CVE-2026-40118

CVE-2026-40118 involves Arcserve’s UDP Console. The issue is an incorrectly specified destination in a communication channel: if a user configures the activation server hostname to a dummy URL, the product may contact that dummy domain, potentially causing information disclosure. The provided doc...

EUVD-2019-8903

Malware in sbrugna...

EUVD-2013-1105

Malware in sbrugna...

EUVD-2019-3768

Malware in sbrugna...

EUVD-2018-8049

Malware in sbrugna...

EUVD-2019-4098

Malware in sbrugna...

EUVD-2018-7357

Malware in sbrugna...

EUVD-2021-14614

Malware in sbrugna...

EUVD-2024-30701

Malicious code in bioql PyPI...

EUVD-2022-37376

Malicious code in bioql PyPI...

EUVD-2024-3603

Malicious code in bioql PyPI...

CVE-2025-1384

Least Privilege Violation CWE-272 Vulnerability exists in the communication function between the NJ/NX-series Machine Automation Controllers and the Sysmac Studio Software. An attacker may use this vulnerability to perform unauthorized access and to execute unauthorized code remotely to the...

CVE-2025-2520

CVE-2025-2520 affects Honeywell Experion PKS. The root cause is an uninitialized variable in the common Epic Platform Analyzer (EPA) communications, which could allow an attacker to perform Communication Channel Manipulation and dereference an uninitialized pointer, leading to a denial of service...

CVE-2024-39921

Observable timing discrepancy issue exists in IPCOM EX2 Series V01L02NF0001 to V01L06NF0401, V01L20NF0001 to V01L20NF0401, V02L20NF0001 to V02L21NF0301, and IPCOM VE2 Series V01L04NF0001 to V01L06NF0112. If this vulnerability is exploited, some of the encrypted communication may be decrypted by a...

CVE-2021-3460

The Motorola MH702x devices, prior to version 2.0.0.301, do not properly verify the server certificate during communication with the support server which could lead to the communication channel being accessible by an attacker...

CVE-2019-12503

Due to unencrypted and unauthenticated data communication, the wireless barcode scanner Inateck BCST-60 is prone to keystroke injection attacks. Thus, an attacker is able to send arbitrary keystrokes to a victim's computer system, e.g., to install malware when the target system is unattended. In...

CVE-2024-26013

A improper restriction of communication channel to intended endpoints vulnerability CWE-923 in Fortinet FortiOS version 7.4.0 through 7.4.4, 7.2.0 through 7.2.8, 7.0.0 through 7.0.15, 6.4.0 through 6.4.15 and before 6.2.16, Fortinet FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.9 and...

CVE-2025-21307

CVE-2025-21307 concerns the Windows Reliable Multicast Transport Driver (RMCAST) and is described as a remote code execution vulnerability. The CVSS vector indicates network access, no user interaction, and a high impact across confidentiality, integrity, and availability (base score 9.8, CRITICA...

CVE-2024-42181 HCL MyXalytics is affected by a cleartext transmission of sensitive information vulnerability

HCL MyXalytics is affected by a cleartext transmission of sensitive information vulnerability. The application transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors...

Dell PowerEdge Server BIOS and Dell Precision Rack BIOS Input Validation Error Vulnerability

Dell PowerEdge Server BIOS and Dell Precision Rack BIOS are both products of Dell, Inc.Dell PowerEdge Server BIOS is a system update driver from Dell.Dell Precision Rack BIOS is a Dell Precision Rack BIOS is a BIOS utility for high-performance workstation products. An input validation error...