37 matches found
CVE-2026-14868
The encryption algorithm used to protect the configuration of user accounts, stored in the built-in user directory of PcVue projects, all versions prior to 17.0.0, is not strong enough for the level of protection required. A local attacker could alter the existing configuration and ultimately gai...
CVE-2026-14867 Insecure password storage in User directory
Credentials of built-in users are insecurely stored in the User directory of PcVue projects, all versions prior to 17.0.0. A local attacker could retrieve users’ credentials. Active Directory accounts are not affected by this vulnerability...
EUVD-2026-42031
Credentials of built-in users are insecurely stored in the User directory of PcVue projects, all versions prior to 17.0.0. A local attacker could retrieve users’ credentials. Active Directory accounts are not affected by this vulnerability...
SUSE CVE-2026-6476
SQL injection in PostgreSQL pgcreatesubscriber allows an attacker with pgcreatesubscription rights to execute arbitrary SQL as a superuser. The attack takes effect when pgcreatesubscriber next runs. Within major versions 17 and 18, minor versions before PostgreSQL 18.4 and 17.10 are affected...
Apple多款产品 安全漏洞
Apple Safari, among others, are products of the American company Apple. Apple Safari is a web browser that is the default browser included with the Mac OS X and iOS operating systems. Apple iOS is an operating system developed for mobile devices. Apple iPadOS is an operating system for iPad...
OpenProject 安全漏洞
OpenProject is an open-source web-based project management software. Versions of OpenProject prior to 17.2.0 had security vulnerabilities. These vulnerabilities stemmed from improper validation of user identities during the editing of project budgets, planning labor costs, and the front-end cost...
TeamViewer DEX Client 安全漏洞
TeamViewer DEX Client is a digital employee experience and endpoint management software from TeamViewer Germany. A security vulnerability exists in TeamViewer DEX Client versions prior to V17.1 that stems from improper handling of executable search paths, which could lead to elevation of privileg...
EUVD-2025-24809
Malicious code in bioql PyPI...
Deserialization of Untrusted Data
Overview net.sf.jasperreports:jasperreports is an open source reporting engine for Java. Affected versions of this package are vulnerable to Deserialization of Untrusted Data when processing .jasper files from untrusted sources. An attacker can achieve remote execution of arbitrary code by...
CVE-2024-1153
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Travel APPS: before v17.0.68...
UBUNTU-CVE-2025-4207
Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13,...
Apple iOS和Apple iPadOS 资源管理错误漏洞
Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS prior to version 17 and iPadOS prior to version 17, which stems from a...
Apple iOS和Apple iPadOS 路径遍历漏洞
Apple iOS and Apple iPadOS are products of Apple Inc.Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS prior to version 17 and iPadOS prior to version 17 that stems from a path handling...
PT-2024-30968 · Apple · Ios +1
Name of the Vulnerable Software and Affected Versions: iOS versions prior to 17.7 iPadOS versions prior to 17.7 Description: The issue allows Private Browsing tabs to be accessed without authentication. This was addressed through improved state management. Recommendations: For iOS versions prior ...
Apple iOS和Apple iPadOS 安全漏洞
Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS before version 17.6 and iPadOS before version 17.6, which originates from a...
Apple iOS和Apple iPadOS 安全漏洞
Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS prior to version 17.6 and iPadOS prior to version 17.6, which arises from the...
PT-2024-19735 · Apple · Ios +1
Name of the Vulnerable Software and Affected Versions: iOS versions prior to 17.4 iPadOS versions prior to 17.4 Description: The issue allows a deleted photo to be re-surfaced without authentication through the shake-to-undo feature. This is due to inadequate checks that have been improved in the...
PT-2024-13063 · Apple · Ios +1
Name of the Vulnerable Software and Affected Versions: iOS versions prior to 17.1 iPadOS versions prior to 17.1 Description: The issue was addressed with improved bounds checks. An app may be able to gain elevated privileges. Recommendations: For iOS versions prior to 17.1, update to iOS 17.1 to...
PT-2023-28640 · Apple · Ios +1
Name of the Vulnerable Software and Affected Versions: iOS versions prior to 17.2 iPadOS versions prior to 17.2 Description: The issue allows Private Browsing tabs to be accessed without authentication. This was addressed through improved state management. Recommendations: For iOS versions prior ...
PT-2023-28650 · Apple · Macos Sonoma +5
Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 17.1 Apple iPadOS versions prior to 17.1 Apple macOS Sonoma versions prior to 14.1 Apple tvOS versions prior to 17.1 Apple watchOS versions prior to 10.1 Description: This issue was addressed with improved redactio...