Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001629)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001629 advisory. A kernel data leak due to an out-of-bound read was found in the Linux kernel in inetdiagmsgsctp,laddrfill and sctpgetsctpinfo functions present since version 4.7-rc1...

PT-2025-46148

Name of the Vulnerable Software and Affected Versions JetBrains ReSharper versions prior to 2025.2.4 Description A missing signature verification in the DPA Collector component allows for local privilege escalation. The DPA Collector is likely responsible for collecting or transmitting diagnostic...

EUVD-2021-25437

Malware in sbrugna...

EUVD-2024-37659

Malicious code in bioql PyPI...

EUVD-2025-24146

Malicious code in bioql PyPI...

CVE-2025-8862

CVE-2025-8862 involves YugabyteDB collecting diagnostics from servers, which may include sensitive gflag configurations. The underlying issue is that this information is not properly redacted in some versions, leading to potential exposure. The connected documents consistently state the mitigatio...

CVE-2025-8862

YugabyteDB has been collecting diagnostics information from YugabyteDB servers, which may include sensitive gflag configurations. To mitigate this, we recommend upgrading the database to a version where this information is properly redacted...

CVE-2024-38878

A vulnerability has been identified in Omnivise T3000 Application Server R9.2 All versions, Omnivise T3000 R8.2 SP3 All versions, Omnivise T3000 R8.2 SP4 All versions. Affected devices allow authenticated users to export diagnostics data. The corresponding API endpoint is susceptible to path...

CVE-2024-38878

A vulnerability has been identified in Omnivise T3000 Application Server R9.2 All versions, Omnivise T3000 R8.2 SP3 All versions, Omnivise T3000 R8.2 SP4 All versions. Affected devices allow authenticated users to export diagnostics data. The corresponding API endpoint is susceptible to path...

PT-2023-32575 · Unknown · Syrus4 Iot Gateway

Name of the Vulnerable Software and Affected Versions: Syrus4 IoT Gateway affected versions not specified Description: The Syrus4 IoT gateway has an unsecured MQTT server, allowing a remote unauthenticated attacker to execute arbitrary commands on connected devices. This exposes location, video,...

Cloudflare WARP 安全漏洞

Cloudflare WARP Cloudflare Vpn is a client application for secure connections from Cloudflare, Inc. in the United States. A security vulnerability exists in Cloudflare WARP client versions prior to v2023.3.381.0, which stems from an insufficient access control policy on the IPC naming pipeline th...

CVE-2021-45034

A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C All versions V16.20, CP-8000 MASTER MODULE WITH I/O -40/+70°C All versions V16.20, CP-8021 MASTER MODULE All versions V16.20, CP-8022 MASTER MODULE WITH GPRS All versions V16.20. The web server of the affected system...

CVE-2021-39000

IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local attacker to obtain sensitive information by inclusion of sensitive data within diagnostics. IBM X-Force ID: 213215...

September 20, 2018—KB4457141 (OS Build 15063.1358)

September 20, 2018—KB4457141 OS Build 15063.1358 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses an issue that causes Internet Explorer security and certificate dialogs to displa...

Microsoft Finally Reveals What Data Windows 10 Collects From Your PC

Since the launch of Windows 10, there has been widespread concern about its data collection practices, mostly because Microsoft has been very secretive about the telemetry data it collects. Now, this is going to be changed, as Microsoft wants to be more transparent on its diagnostics data...

DEBIAN-CVE-2013-4112

The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information diagnostic information and execute arbitrary code by reusing valid credentials...

JGroups: Authentication via cached credentials

The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information diagnostic information and execute arbitrary code by reusing valid credentials...