59 matches found
CVE-2026-60104
Bitwarden Server before 2026.6.0 is vulnerable to an authorization bypass in the admin/auth request flow. A low-privileged organization member can exploit a mismatch in the POST /auth-requests/admin-request handling to bind a Trusted Device Encryption request to an attacker-controlled public key,...
PT-2026-56552
Name of the Vulnerable Software and Affected Versions Bitwarden Server versions prior to 2026.6.0 Description An issue exists where the server fails to verify if the email address provided in the body of the 'POST /auth-requests/admin-request' endpoint belongs to the authenticated user. This allo...
EUVD-2026-3306
ESPHome vulnerable to denial-of-service via out-of-bounds check bypass in the API component...
EUVD-2008-6979
Malware in sbrugna...
EUVD-2015-2645
Malware in sbrugna...
EUVD-2011-5017
Malware in sbrugna...
EUVD-2012-4661
Malware in sbrugna...
EUVD-2018-20183
Malware in sbrugna...
EUVD-2025-21810
Malicious code in bioql PyPI...
EUVD-2024-49456
Malicious code in bioql PyPI...
CVE-2025-7433
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution...
CVE-2025-7433
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution...
CVE-2025-7433
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution...
PT-2025-29962 · Sophos · Sophos Intercept X For Windows With Central Device Encryption +1
Name of the Vulnerable Software and Affected Versions: Sophos Intercept X for Windows with Central Device Encryption versions 2025.1 and older Description: A local privilege escalation vulnerability allows arbitrary code execution. Recommendations: Update Sophos Intercept X for Windows with Centr...
CVE-2011-5117
Sophos SafeGuard Enterprise Device Encryption 5.x through 5.50.8.13, Sophos SafeGuard Easy Device Encryption Client 5.50.x, and Sophos Disk Encryption 5.50.x have a delay before removal of 1 out-of-date credentials and 2 invalid credentials, which allows physically proximate attackers to defeat t...
CVE-2024-8885
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2024.2.0 and older allows writing of arbitrary files...
CVE-2024-8885
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2024.2.0 and older allows writing of arbitrary files...
CVE-2024-8885
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2024.2.0 and older allows writing of arbitrary files...
CVE-2024-8885
The CVE-2024-8885 entry pertains to a local privilege escalation in Sophos Intercept X for Windows with Central Device Encryption, affecting version 2024.2.0 and earlier. The root cause is tied to unsupported third‑party components within the Device Encryption component, enabling arbitrary file w...
PT-2024-7629 · Sophos · Sophos Intercept X
Name of the Vulnerable Software and Affected Versions: Sophos Intercept X for Windows with Central Device Encryption versions 2024.2.0 and earlier Description: A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption allows writing of arbitrary...