CVE-2025-12108

The Survision LPR Camera system does not enforce password protection by default. This allows access to the configuration wizard immediately without a login prompt or credentials check...

CVE-2025-12108 Missing Authentication for Critical Function Survision License Plate Recognition Camera

The Survision LPR Camera system does not enforce password protection by default. This allows access to the configuration wizard immediately without a login prompt or credentials check...

CVE-2025-12108 Missing Authentication for Critical Function Survision License Plate Recognition Camera

The Survision LPR Camera system does not enforce password protection by default. This allows access to the configuration wizard immediately without a login prompt or credentials check...

PT-2025-45029

Name of the Vulnerable Software and Affected Versions Survision LPR Camera system affected versions not specified Description The Survision LPR Camera system lacks default password protection. This allows immediate access to the configuration wizard without requiring a login or checking...

CVE-2024-14008

Nagios XI versions prior to 2024R1.3.2 contain a remote command execution vulnerability in the WinRM Configuration Wizard. Insufficient validation of user-supplied input allows an authenticated administrator to inject shell metacharacters that are incorporated into backend command invocations...

CVE-2024-14008 Nagios XI < 2024R1.3.2 RCE via WinRM Configuration Wizard

Nagios XI versions prior to 2024R1.3.2 contain a remote command execution vulnerability in the WinRM Configuration Wizard. Insufficient validation of user-supplied input allows an authenticated administrator to inject shell metacharacters that are incorporated into backend command invocations...

Nagios XI 安全漏洞

Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems, and more. A security vulnerability exists in Nagios XI versions prior to 2024R1.3.2, which stems from insufficient...

EUVD-2020-28460

Malware in sbrugna...

EUVD-2000-0051

Malware in sbrugna...

EUVD-2024-50420

Malicious code in bioql PyPI...

CVE-2025-34227 Nagios XI < 2026R1 Configuration Wizard Authenticated Command Injection

Nagios XI 2026R1 is vulnerable to an authenticated command injection vulnerability within the MongoDB Database, MySQL Query, MySQL Server, Postgres Server, and Postgres Query wizards. It is possible to inject shell characters into arguments provided to the service and execute arbitrary system...

Citrix Provisioning - Configuration Wizard fails after upgrade to 2503

PVS Configuration Wizard fails with errors after PVS upgrade to version 2503. ConfigWizard.log located in C:\ProgramData\Citrix\Provisioning Services\Log on the PVS Server shows: ERROR:SqlException caught, Number = 207, Message = Invalid column name 'isXsProxyConfigRequired'. Updating server...

PVS Server SOAP service communication fails from remote PVS console

When setting up new Windows Server 2025 virtual machines on VMware to create two new PVS servers, the following issues occur: After installing PVS software and running configuration wizard successfully on the first PVS server, the PVS farm access using this PVS server was only possible using the...

Citrix Provisioning - Unable to add a new server to the Farm

Configuration Wizard shows warnings when admin tries to add a new PVS Server to the Farm. Error displayed: Errors have occured during the configuration process ConfigurationWizard.log located in C:\ProgramData\Citrix\Provisioning Services on the PVS Server shows the errors:...

CVE-2024-9491

DLL hijacking vulnerabilities, caused by an uncontrolled search path in Configuration Wizard 2 installer can lead to privilege escalation and arbitrary code execution when running the impacted installer...

CVE-2024-9491

DLL hijacking vulnerabilities, caused by an uncontrolled search path in Configuration Wizard 2 installer can lead to privilege escalation and arbitrary code execution when running the impacted installer...

CVE-2024-9491

CVE-2024-9491 affects the Configuration Wizard 2 installer (Silicon Labs/Silicon Configuration Wizard 2) and is caused by an uncontrolled DLL search path, enabling DLL hijacking. Impact described in sources as local escalation that could lead to privilege escalation and arbitrary code execution w...

CVE-2024-9491 Uncontrolled search path can lead to DLL hijacking in Configuration Wizard 2 installer

DLL hijacking vulnerabilities, caused by an uncontrolled search path in Configuration Wizard 2 installer can lead to privilege escalation and arbitrary code execution when running the impacted installer...

PT-2025-3716 · Unknown · Configuration Wizard 2

Name of the Vulnerable Software and Affected Versions: Configuration Wizard 2 affected versions not specified Description: The issue is caused by an uncontrolled search path in the Configuration Wizard 2 installer, leading to DLL hijacking vulnerabilities. This can result in privilege escalation...

Silicon Configuration Wizard 2 installer 代码问题漏洞

Silicon Configuration Wizard 2 installer is a Configuration Wizard 2 installer from Silicon Corporation. A security vulnerability exists in the Silicon Configuration Wizard 2 installer that stems from an uncontrolled search path. An attacker could exploit the vulnerability to escalate privileges...