66 matches found
📄 Microsoft Windows 11 23H2 Denial of Service
Microsoft Windows 11 23H2 suffers from a denial of service vulnerability. Exploit Title: Windows 11 23H2 - Denial of Service DoS Google Dork: N/A Date: 2025-08-22 Exploit Author: Kryptoenix Vendor Homepage: https://www.microsoft.com/ Software Link:...
EUVD-2020-27044
Malware in sbrugna...
EUVD-2018-5758
Malware in sbrugna...
EUVD-2012-5516
Malware in sbrugna...
EUVD-2021-18677
Malware in sbrugna...
EUVD-2023-1250
Malicious code in bioql PyPI...
EUVD-2022-3009
Malicious code in bioql PyPI...
EUVD-2024-34408
Malicious code in bioql PyPI...
EUVD-2021-28394
Malicious code in bioql PyPI...
EUVD-2022-2983
Malicious code in bioql PyPI...
CVE-2025-54064 rucio-server, rucio-ui, and rucio-webui vulnerable to insertion of X-Rucio-Auth-Token in apache access logfiles
Rucio is a software framework that provides functionality to organize, manage, and access large volumes of scientific data using customizable policies. The common Rucio helm-charts for the rucio-server, rucio-ui, and rucio-webui define the log format for the apache access log of these components...
CVE-2025-47987
Heap-based buffer overflow in Windows Cred SSProvider Protocol allows an authorized attacker to elevate privileges locally...
CVE-2025-42979
The CVE-2025-42979 entry concerns GuiXT, which is integrated with SAP GUI for Windows. The vulnerability stems from using obfuscation algorithms instead of secure symmetric ciphers to store RFC user credentials on the client PC, residing in the Windows user registry hive. This leads to a confiden...
TencentOS Server 4: git (TSSA-2025:0090)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0090 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
TencentOS Server 3: git-lfs (TSSA-2025:0109)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0109 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
CVE-2022-24584
Incorrect access control in Yubico OTP functionality of the YubiKey hardware tokens along with the Yubico OTP validation server. The Yubico OTP supposedly creates hardware bound second factor credentials. When a user reprograms the OTP functionality by "writing" it on a token using the Yubico...
CVE-2019-12737
UserHashedTableAuth in JetBrains Ktor framework before 1.2.0-rc uses a One-Way Hash with a Predictable Salt for storing user credentials...
BIT-GIT-2024-50349 Git does not sanitize URLs when asking for credentials interactively
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt i.e. without using any credential helper, it prints out the host name for whic...
GHSA-JQR8-Q455-XX45 TYPO3 Brute Force Protection Bypass in backend login
The backend login has a basic brute force protection implementation which pauses for 5 seconds if wrong credentials are given. This pause however could be bypassed by forging a special request, making brute force attacks on backend editor credentials more feasible...
CVE-2024-22388
CVE-2024-22388 affects HID Global devices configured as encoders (e.g., iCLASS SE CP1000 Encoder, iCLASS SE Readers/Modules/Processors, OMNIKEY 5427CK/5127CK/5023/5027). Root cause: improper authorization in the encoder communication channel enables exposure of sensitive data when reader configur...