Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989624)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989624 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: Fix NULL pointer dereference in i40edbgdumpdesc When trying to dump VFs VSI RX/TX descripto...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989262)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989262 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Sanity check block descriptor length in respmodeselect In respmodeselect sanity...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988714)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988714 advisory. In the Linux kernel, the following vulnerability has been resolved: powerpc/fixmap: Fix VM debug warning on unmap Unmapping a fixmap entry is done by calling setfixm...

CVE-2025-54323

An issue was discovered in the camera in Samsung Mobile Processor Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, and 1580. Improper debug printing leads to information leakage...

CVE-2025-54323

An issue was discovered in the camera in Samsung Mobile Processor Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, and 1580. Improper debug printing leads to information leakage...

CVE-2025-54323

An issue was discovered in the camera in Samsung Mobile Processor Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, and 1580. Improper debug printing leads to information leakage...

PT-2025-45019

Name of the Vulnerable Software and Affected Versions Samsung Mobile Processor Exynos versions 980 through 990 Samsung Mobile Processor Exynos version 850 Samsung Mobile Processor Exynos versions 1080 through 1280 Samsung Mobile Processor Exynos versions 1330 through 1380 Samsung Mobile Processor...

CVE-2025-54323

Summary: CVE-2025-54323 describes an information leakage due to improper debug printing in the camera of Samsung Mobile Processor Exynos SoCs (980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580). Affected components/versions: Samsung Exynos camera functionality across listed proc...

Vulnerabilities fixed in Arista Networks products

Arista Networks has fixed vulnerabilities in DANZ. The vulnerabilities include several ways for authenticated users with limited privileges to gain access to sensitive systems and data. These include escaping the CLI sandbox, exploiting SSH port forwarding, and making operating system operations...

CVE-2025-12616

PHPGurukul News Portal 1.0 contains an information disclosure flaw in an unknown function of /onps/settings.py. Manipulation can insert sensitive data into debugging code, enabling remote exploitation. The vulnerability is exploitable remotely, with high attack complexity, and public exploit avai...

CVE-2025-52663

A vulnerability was identified in certain UniFi Talk devices where internal debugging functionality remained unintentionally enabled. This issue could allow an attacker with access to the UniFi Talk management network to invoke internal debug operations through the device API. Affected Products:...

Astra Linux - уязвимость в network-manager

A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service...

CVE-2025-62232

Sensitive data exposure via logging in basic-auth leads to plaintext usernames and passwords written to error logs and forwarded to log sinks when log level is INFO/DEBUG. This creates a high risk of credential compromise through log access. It has been fixed in the following commit: ...

CVE-2025-62232

Apache APISIX is affected by a logging-related data exposure (CVE-2025-62232) where basic-auth credentials are written in plaintext to error logs and forwarded to log sinks when the log level is INFO/DEBUG. The issue is caused by logging sensitive data during normal operation, creating a high ris...

EUVD-2025-37234

A vulnerability was identified in certain UniFi Talk devices where internal debugging functionality remained unintentionally enabled. This issue could allow an attacker with access to the UniFi Talk management network to invoke internal debug operations through the device API. Affected Products:...

Unity Linux 20.1070e Security Update: xml-security (UTSA-2025-988626)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988626 advisory. All versions of Apache Santuario - XML Security for Java prior to 2.2.6, 2.3.4, and 3.0.3, when using the JSR 105 API, are vulnerable to an issue where a private key...

CVE-2025-54548

On affected platforms, restricted users could view sensitive portions of the config database via a debug API e.g., user password hashes...

EUVD-2025-36725

On affected platforms, restricted users could view sensitive portions of the config database via a debug API e.g., user password hashes...

WordPress plugin Site Checkup Debug AI Troubleshooting with Wizard and Tips for Each Issue Security Vulnerabilities

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

CVE-2025-54548

On affected platforms, restricted users could view sensitive portions of the config database via a debug API e.g., user password hashes...