA/ABAP reports that could allow an attacker with high privileges to delete contents of arbitrary database tables not protected by an authorization group. The impact is high on integrity and availability with no confidentiality impact...

PT-2025-36558

Name of the Vulnerable Software and Affected Versions: SAP ABAP affected versions not specified Description: The issue involves a missing input validation in ABAP reports. An attacker with high privilege access could delete the content of arbitrary database tables not protected by an authorizatio...

CVE-2021-32570

In Ericsson Network Manager ENM releases before 21.2, users belonging to the same AMOS authorization group can retrieve the data from certain log files. All AMOS users are considered to be highly privileged users in ENM system and all must be previously defined and authorized by the Security...

Unable open PVS console: The specified authorization group does not exist

Unable open PVS console:The specified authorization group does not exist...

CVE-2021-32570

In Ericsson Network Manager ENM releases before 21.2, users belonging to the same AMOS authorization group can retrieve the data from certain log files. All AMOS users are considered to be highly privileged users in ENM system and all must be previously defined and authorized by the Security...

CVE-2021-32570

In Ericsson Network Manager ENM releases before 21.2, users belonging to the same AMOS authorization group can retrieve the data from certain log files. All AMOS users are considered to be highly privileged users in ENM system and all must be previously defined and authorized by the Security...

Ericsson Network Manager 日志信息泄露漏洞

Ericsson Network Manager is a network manager from Ericsson, Sweden. It covers monitoring, troubleshooting, configuration, automation and optimization of networks. A security vulnerability exists in Ericsson Network Manager ENM versions prior to 21.2, which stems from the fact that all users in t...

CVE-2021-28488

Ericsson Network Manager ENM before 21.2 has incorrect access-control behavior that only affects the level of access available to persons who were already granted a highly privileged role. Users in the same AMOS authorization group can retrieve managed-network data that was not set to be accessib...

Authorization

Ericsson Network Manager ENM before 21.2 has incorrect access-control behavior that only affects the level of access available to persons who were already granted a highly privileged role. Users in the same AMOS authorization group can retrieve managed-network data that was not set to be accessib...

OpenAFS buffer overflow vulnerability (CNVD-2015-05290)

OpenAFS is a distributed file system that allows sharing of archives and resources between systems over LANs and WANs. A buffer overflow vulnerability exists in OpenAFS 1.6.12 and earlier versions of the Solaris kernel extension. A local attacker can exploit this vulnerability to cause a denial o...