SICK TDC-X401GL has security vulnerabilities

The SICK TDC-X401GL is a edge computing gateway developed by the German company SICK. The SICK TDC-X401GL has a security vulnerability. This vulnerability allows attackers with limited permissions to still write files to specific locations on the device, potentially leading to system manipulation...

PT-2026-2995

Name of the Vulnerable Software and Affected Versions affected versions not specified Description An attacker with limited permissions may be able to write files to specific locations on a device, potentially leading to system manipulation. Recommendations At the moment, there is no information...

CVE-2018-18877

In firmware version MS2.6.9900 of Columbia Weather MicroServer, an authenticated web user can access an alternative configuration page configmain.php that allows manipulation of the device...

Petlibro Smart Pet Feeder Platform 安全漏洞

Petlibro Smart Pet Feeder Platform is a smart pet management system from Petlibro. A security vulnerability exists in Petlibro Smart Pet Feeder Platform version 1.7.31 and earlier, which stems from improper access control and could lead to unauthorized device manipulation...

CVE-2018-25140 FLIR Thermal Traffic Cameras V1.01-0bb5b27 Unauthenticated Websocket Device Manipulation

FLIR thermal traffic cameras contain an unauthenticated device manipulation vulnerability in their WebSocket implementation that allows attackers to bypass authentication and authorization controls. Attackers can directly modify device configurations, access system information, and potentially...

CVE-2018-25140 FLIR Thermal Traffic Cameras V1.01-0bb5b27 Unauthenticated Websocket Device Manipulation

FLIR thermal traffic cameras contain an unauthenticated device manipulation vulnerability in their WebSocket implementation that allows attackers to bypass authentication and authorization controls. Attackers can directly modify device configurations, access system information, and potentially...

CVE-2018-25140

CVE-2018-25140 concerns FLIR thermal traffic cameras. The connected documents confirm an unauthenticated manipulation vulnerability in the cameras’ WebSocket implementation, enabling attackers to bypass authentication/authorization and directly alter device configurations and access system inform...

EUVD-2018-10588

Malware in sbrugna...

EUVD-2017-9438

Malware in sbrugna...

EUVD-2018-2288

Malware in sbrugna...

EUVD-2013-6263

Malware in sbrugna...

EUVD-2024-47526

Malicious code in bioql PyPI...

EUVD-2023-25681

Malicious code in bioql PyPI...

EUVD-2021-33043

Malicious code in bioql PyPI...

ALSA-2025:A006 Important: libblockdev security update

libblockdev is a C library supporting GObject introspection for manipulation of block devices. It has a plugin-based architecture where each technology like LVM, Btrfs, MD RAID, Swap,... is implemented in a separate plugin, possibly with multiple implementations e.g. using LVM CLI or the new LVM...

CVE-2025-24315

Unauthenticated attackers can add devices of other users to their scenes or arbitrary scenes of other arbitrary users...

CVE-2025-24315 Growatt Cloud portal Authorization Bypass Through User-Controlled Key

Unauthenticated attackers can add devices of other users to their scenes or arbitrary scenes of other arbitrary users...

CVE-2025-2859 Improper Authentication vulnerability in saTECH BCU

An attacker with network access, could capture traffic and obtain user cookies, allowing the attacker to steal the active user session and make changes to the device via web, depending on the privileges obtained by the user...

ROS-20241211-01

The vulnerability of the OpenSC smart card software toolkit and libraries is related to the fact that, that in pkcs15init buffers are partially filled with data, and initialized portions of the buffer can be accessed by bypassing the restrictions. Exploitation of the vulnerability could allow an...

CVE-2024-6422 Pepperl+Fuchs: OIT Products can be manipulated via unintended Telnet access

An unauthenticated remote attacker can manipulate the device via Telnet, stop processes, read, delete and change data...