CVE-2025-48707

An issue was discovered in Stormshield Network Security SNS before 5.0.1. TPM authentication information could, in some HA use cases, be shared among administrators, which can cause secret sharing...

OPENSUSE-SU-2025:15578-1 chromedriver-140.0.7339.207-1.1 on GA media

These are all security issues fixed in the chromedriver-140.0.7339.207-1.1 package on the GA media of openSUSE Tumbleweed...

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

Overview On September 25, 2025, Cisco published advisories for three notable vulnerabilities affecting many different Cisco products. Two of these vulnerabilities, CVE-2025-20333 and CVE-2025-20362, are known to be exploited in the wild, and CVE-2025-20363 is at high risk for exploitation in the...

CVE-2025-48707

An issue was discovered in Stormshield Network Security SNS before 5.0.1. TPM authentication information could, in some HA use cases, be shared among administrators, which can cause secret sharing...

CVE-2025-48707

An issue was discovered in Stormshield Network Security SNS before 5.0.1. TPM authentication information could, in some HA use cases, be shared among administrators, which can cause secret sharing...

Introducing Microsoft Marketplace — Thousands of solutions. Millions of customers. One Marketplace.

A new breed of industry-leading company is taking shape — Frontier Firms. These organizations blend human ambition with AI-powered technology to reshape how innovation is scaled, work is orchestrated and value is created. They’re accelerating AI transformation to enrich employee experiences,...

CVE-2025-40836 Ericsson Indoor Connect 8855 - Improper Input Validation Vulnerability

Ericsson Indoor Connect 8855 contains an improper input validation vulnerability which if exploited can allow an attacker to execute commands with escalated privileges...

CVE-2025-27262 Ericsson Indoor Connect 8855 - Improper Neutralization of Special Elements used in an OS Command Vulnerability

Ericsson Indoor Connect 8855 contains a command injection vulnerability which if exploited can result in an escalation of privileges...

CVE-2025-42907

SAP BI Platform allows an attacker to modify the IP address of the LogonToken for the OpenDoc. On accessing the modified link in the browser a different server could get the ping request. This has low impact on integrity with no impact on confidentiality and availability of the system...

Zenitel ICX500和Zenitel ICX510 安全漏洞

Zenitel ICX500 and Zenitel ICX510 are both communication and control platforms from Zenitel Norway. A security vulnerability exists in the Zenitel ICX500 and Zenitel ICX510 that originates from a malicious actor that can execute arbitrary commands, potentially compromising device availability,...

CVE-2025-48707

CVE-2025-48707 affects Stormshield Network Security (SNS) prior to 5.0.1. In some HA configurations, TPM authentication information could be shared among administrators, potentially enabling secret sharing and reducing isolation of admin credentials. Public sources in the connected documents cons...

PT-2025-39437

Name of the Vulnerable Software and Affected Versions Stormshield Network Security SNS versions prior to 5.0.1 Description An issue exists in Stormshield Network Security SNS where TPM authentication information could be shared among administrators in certain High Availability HA configurations,...

CVE-2025-48707

An issue was discovered in Stormshield Network Security SNS before 5.0.1. TPM authentication information could, in some HA use cases, be shared among administrators, which can cause secret sharing...

CVE-2025-48707

An issue was discovered in Stormshield Network Security SNS before 5.0.1. TPM authentication information could, in some HA use cases, be shared among administrators, which can cause secret sharing...

Stormshield Network Security 安全漏洞

Stormshield Network Security SNS is a next-generation UTM Unified Threat Management firewall from Stormshield France. A security vulnerability exists in Stormshield Network Security versions prior to 5.0.1, which stems from the fact that TPM authentication information may be shared in HA use case...

Important: Red Hat Security Advisory: VolSync v0.13 security fixes and container updates

VolSync v0.13 General Availability release images, which provide enhancements, security fixes, and updated container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

ROS-20250923-06

A vulnerability in the Apache Cassandra distributed database management system is related to improper privilege handling. Exploitation of the vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and availability of protected information. impact the...

OPENSUSE-SU-2025:15573-1 expat-2.7.2-1.1 on GA media

These are all security issues fixed in the expat-2.7.2-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15569-1 rke2-1.33-1.33.5+rke2r1-1.1 on GA media

These are all security issues fixed in the rke2-1.33-1.33.5+rke2r1-1.1 package on the GA media of openSUSE Tumbleweed...

OESA-2025-2300 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability ma...