CVE-2025-1081

A vulnerability was found in Bharti Airtel Xstream Fiber up to 20250123. It has been rated as problematic. This issue affects some unknown processing of the component WiFi Password Handler. The manipulation leads to use of weak credentials. The attack needs to be done within the local network. Th...

CVE-2025-1880

A vulnerability was found in i-Drive i11 and i12 up to 20250227. It has been classified as problematic. Affected is an unknown function of the component Device Pairing. The manipulation leads to authentication bypass by primary weakness. It is possible to launch the attack on the physical device...

CVE-2025-1804

A vulnerability was found in Blizzard Battle.Net up to 2.39.0.15212 on Windows and classified as critical. Affected by this issue is some unknown functionality in the library profapi.dll. The manipulation leads to uncontrolled search path. The attack needs to be approached locally. The complexity...

CVE-2025-15107

A security vulnerability has been detected in actiontech sqle up to 4.2511.0. The impacted element is an unknown function of the file sqle/utils/jwt.go of the component JWT Secret Handler. The manipulation of the argument JWTSecretKey leads to use of hard-coded cryptographic key . The attack is...

CVE-2025-15083

A vulnerability was determined in TOZED ZLT M30s up to 1.47. The affected element is an unknown function of the component UART Interface. Executing manipulation can lead to on-chip debug and test interface with improper access control. The physical device can be targeted for the attack. Attacks o...

CVE-2025-15083 TOZED ZLT M30s UART on-chip debug and test interface with improper access control

A vulnerability was determined in TOZED ZLT M30s up to 1.47. The affected element is an unknown function of the component UART Interface. Executing manipulation can lead to on-chip debug and test interface with improper access control. The physical device can be targeted for the attack. Attacks o...

CVE-2025-15083

TOZED ZLT M30s devices (

CVE-2025-13433 Muse Group MuseHub Windows Service Muse.Updater.exe unquoted search path

A security flaw has been discovered in Muse Group MuseHub 2.1.0.1567. The affected element is an unknown function of the file C:\Program Files\WindowsApps\Muse.MuseHub2.1.0.1567x64rb9pth70m6nz6\Muse.Updater.exe of the component Windows Service. The manipulation results in unquoted search path. Th...

EUVD-2025-117445

Malicious code in difficult-ivory-dingo npm...

EUVD-2025-117444

Malicious code in difficult-orange-dove npm...

EUVD-2025-79426

Malicious code in difficultbutterflyz3n npm...

EUVD-2025-79425

Malicious code in difficultmulez3n npm...

EUVD-2025-82209

Malicious code in difficultpanther0xrequest npm...

EUVD-2025-64532

Malicious code in difficultjackalz3n npm...

EUVD-2025-64530

Malicious code in difficultwolverinerequirement npm...

EUVD-2025-86480

Malicious code in difficultwallabyz3n npm...

Malicious code in difficult-turquoise-stingray (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7c3364341e8864a47d15cee7b7842ed57e7bc5c54c2d824563fdc1c47eb67c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-54895

Malicious code in difficult-turquoise-stingray npm...

EUVD-2025-60071

Malicious code in difficultswallowz3n npm...

CVE-2025-12915

A vulnerability was found in 70mai X200 up to 20251019. This issue affects some unknown processing of the component Init Script Handler. The manipulation results in file inclusion. The attack requires a local approach. A high complexity level is associated with this attack. The exploitability is...