8296 matches found
CVE-2025-34081
The Contec Co.,Ltd. CONPROSYS HMI System CHS exposes a PHP phpinfo debug page to unauthenticated users that may contain sensitive data useful for an attacker.This issue affects CONPROSYS HMI System CHS: before 3.7.7...
Exposed JDWP Exploited in the Wild: What Happens When Debug Ports Are Left Open
Understanding the risks and impact of deploying dev-mode in production environments...
CVE-2025-34081 CONPROSYS HMI System (CHS) < 3.7.7 Exposed PHP Debug Info
The Contec Co.,Ltd. CONPROSYS HMI System CHS exposes a PHP phpinfo debug page to unauthenticated users that may contain sensitive data useful for an attacker.This issue affects CONPROSYS HMI System CHS: before 3.7.7...
CVE-2025-34081 CONPROSYS HMI System (CHS) < 3.7.7 Exposed PHP Debug Info
The Contec Co.,Ltd. CONPROSYS HMI System CHS exposes a PHP phpinfo debug page to unauthenticated users that may contain sensitive data useful for an attacker.This issue affects CONPROSYS HMI System CHS: before 3.7.7...
CVE-2025-34081
The CVE-2025-34081 affects Contec CONPROSYS HMI System (CHS) prior to version 3.7.7. The issue is the exposure of a PHP phpinfo() debugging page to unauthenticated users, which may disclose sensitive runtime information useful to an attacker. Public sources in the connected documents confirm the ...
Security update for helm
This update for helm fixes the following issues: Update to version 3.18.3: builddeps: bump golang.org/x/crypto from 0.38.0 to 0.39.0 6838ebc dependabotbot fix: user username password for login 5b9e2f6 Terry Howe Update pkg/registry/transport.go 2782412 Terry Howe Update pkg/registry/transport.go...
CVE-2025-6624
Versions of the package snyk before 1.1297.3 are vulnerable to Insertion of Sensitive Information into Log File through local Snyk CLI debug logs. Container Registry credentials provided via environment variables or command line arguments can be exposed when executing Snyk CLI in DEBUG or...
CVE-2025-47822
Flock Safety LPR License Plate Reader devices with firmware through 2.2 have an on-chip debug interface with improper access control...
CVE-2025-47819
Flock Safety Gunshot Detection devices before 1.3 have an on-chip debug interface with improper access control...
CVE-2025-47822
Flock Safety LPR devices running firmware up to 2.2 expose an on-chip debug interface with improper access control. This affects the LPR module (license plate reader) and can impact confidentiality, integrity, and availability as indicated by CVSS bases (high impact across metrics). The connected...
PT-2025-27040
Name of the Vulnerable Software and Affected Versions: Flock Safety LPR devices versions through 2.2 Description: The issue concerns an on-chip debug interface with improper access control. Recommendations: For versions through 2.2, consider disabling the on-chip debug interface until a patch is...
Flock Safety LPR 安全漏洞
Flock Safety LPR is a license plate recognition product from Flock Safety USA. A security vulnerability exists in Flock Safety LPR version 2.2 and prior versions that stems from improper access control of the chip debug interface...
Flock Safety Gunshot Detection 安全漏洞
Flock Safety Gunshot Detection is a gunshot detection system from Flock Safety USA. A security vulnerability exists in Flock Safety Gunshot Detection versions prior to 1.3 that stems from improper access control of the chip debug interface...
SUSE-SU-2025:02121-1 Security update for helm
This update for helm fixes the following issues: Update to version 3.18.3: builddeps: bump golang.org/x/crypto from 0.38.0 to 0.39.0 6838ebc dependabotbot fix: user username password for login 5b9e2f6 Terry Howe Update pkg/registry/transport.go 2782412 Terry Howe Update pkg/registry/transport.go...
GHSA-6HWC-9H8R-3VMF Snyk CLI Insertion of Sensitive Information into Log File allowed in DEBUG or DEBUG/TRACE mode
Versions of the package snyk before 1.1297.3 are vulnerable to Insertion of Sensitive Information into Log File through local Snyk CLI debug logs. Container Registry credentials provided via environment variables or command line arguments can be exposed when executing Snyk CLI in DEBUG or...
Snyk CLI Insertion of Sensitive Information into Log File allowed in DEBUG or DEBUG/TRACE mode
Versions of the package snyk before 1.1297.3 are vulnerable to Insertion of Sensitive Information into Log File through local Snyk CLI debug logs. Container Registry credentials provided via environment variables or command line arguments can be exposed when executing Snyk CLI in DEBUG or...
CVE-2025-6624
Versions of the package snyk before 1.1297.3 are vulnerable to Insertion of Sensitive Information into Log File through local Snyk CLI debug logs. Container Registry credentials provided via environment variables or command line arguments can be exposed when executing Snyk CLI in DEBUG or...
CVE-2025-6624
Affected software: Snyk CLI. Vulnerability: Insertion of Sensitive Information into Log File when running in DEBUG/TRACE modes. Versions prior to 1.1297.3 are affected. Details: container commands (snyk container test/monitor) can disclose registry credentials via environment variables SNYK_REGIS...
CVE-2025-6624
Versions of the package snyk before 1.1297.3 are vulnerable to Insertion of Sensitive Information into Log File through local Snyk CLI debug logs. Container Registry credentials provided via environment variables or command line arguments can be exposed when executing Snyk CLI in DEBUG or...
CVE-2025-6624
Versions of the package snyk before 1.1297.3 are vulnerable to Insertion of Sensitive Information into Log File through local Snyk CLI debug logs. Container Registry credentials provided via environment variables or command line arguments can be exposed when executing Snyk CLI in DEBUG or...