9293 matches found
CVE-2025-27461 CVE-2025-27461
During startup, the device automatically logs in the EPC2 Windows user without requesting a password...
CVE-2025-27461 CVE-2025-27461
During startup, the device automatically logs in the EPC2 Windows user without requesting a password...
CVE-2025-27461
CVE-2025-27461 affects the Endress+Hauser MEAC300-FNADE4 emissions data management device. The root cause is startup-time automatic login of the EPC2 Windows user without a password, effectively bypassing authentication and enabling full access where the device is physically reachable. The CVE is...
Endress+Hauser MEAC300-FNADE4 安全漏洞
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that originates from automatically logging in an EPC2 Windows user at startup without entering a password. An...
PT-2025-27790 · Unknown · Epc2 Windows
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue allows the device to automatically log in the EPC2 Windows user during startup without requesting a password. Recommendations: At the moment, there is no information about a newer...
CVE-2025-34072
A data exfiltration vulnerability exists in Anthropic’s deprecated Slack Model Context Protocol MCP Server via automatic link unfurling. When an AI agent using the Slack MCP Server processes untrusted data, it can be manipulated to generate messages containing attacker-crafted hyperlinks embeddin...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the lack of an automatic downclocking mechanism for GPUs, which could lead to hardware overheating and damag...
Fedora 41 : podman (2025-ce164bcfee)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-ce164bcfee advisory. Automatic update for podman-5.5.2-1.fc41. security fix for CVE-2025-6032 Changelog for podman Tue Jun 24 2025 Packit - 5:5.5.2-1 - Update to 5.5.2 upstream...
Fedora 42 : podman (2025-d6689393a3)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-d6689393a3 advisory. Automatic update for podman-5.5.2-1.fc42. security fix for CVE-2025-6032 Changelog for podman Tue Jun 24 2025 Packit - 5:5.5.2-1 - Update to 5.5.2 upstream...
Amazon Linux 2 : thunderbird (ALAS-2025-2896)
The version of thunderbird installed on the remote host is prior to 128.11.1-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2896 advisory. A crafted HTML email using mailbox:/// links can trigger automatic, unsolicited downloads of .pdf files to the user's deskto...
Automatic Selection of Protections to Mitigate Risks against Software Applications
This paper introduces a novel approach for the automated selection of software protections to mitigate MATE risks against critical assets within software applications. We formalize the key elements involved in protection decision-making - including code artifacts, assets, security requirements,...
Efficient Retail Video Annotation: a Robust Key Frame Generation Approach for Product and Customer Interaction Analysis
Accurate video annotation plays a vital role in modern retail applications, including customer behavior analysis, product interaction detection, and in-store activity recognition. However, conventional annotation methods heavily rely on time-consuming manual labeling by human annotators,...
Fedora 42 : libblockdev (2025-af7ba2696c)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-af7ba2696c advisory. Automatic update for libblockdev-3.3.1-1.fc42. Changelog for libblockdev Wed Jun 18 2025 Packit - 3.3.1-1 - Update to version 3.3.1 Tenable has...
SafeGenBench: a Benchmark Framework for Security Vulnerability Detection in LLM-Generated Code
The code generation capabilities of large language modelsLLMs have emerged as a critical dimension in evaluating their overall performance. However, prior research has largely overlooked the security risks inherent in the generated code. In this work, we introduce SafeGenBench, a benchmark...
Fedora 43 : salt (2025-551aed076e)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-551aed076e advisory. Automatic update for salt-3007.4-2.fc43. Changelog Thu Jun 19 2025 Robby Callicotte - 3007.4-2 - Updated sources Thu Jun 19 2025 Robby Callicotte -...
CVE-2022-49937 media: mceusb: Use new usb_control_msg_*() routines
In the Linux kernel, the following vulnerability has been resolved: media: mceusb: Use new usbcontrolmsg routines Automatic kernel fuzzing led to a WARN about invalid pipe direction in the mceusb driver: ------------ cut here ------------ usb 6-1: BOGUS control dir, pipe 80000380 doesn't match...
CVE-2022-49937 media: mceusb: Use new usb_control_msg_*() routines
In the Linux kernel, the following vulnerability has been resolved: media: mceusb: Use new usbcontrolmsg routines Automatic kernel fuzzing led to a WARN about invalid pipe direction in the mceusb driver: ------------ cut here ------------ usb 6-1: BOGUS control dir, pipe 80000380 doesn't match...
Important: Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.6.0 release
Red Hat build of OpenTelemetry 3.6.0 has been released Breaking changes: Nothing Deprecations: Nothing Technology Preview features: Cumulative-to-Delta Processor Enhancements: The following Technology Preview features reach General Availability: Kafka Exporter Attributes Processor Resource...
CVE-2025-5395
The WordPress Automatic Plugin plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'core.php' file in all versions up to, and including, 3.115.0. This makes it possible for authenticated attackers, with Author-level access and above, to...
CVE-2025-5986
A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: A crafted HTML email using mailbox:/// links can trigger automatic, unsolicited downloads of .pdf files to the user's desktop or home directory without prompting, even if auto-saving is...