CVE-2025-7972

A security issue exists within the FactoryTalk Linx Network Browser. By modifying the process.env.NODEENV to ‘development’, the attacker can disable FTSP token validation. This bypass allows access to create, update, and delete FTLinx drivers...

CVE-2025-7972

CVE-2025-7972 details (Mode C): A vulnerability in Rockwell Automation’s FactoryTalk Linx Network Browser allows bypassing FTSP token validation by setting process.env.NODE_ENV to ‘development’. This enables an attacker to create, update, and delete FTLinx drivers. Documented impact includes HIGH...

CVE-2025-7972 Rockwell Automation FactoryTalk® Linx Network Browser Security Bypass Vulnerability

A security issue exists within the FactoryTalk Linx Network Browser. By modifying the process.env.NODEENV to ‘development’, the attacker can disable FTSP token validation. This bypass allows access to create, update, and delete FTLinx drivers...

CVE-2025-7972 Rockwell Automation FactoryTalk® Linx Network Browser Security Bypass Vulnerability

A security issue exists within the FactoryTalk Linx Network Browser. By modifying the process.env.NODEENV to ‘development’, the attacker can disable FTSP token validation. This bypass allows access to create, update, and delete FTLinx drivers...

CVE-2019-2978 vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-11-openj9, openjdk-26-openj9, openjdk, openjdk-8-openj9, openjdk-17-openj9, openjdk-21-openj9...

GHSA-Q9RX-VPRP-MMRF vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-11-openj9, openjdk-26-openj9, openjdk, openjdk-8-openj9, openjdk-17-openj9, openjdk-21-openj9...

CVE-2019-2964 vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-11-openj9, openjdk-26-openj9, openjdk, openjdk-8-openj9, openjdk-17-openj9, openjdk-21-openj9...

GHSA-VP36-CHC4-89VW vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-11-openj9, openjdk-26-openj9, openjdk, openjdk-8-openj9, openjdk-17-openj9, openjdk-21-openj9...

GHSA-Q32P-XHJG-25F8 vulnerabilities

Vulnerabilities for packages: openjdk...

GHSA-9Q7R-HH98-V46J vulnerabilities

Vulnerabilities for packages: openjdk...

PT-2025-33292

Name of the Vulnerable Software and Affected Versions: FactoryTalk Linx Network Browser affected versions not specified Description: A security issue exists within the FactoryTalk Linx Network Browser. Modifying the process.env.NODE ENV environment variable to ‘development’ disables FTSP token...

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 : OpenJDK 17 vulnerabilities (USN-7690-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7690-1 advisory. It was discovered that the 2D component of OpenJDK 17 did not properly manage memory under certain...

SUSE Linux多款产品 安全漏洞

SUSE Linux Enterprise Desktop is an enterprise server version of the Linux desktop operating system from SUSE Germany. A security vulnerability exists in various SUSE Linux products that originates from a stream reset in the HTTP/2 implementation that results in excessive consumption of server...

CVE-2025-32004

Improper input validation in the Intel Edger8r Tool for some IntelR SGX SDK may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2025-32004

CVE-2025-32004 concerns the Intel Edger8r Tool in the Intel SGX SDK. The issue is caused by improper input validation in the Edger8r Tool, which may permit an authenticated user to escalate privileges via local access. Documented impact indicates privilege escalation with local access, applicable...

Linux Distros Unpatched Vulnerability : CVE-2025-37935

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: fix SER panic with 4GB+ RAM If the mtkpollrx function detects the...

USN-7690-1 openjdk-17 vulnerabilities

It was discovered that the 2D component of OpenJDK 17 did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2025-30749, CVE-2025-50106 VMashroor Hasan Bhuiyan discovered that the JSSE...

Security Bulletin: WebSphere Service Registry and Repository (WSSR) is affected by IBM SDK, Java Technology Edition Quarterly CPU - July 2025 - Includes Oracle July 2025 CPU plus CVE-2025-30754

Summary WebSphere Application Server is shipped as a component of WebSphere Service Registry and Repository, and it uses the IBM® Java SDK. Information about the IBM® Java SDK July 2025 CPU is available in a Security Bulletin. Vulnerability Details Refer to the security bulletins listed in the...

Linux Distros Unpatched Vulnerability : CVE-2025-50059

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versio...

pybbs 安全漏洞

pybbs is a community platform for Java development by iuiu individual developers. A security vulnerability exists in pybbs 6.0.0 and earlier versions, which originates from a cross-site request forgery caused by the function setCookie in the file src/main/java/co/yiiu/pybbs/util/CookieUtil.java,...