Exploit for Stack-based Buffer Overflow in Microsoft

CVE-2026-41089 Detector Safe detection script for CVE-2026-...

PT-2026-46065

Name of the Vulnerable Software and Affected Versions Acronis DeviceLock DLP Windows versions prior to 9.0.15051.93227 Description Local privilege escalation is possible due to a DLL hijacking issue. DLL hijacking occurs when an application loads a malicious dynamic-link library DLL instead of th...

Externally Controlled Reference to a Resource in Another Sphere

Overview Affected versions of this package are vulnerable to Externally Controlled Reference to a Resource in Another Sphere via the Build resource creation. An attacker can gain unauthorized control over pod generation in arbitrary Kubernetes namespaces, including the operator namespace, by...

CVE-2026-30818 OS Command Injection Vulnerability in dnsmasq Module in TP-Link AX53

An OS command injection vulnerability in the dnsmasq module of TP-Link Archer AX53 v1.0 allows an authenticated adjacent attacker to execute arbitrary code when a specially crafted configuration file is processed due to insufficient input validation. Successful exploitation may allow the attacker...

CVE-2022-38113

This vulnerability discloses build and services versions in the server response header...

CVE-2025-61234

Incorrect access control on Dataphone A920 v2025.07.161103 exposes a service on port 8888 by default on the local network without authentication. This allows an attacker to interact with the device via a TCP socket without credentials. Additionally, sending an HTTP request to the service on port...

EUVD-2025-36691

Incorrect access control on Dataphone A920 v2025.07.161103 exposes a service on port 8888 by default on the local network without authentication. This allows an attacker to interact with the device via a TCP socket without credentials. Additionally, sending an HTTP request to the service on port...

CVE-2025-61234

Incorrect access control on Dataphone A920 v2025.07.161103 exposes a service on port 8888 by default on the local network without authentication. This allows an attacker to interact with the device via a TCP socket without credentials. Additionally, sending an HTTP request to the service on port...

CVE-2025-61234

Incorrect access control on Dataphone A920 v2025.07.161103 exposes a service on port 8888 by default on the local network without authentication. This allows an attacker to interact with the device via a TCP socket without credentials. Additionally, sending an HTTP request to the service on port...

PT-2025-44328

Name of the Vulnerable Software and Affected Versions Dataphone A920 version 2025.07.161103 Description A flaw in access control on Dataphone A920 version 2025.07.161103 allows unauthorized interaction with the device. A service running on port 8888 is exposed on the local network without requiri...

CVE-2025-61234

CVE-2025-61234 affects Dataphone A920 (v2025.07.161103). A misconfigured access control exposes a service on port 8888 on the local network without authentication, allowing TCP socket interaction. An HTTP request to port 8888 can trigger an error response that reveals Paytef dataphone packet head...

CVE-2025-61234

Incorrect access control on Dataphone A920 v2025.07.161103 exposes a service on port 8888 by default on the local network without authentication. This allows an attacker to interact with the device via a TCP socket without credentials. Additionally, sending an HTTP request to the service on port...

EUVD-2023-54294

Malicious code in bioql PyPI...

EUVD-2023-54716

Malicious code in bioql PyPI...

EUVD-2022-40715

Malicious code in bioql PyPI...

KB5065227 - Description of the security update for SQL Server 2016 SP3 Azure Connect Feature Pack: September 9, 2025

KB5065227 - Description of the security update for SQL Server 2016 SP3 Azure Connect Feature Pack: September 9, 2025 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This...

KB5063758 - Description of the security update for SQL Server 2019 GDR: August 12, 2025

KB5063758 - Description of the security update for SQL Server 2019 GDR: August 12, 2025 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contains fix...

June 10, 2025—KB5060999 (OS Builds 22621.5472 and 22631.5472)

June 10, 2025—KB5060999 OS Builds 22621.5472 and 22631.5472 For information about Windows update terminology, see types of Windows updates and the monthly quality update types. To find an overview, see the update history page for Windows 11, version 23H2. You can now watch this month's video on...

CVE-2024-49383

Excessive attack surface in acep-importer service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 Linux, Windows before build 38690...

CVE-2023-45241

Sensitive information leak through log files. The following products are affected: Acronis Cyber Protect Cloud Agent Linux, macOS, Windows before build 35739, Acronis Cyber Protect 16 Linux, macOS, Windows before build 37391...