EUVD-2024-39284

Malicious code in bioql PyPI...

EUVD-2025-31628

Malicious code in bioql PyPI...

CVE-2025-34222

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 22.0.1049 and Application prior to version 20.0.2786 VA/SaaS deployments expose four admin routes – /admin/hp/certupload, /admin/hp/certdelete, /admin/certs/ca, and /admin/certs/serviceclients/scid – without any...

CVE-2025-34222

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 22.0.1049 and Application prior to version 20.0.2786 VA/SaaS deployments expose four admin routes – /admin/hp/certupload, /admin/hp/certdelete, /admin/certs/ca, and /admin/certs/serviceclients/scid – without any...

CVE-2025-34222

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 22.0.1049 and Application prior to version 20.0.2786 VA/SaaS deployments expose four admin routes – /admin/hp/certupload, /admin/hp/certdelete, /admin/certs/ca, and /admin/certs/serviceclients/scid – without any...

CVE-2025-34222

Vasion Print (formerly PrinterLogic) Vulnerability CVE-2025-34222 affects Virtual Appliance Host before 22.0.1049 and Application before 20.0.2786 (VA/SaaS). The issue stems from four unauthenticated admin routes exposed in the printercloud/pi Docker container (routes: /admin/hp/cert_upload, /adm...

CVE-2025-34222

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 22.0.1049 and Application prior to version 20.0.2786 VA/SaaS deployments expose four admin routes – /admin/hp/certupload, /admin/hp/certdelete, /admin/certs/ca, and /admin/certs/serviceclients/scid – without any...

PT-2025-39887

Name of the Vulnerable Software and Affected Versions Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 22.0.1049 Vasion Print formerly PrinterLogic Application versions prior to 20.0.2786 Description The Vasion Print Virtual Appliance Host and Application expose...

Vasion Print Virtual Appliance Host 安全漏洞

Vasion Print Virtual Appliance Host is a print management software from Vasion USA. A security vulnerability exists in Vasion Print Virtual Appliance Host versions prior to 22.0.1049, which stems from an unauthenticated management route exposure that could lead to certificate replacement, deletio...

CVE-2024-43661

The .so library, which is used by , is vulnerable to a buffer overflow in the code that handles the deletion of certificates. This buffer overflow can be triggered by providing a long file path to the action of the .exe CGI binary or to the .sh CGI script. This binary or script will write this fi...

Unable to delete expired certificate with no bindings

The following error is returned when trying to delete a certificate that has no bindings when clicking on "show bindings" "Certificate is referenced by a CRL, OCSP responder, vserver, service, monitor, SSL profile, CA Cert Group, another certificate, or a policy expression using XMLENCRYPT or...

Input validation

Improper countermeasure against clickjacking attack in client certificates management screen was discovered in Cybozu Remote Service 3.0.0 to 3.1.8, that allows remote attackers to trick a user to delete the registered client certificate...

Cybozu Remote Service Clickjacking Vulnerability

Cybozu Remote Service is Cybozu's remote service management software for accessing Cybozu's internal systems. A security vulnerability exists in the client certificates management page in Cybozu Remote Service versions 3.0.0 through 3.1.8. The vulnerability can be exploited to trick users into...

Multiple vulnerabilities in Cybozu Remote Service

Overview Cybozu Remote Service provided by Cybozu, Inc. contains multiple vulnerabilities listed below. Upload of arbitrary files in logo setting screen CWE-434 - CVE-2018-16169 Directory traversal in used device management screen CWE-22 - CVE-2018-16170 Directory traversal in client certificates...

The vulnerability of Thunderbird software, which allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information.

The use of this function after release in CERTDestroyCertificate in libnss3.so within the NSS library suite from Mozilla for Firefox, Firefox ESR, and Thunderbird allows malicious remote actors to execute arbitrary code by improperly deleting the NSSCertificate structure from the trusted domain...

security flaw

KAME IKE daemon racoon does not properly handle hash values, which allows remote attackers to delete certificates via 1 a certain delete message that is not properly handled in isakmp.c or isakmpinf.c, or 2 a certain INITIAL-CONTACT message that is not properly handled in isakmpinf.c...

Q323172: Security Update (Windows XP)

This update resolves the "Flaw in Digital Certificate Enrollment Component Allows Certificate Deletion" security vulnerability in Windows XP. Download now to help stop a Web site or HTML e-mail from deleting digital certificates on your computer and preventing you from using the services they are...