CVE-2026-34391 Fleet Vulnerable to Windows MDM cross-device command disclosure

Fleet is open source device management software. Prior to 4.81.1, a vulnerability in Fleet's Windows MDM command processing allows a malicious enrolled device to access MDM commands intended for other devices, potentially exposing sensitive configuration data such as WiFi credentials, VPN secrets...

EUVD-2017-17357

Malware in sbrugna...

EUVD-2017-5235

Malware in sbrugna...

EUVD-2023-42715

Malicious code in bioql PyPI...

CVE-2025-41689

An unauthenticated remote attacker can get access without password protection to the affected device. This enables the unprotected read-only access to the stored measurement data...

PT-2025-33716 · Unknown · Fluke Process Instruments Devices

Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: An unauthenticated remote attacker can grant access without password protection to the affected device, enabling unprotected read-only access to stored measurement data. Recommendations: At the...

Linux Distros Unpatched Vulnerability : CVE-2022-49932

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KVM: VMX: Do all initialization before exposing /dev/kvm to userspace Call kvminit only after all setup is complete, as kvminit exposes /dev/kvm to userspace an...

CVE-2025-50777

The firmware of the AZIOT 2MP Full HD Smart Wi-Fi CCTV Home Security Camera version V1.00.02 contains an Incorrect Access Control vulnerability that allows local attackers to gain root shell access. Once accessed, the device exposes critical data including Wi-Fi credentials and ONVIF service...

SUSE-SU-2025:01747-1 Security update for grub2

This update for grub2 fixes the following issues: Security fixes: - CVE-2025-4382: exposure of data from encrypted device through CLI once the root device is successfully unlocked via TPM bsc1242971. Other bug fixes: - Fix incorrect nvme disks and boot order in bootlist output bsc1237174...

CVE-2024-28077

A denial-of-service issue was discovered on certain GL-iNet devices. Some websites can detect devices exposed to the external network through DDNS, and consequently obtain the IP addresses and ports of devices that are exposed. By using special usernames and special characters such as half...

PT-2025-6473

Name of the Vulnerable Software and Affected Versions Palo Alto Networks PAN-OS versions prior to the fix released on February 13, 2025 Description An authentication bypass vulnerability exists in Palo Alto Networks PAN-OS, allowing an unauthenticated attacker with network access to the managemen...

DEBIAN-CVE-2024-53222

In the Linux kernel, the following vulnerability has been resolved: zram: fix NULL pointer in compalgorithmshow LTP reported a NULL pointer dereference as followed: CPU: 7 UID: 0 PID: 5995 Comm: cat Kdump: loaded Not tainted 6.12.0-rc6+ 3 Hardware name: QEMU KVM Virtual Machine, BIOS 0.0.0...

ABB Cylon Aspect 3.08.01 (oosManagerAjax.php) Information Manipulation

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description The ABB BMS/BAS controller suffers from an unauthenticated informatio...

CVE-2024-23330 Tuta loads images from external resources

Tuta is an encrypted email service. In versions prior to 119.10, an attacker can attach an image in a html mail which is loaded from external resource in the default setting, which should prevent loading of external resources. When displaying emails containing external content, they should be...

CVE-2022-23035

Insufficient cleanup of passed-through device IRQs The management of IRQs associated with physical devices exposed to x86 HVM guests involves an iterative operation in particular when cleaning up after the guest's use of the device. In the case where an interrupt is not quiescent yet at the time...

FiberHome HG6245D devices 安全漏洞

Fiber is an open source web framework written in the Go language . A security vulnerability exists in FiberHome HG6245D that can be exploited by an attacker to extract information from the device...

Unspecified Vulnerability in Apple iOS Notes

Apple iOS is an operating system developed by Apple for mobile devices, and Notes is a memo component. A security vulnerability exists in the Notes component in Apple iOS versions prior to 12.1. A local attacker can exploit the vulnerability to share content on a locked device...