118 matches found
Yealink T21P_E2 安全漏洞
Yealink T21PE2 is an IP Phone from China Yealink. A security vulnerability exists in Yealink T21PE2 Phone version 52.84.0.15, which stems from a path traversal issue in the Diagnostics Component Read function, which could allow a remote attacker to read arbitrary files...
CVE-2025-66738
An issue in Yealink T21PE2 Phone 52.84.0.15 allows a remote normal privileged attacker to execute arbitrary code via a crafted request the ping function of the diagnostic component...
CVE-2025-14228
A weakness has been identified in Yealink SIP-T21P E2 52.84.0.15. Impacted is an unknown function of the component Local Directory Page. This manipulation causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be...
CVE-2025-14228 Yealink SIP-T21P E2 Local Directory cross site scripting
A weakness has been identified in Yealink SIP-T21P E2 52.84.0.15. Impacted is an unknown function of the component Local Directory Page. This manipulation causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be...
EUVD-2025-201706
A weakness has been identified in Yealink SIP-T21P E2 52.84.0.15. Impacted is an unknown function of the component Local Directory Page. This manipulation causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be...
CVE-2025-14228
CVE-2025-14228 affects Yealink SIP-T21P E2 (firmware 52.84.0.15). The issue is a cross-site scripting vulnerability in an unknown function of the Local Directory Page, allowing remote initiation of an attack. Public exploit code exists and has been reported through multiple feeds, with vendor con...
Yealink SIP-T21P E2 代码注入漏洞
Yealink SIP-T21P E2 is an enterprise IP phone from China Yealink. A code injection vulnerability exists in Yealink SIP-T21P E2 version 52.84.0.15, which originates from a cross-site scripting vulnerability in the local catalog page component...
EUVD-2018-10725
Malware in sbrugna...
EUVD-2014-4655
Malware in sbrugna...
EUVD-2024-32439
Malicious code in bioql PyPI...
EUVD-2023-46121
Malicious code in bioql PyPI...
EUVD-2024-53928
Malicious code in bioql PyPI...
EUVD-2023-48319
Malicious code in bioql PyPI...
CVE-2025-52551
CVE-2025-52551 concerns Copeland E2 Facility Management Systems, where a proprietary protocol permits unauthenticated file operations on any file in the file system. The CVSS-based assessment in the initial record indicates a critical impact (high confidentiality, integrity, and availability impa...
Malicious code in @zalastax/nolb-_e2 (npm)
The package @zalastax/nolb-e2 was found to contain malicious code...
MAL-2025-9957 Malicious code in @zalastax/nolb-_e2 (npm)
The package @zalastax/nolb-e2 was found to contain malicious code...
Securing Open RAN: a Survey of Cryptographic Challenges and Emerging Solutions for 5G
The advent of Open Radio Access Networks O-RAN introduces modularity and flexibility into 5G deployments but also surfaces novel security challenges across disaggregated interfaces. This literature review synthesizes recent research across thirteen academic and industry sources, examining...
CVE-2024-34035
An issue was discovered in O-RAN Near Realtime RIC H-Release. To trigger the crashing of the e2mgr, an adversary must flood the system with a significant quantity of E2 Subscription Requests originating from an xApp...
CVE-2024-34035
An issue was discovered in O-RAN Near Realtime RIC H-Release. To trigger the crashing of the e2mgr, an adversary must flood the system with a significant quantity of E2 Subscription Requests originating from an xApp...
CVE-2024-34035
An issue was discovered in O-RAN Near Realtime RIC H-Release. To trigger the crashing of the e2mgr, an adversary must flood the system with a significant quantity of E2 Subscription Requests originating from an xApp...