PT-2026-36808

Name of the Vulnerable Software and Affected Versions 3onedata modbus gateway device model GW1101-1DRS-485-TB-P hardware version V2.2.0 versions prior to 3.0.59B2024080600R4353 Description Authenticated users can execute arbitrary shell commands with root privileges. This is possible by providing...

CVE-2021-31261

The gfhintertracknew function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command...

EUVD-2019-11015

Malware in sbrugna...

EUVD-2021-19280

Malware in sbrugna...

EUVD-2018-1132

Malware in sbrugna...

EUVD-2020-29919

Malware in sbrugna...

EUVD-1999-1246

Malware in sbrugna...

EUVD-2012-4065

Malware in sbrugna...

EUVD-2013-0286

Malware in sbrugna...

EUVD-2008-0766

Malware in sbrugna...

EUVD-2021-15651

Malware in sbrugna...

EUVD-2024-18114

Malicious code in bioql PyPI...

EUVD-2022-34246

Malicious code in bioql PyPI...

EUVD-2025-18357

Malicious code in bioql PyPI...

Juniper Junos OS Vulnerability (JSA100095)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA100095 advisory. - An Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved...

CVE-2025-24477

A heap-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.2, FortiOS 7.4.0 through 7.4.7, FortiOS 7.2.4 through 7.2.12 allows an attacker to escalate its privileges via a specially crafted CLI command...

CVE-2025-26412

Summary: CVE-2025-26412 affects the SIMCom SIM7600G modem. The issue is an undocumented AT command that allows an attacker to execute system commands with root privileges on the modem. The attack requires either physical access or a remote shell that can issue AT commands to the device. The root ...

Mozilla Thunderbird < 128.11

The version of Thunderbird installed on the remote Windows host is prior to 128.11. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-46 advisory. - Memory safety bug present in Firefox ESR 128.10, and Thunderbird 128.10. This bug showed evidence of memory...

CVE-2002-2393

Serv-U FTP server 3.0, 3.1 and 4.0.0.4 does not accept new connections while validating user folder access rights, which allows remote attackers to cause a denial of service no new connections via a series of MKD commands...

CVE-2025-24366

SFTPGo is an open source, event-driven file transfer solution. SFTPGo supports execution of a defined set of commands via SSH. Besides a set of default commands some optional commands can be activated, one of them being rsync. It is disabled in the default configuration and it is limited to the...