13 matches found
CVE-2026-35371
The id utility in uutils coreutils exhibits incorrect behavior in its "pretty print" output when the real UID and effective UID differ. The implementation incorrectly uses the effective GID instead of the effective UID when performing a name lookup for the effective user. This results in misleadi...
CVE-2025-36744
SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device repeatedly initializes and waits for boot instructions, the bootloader emits diagnostic output this behavior can leak operating system information...
CVE-2025-36744
SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device repeatedly initializes and waits for boot instructions, the bootloader emits diagnostic output this behavior can leak operating system information...
CVE-2025-36744
SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device repeatedly initializes and waits for boot instructions, the bootloader emits diagnostic output this behavior can leak operating system information...
CVE-2025-36744 SolarEdge SE3680H - Information Exposure during Bootloader Loop
SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device repeatedly initializes and waits for boot instructions, the bootloader emits diagnostic output this behavior can leak operating system information...
CVE-2025-36744
CVE-2025-36744 affects SolarEdge SE3680H hardware. The issue is an unauthenticated disclosure of sensitive information during the bootloader loop: as the device reinitializes and waits for boot instructions, the bootloader emits diagnostic output that can leak operating system information. This d...
EUVD-2025-203083
SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device repeatedly initializes and waits for boot instructions, the bootloader emits diagnostic output this behavior can leak operating system information...
CVE-2025-36744 SolarEdge SE3680H - Information Exposure during Bootloader Loop
SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device repeatedly initializes and waits for boot instructions, the bootloader emits diagnostic output this behavior can leak operating system information...
PT-2025-50935
SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device repeatedly initializes and waits for boot instructions, the bootloader emits diagnostic output this behavior can leak operating system information...
PT-2025-44513
Name of the Vulnerable Software and Affected Versions Nagios Log Server versions prior to 2024R2.0.2 Description The software contains a flaw in the AD/LDAP user import functionality where the password field is not properly masked during import. This can lead to the exposure of plaintext password...
Node.js: Node.js Certificate Verification Bypass via String Injection
This is a report on behalf of Google, who did not want to report through H1. --- Summary Node’s APIs for reporting certificate fields are ambiguous and allow bypassing certificate verification in some circumstances. Details In light of CVE-2021-3712, I’ve been looking at code which misuses...
Rockwell Automation 1794 - 16 Point 24V dc Diagnostic Output Module 1794-OB16D/A General Purpose Discrete I/O
Binary data 752609.prm...
[slackware-security] gnupg
New gnupg packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/gnupg-1.4.23-i586-1slack14.2.txz: Upgraded. Sanitize the diagnostic output of the original file name i...