24 matches found
EUVD-2025-22385
Malicious code in bioql PyPI...
EUVD-2025-22377
Malicious code in bioql PyPI...
CVE-2025-48733
DuraComm SPM-500 DP-10iN-100-MU lacks access controls for a function that should require user authentication. This could allow an attacker to repeatedly reboot the device...
CVE-2025-41425
DuraComm SPM-500 DP-10iN-100-MU is vulnerable to a cross-site scripting attack. This could allow an attacker to prevent legitimate users from accessing the web interface...
CVE-2025-53703
DuraComm SPM-500 DP-10iN-100-MU transmits sensitive data without encryption over a channel that could be intercepted by attackers...
CVE-2025-53703
DuraComm SPM-500 DP-10iN-100-MU transmits sensitive data without encryption over a channel that could be intercepted by attackers...
CVE-2025-48733
DuraComm SPM-500 DP-10iN-100-MU lacks access controls for a function that should require user authentication. This could allow an attacker to repeatedly reboot the device...
CVE-2025-41425
DuraComm SPM-500 DP-10iN-100-MU is vulnerable to a cross-site scripting attack. This could allow an attacker to prevent legitimate users from accessing the web interface...
CVE-2025-41425 DuraComm DP-10iN-100-MU Cross-site Scripting
DuraComm SPM-500 DP-10iN-100-MU is vulnerable to a cross-site scripting attack. This could allow an attacker to prevent legitimate users from accessing the web interface...
CVE-2025-41425
The CVE-2025-41425 entry concerns the DuraComm SPM-500 DP-10iN-100-MU device, with a cross-site scripting (XSS) vulnerability reported across multiple sources (NVD, RH, CVE list, security advisories). Affected component is the web interface; exploitation could prevent legitimate users from access...
CVE-2025-41425 DuraComm DP-10iN-100-MU Cross-site Scripting
DuraComm SPM-500 DP-10iN-100-MU is vulnerable to a cross-site scripting attack. This could allow an attacker to prevent legitimate users from accessing the web interface...
CVE-2025-48733 DuraComm DP-10iN-100-MU Missing Authentication for Critical Function
DuraComm SPM-500 DP-10iN-100-MU lacks access controls for a function that should require user authentication. This could allow an attacker to repeatedly reboot the device...
CVE-2025-48733 DuraComm DP-10iN-100-MU Missing Authentication for Critical Function
DuraComm SPM-500 DP-10iN-100-MU lacks access controls for a function that should require user authentication. This could allow an attacker to repeatedly reboot the device...
CVE-2025-48733
CVE-2025-48733 affects the DuraComm SPM-500 DP-10iN-100-MU. The issue is missing access controls for a function that should require user authentication, enabling an attacker to repeatedly reboot the device. The CISA ICS advisory and related Red Hat/CISA/NVD entries corroborate the impact on devic...
CVE-2025-53703 DuraComm DP-10iN-100-MU Cleartext Transmission of Sensitive Information
DuraComm SPM-500 DP-10iN-100-MU transmits sensitive data without encryption over a channel that could be intercepted by attackers...
CVE-2025-53703
CVE-2025-53703 affects the DuraComm SPM-500 DP-10iN-100-MU. The vulnerability arises because the device transmits sensitive data over a channel without encryption, potentially allowing interception by an attacker. The CVSS metrics indicate a high impact on confidentiality (C: High in CVSS 3.1; V4...
CVE-2025-53703 DuraComm DP-10iN-100-MU Cleartext Transmission of Sensitive Information
DuraComm SPM-500 DP-10iN-100-MU transmits sensitive data without encryption over a channel that could be intercepted by attackers...
CISA Releases Nine Industrial Control Systems Advisories
CISA released nine Industrial Control Systems ICS advisories on July 22, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-203-01 DuraComm DP-10iN-100-MU ICSA-25-203-02 Lantronix Provisioning Manager...
DuraComm SPM-500 DP-10iN-100-MU 访问控制错误漏洞
The DuraComm SPM-500 DP-10iN-100-MU is a DC power distribution panel from DuraComm, Inc. An access control error vulnerability exists in the DuraComm SPM-500 DP-10iN-100-MU, which stems from functional access control that lacks user authentication, and could cause an attacker to repeatedly reboot...
DuraComm SPM-500 DP-10iN-100-MU 跨站脚本漏洞
The DuraComm SPM-500 DP-10iN-100-MU is a DC power distribution panel from DuraComm USA. A cross-site scripting vulnerability exists in the DuraComm SPM-500 DP-10iN-100-MU, which stems from susceptibility to cross-site scripting attacks that could prevent a legitimate user from accessing the web...