24 matches found
CVE-2022-50950 Webile 1.0.1 Directory Traversal Vulnerability via Web Application
Webile 1.0.1 contains a directory traversal vulnerability that allows remote attackers to manipulate file system paths without authentication. Attackers can exploit path manipulation to access sensitive system directories and potentially compromise the mobile device's local file system...
EUVD-2014-3024
Malware in sbrugna...
EUVD-2005-2219
Malware in sbrugna...
CVE-2025-10653
An unauthenticated debug port may allow access to the device file system...
EUVD-2025-32203
Malicious code in bioql PyPI...
CVE-2025-10653
An unauthenticated debug port may allow access to the device file system...
CVE-2025-10653
Technical details such as affected products/versions, root cause, and remediation are not publicly provided in the connected documents. Monitor for updates from vendors and security feeds to obtain concrete information and a confirmed fix.
CVE-2025-10653 Raise3D Pro2 Series 3D Printers Authentication Bypass Using an Alternate Path or Channel
An unauthenticated debug port may allow access to the device file system...
CVE-2025-10653 Raise3D Pro2 Series 3D Printers Authentication Bypass Using an Alternate Path or Channel
An unauthenticated debug port may allow access to the device file system...
PT-2025-40419
Name of the Vulnerable Software and Affected Versions affected versions not specified Description An unauthenticated debug port may allow access to the device file system. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability...
Raisecom MSG1200 安全漏洞
The Raisecom MSG1200 is a Gigabit Converged Gateway from Raisecom China. A security vulnerability exists in the Raisecom MSG1200 that stems from an unauthenticated debug port that may allow access to the device file system...
Western Telematic NPS Series、DSM Series和CPM Series 安全漏洞
Western Telematic NPS Series and others are products of Western Telematic, Inc.Western Telematic NPS Series is a series of network power switches.Western Telematic DSM Series is a series of console servers. Western Telematic CPM Series is a series of console servers. A security vulnerability exis...
ECOVACS robot lawnmowers 安全漏洞
ECOVACS robot lawnmowers is a series of lawnmowers from the Chinese company ECOVACS. A security vulnerability exists in ECOVACS robot lawnmowers that originates from storing the anti-theft PIN in plaintext in the device file system. An attacker could steal the lawnmower, read the PIN, and reset t...
PHOENIX CONTACTs WP 6xxx series web panels Security Vulnerability
PHOENIX CONTACTs WP 6xxx series web panels are a series of web panels from PHOENIX CONTACTs, Germany. A security vulnerability exists in PHOENIX CONTACT WP 6xxx series versions prior to 4.0.10, which originates in the web panels, where a remote attacker with low privileges can gain limited read...
Information leakage vulnerability of multiple Siemens products
Siemens Desigo PX is a building automation control system from Siemens, a German company. The information disclosure vulnerability in several Siemens products stems from the fact that the endpoint of the "Operation" web application that interprets and executes Axon language queries allows file re...
CVE-2022-40177
A vulnerability has been identified in Desigo PXM30-1 All versions V02.20.126.11-41, Desigo PXM30.E All versions V02.20.126.11-41, Desigo PXM40-1 All versions V02.20.126.11-41, Desigo PXM40.E All versions V02.20.126.11-41, Desigo PXM50-1 All versions V02.20.126.11-41, Desigo PXM50.E All versions...
CVE-2022-40177
A vulnerability has been identified in Desigo PXM30-1 All versions V02.20.126.11-41, Desigo PXM30.E All versions V02.20.126.11-41, Desigo PXM40-1 All versions V02.20.126.11-41, Desigo PXM40.E All versions V02.20.126.11-41, Desigo PXM50-1 All versions V02.20.126.11-41, Desigo PXM50.E All versions...
CVE-2014-3001
The device file system aka devfs in FreeBSD 10.0 before p2 does not load default rulesets when booting, which allows context-dependent attackers to bypass intended restrictions by leveraging a jailed device node process...
Design/Logic Flaw
The device file system aka devfs in FreeBSD 10.0 before p2 does not load default rulesets when booting, which allows context-dependent attackers to bypass intended restrictions by leveraging a jailed device node process...
CVE-2014-3001
Removed by vendor...