CVE-2020-12847

Pydio Cells 2.0.4 web application offers an administrative console named “Cells Console” that is available to users with an administrator role. This console provides an administrator user with the possibility of changing several settings, including the application’s mailer configuration. It is...

EUVD-2021-15450

Malware in sbrugna...

EUVD-2020-5129

Malware in sbrugna...

EUVD-2014-4384

Malware in sbrugna...

EUVD-2018-10571

Malware in sbrugna...

EUVD-2019-8352

Malware in sbrugna...

EUVD-2021-16132

Malware in sbrugna...

EUVD-2022-37953

Malicious code in bioql PyPI...

EUVD-2025-1887

Malicious code in bioql PyPI...

EUVD-2022-28571

Malicious code in bioql PyPI...

EUVD-2025-20501

Malicious code in bioql PyPI...

EUVD-2022-52429

Malicious code in bioql PyPI...

EUVD-2022-29952

Malicious code in bioql PyPI...

EUVD-2022-50909

Malicious code in bioql PyPI...

EUVD-2024-1115

Malicious code in bioql PyPI...

Security Bulletin: IBM App Connect Enterprise Certified Container is vulnerable to incorrect binary execution [CVE-2025-47906]

Summary IBM App Connect Enterprise Certified Container operator and operands contain Golang binaries that are vulnerable to incorrect binary exection. This bulletin provides patch information to address the reported vulnerability in Golang module os/exec. CVE-2025-47906 Vulnerability Details...

CVE-2025-48950

MaxKB is an open-source AI assistant for enterprise. Prior to version 1.10.8-lts, Sandbox only restricts the execution permissions of binary files in common directories, such as /bin,/usr/bin, etc. Therefore, attackers can exploit some files with execution permissions in non blacklisted directori...

CVE-2023-36624

Loxone Miniserver Go Gen.2 through 14.0.3.28 allows an authenticated operating system user to escalate privileges via the Sudo configuration. This allows the elevated execution of binaries without a password requirement...

CVE-2023-32231

An issue was discovered in Vasion PrinterLogic Client for Windows before 25.0.0.818. During installation, binaries gets executed out of a subfolder in C:\Windows\Temp. A standard user can create the folder and path file ahead of time and obtain elevated code execution...

CVE-2022-48199

SoftPerfect NetWorx 7.1.1 on Windows allows an attacker to execute a malicious binary with potentially higher privileges via a low-privileged user account that abuses the Notifications function. The Notifications function allows for arbitrary binary execution and can be modified by any user. The...