CVE-2025-14713

An Exposed Dangerous Method or Function vulnerability in Synology C2 Identity Edge Server package in DSM before 1.76.0-0307 allows remote attackers to obtain user credentials from the edge server...

CVE-2025-14713

An Exposed Dangerous Method or Function vulnerability in Synology C2 Identity Edge Server package in DSM before 1.76.0-0307 allows remote attackers to obtain user credentials from the edge server...

CVE-2025-14713

The vulnerability CVE-2025-14713 affects the Synology C2 Identity Edge Server package running on DSM versions prior to 1.76.0-0307. Affected component: Edge Server’s exposed method/function that can be abused to obtain user credentials from the edge server. Root cause is an exposed dangerous meth...

CVE-2025-14713

An Exposed Dangerous Method or Function vulnerability in Synology C2 Identity Edge Server package in DSM before 1.76.0-0307 allows remote attackers to obtain user credentials from the edge server...

Synology C2 Identity Edge Server 安全漏洞

The Synology C2 Identity Edge Server is an edge identity authentication and access management server provided by the Chinese company Synology. There was a security vulnerability in the Synology C2 Identity Edge Server package in versions prior to DSM 1.76.0-0307. This vulnerability stemmed from...

PT-2026-43586

An Exposed Dangerous Method or Function vulnerability in Synology C2 Identity Edge Server package in DSM before 1.76.0-0307 allows remote attackers to obtain user credentials from the edge server...

EnOcean SmartServer IoT 缓冲区错误漏洞

EnOcean SmartServer IoT is a multi-protocol IoT edge server developed by the German company EnOcean. Versions of EnOcean SmartServer IoT prior to 4.60.009 contain a buffer error vulnerability, which stems from improper handling of LON IP-852 management messages, potentially leading to memory leak...

EUVD-2015-7184

Malware in sbrugna...

EUVD-2004-0683

Malware in sbrugna...

Demo: Secure Edge Server for Network Slicing and Resource Allocation in Open RAN

Next-Generation Radio Access Networks NGRAN aim to support diverse vertical applications with strict security, latency, and Service-Level Agreement SLA requirements. These demands introduce challenges in securing the infrastructure, allocating resources dynamically, and enabling real-time...

CVE-2024-50373

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote...

Reproxy - Simple Edge Server / Reverse Proxy

Reproxy is a simple edge HTTPs server / reverse proxy supporting various providers docker, static, file. One or more providers supply information about requested server, requested url, destination url and health check url. Distributed as a single binary or as a docker container. Automatic SSL...

digger (=1.2.11), edge-server (=0.1.2) +9 more potentially affected by unknown CVE via lactate (>=0.11.13 <=0.13.12)

lactate NPM version =0.11.13, =0.3.8, =0.7.0, =0.4.4, =0.3.6, =0.1.1, =0.1.0, =0.0.1, =0.3.2 - transmit =0.4.2 - zetta-beaglebone-proxy =0.1.0 Source cves: unknown CVE Source advisory: OSV:GHSA-68GR-CMCP-G3MJ...

Description of the cumulative update for Office Communications Server 2007 R2, Core Components: September 2011

Describes the cumulative update for Office Communications Server 2007 R2, Core Component that is dated September 2011.SummaryThis article describes the cumulative update for Microsoft Office Communications Server 2007 R2, Core Component that is dated September 2011. ResolutionUpdate package...

Commvault Edge Server Web Console OS Command Injection Vulnerability

Commvault Edge Server is a suite of Simpana-based software that provides end-users with automated data protection and instant access. A security vulnerability in the web console of Commvault Edge Server allows remote attackers to execute arbitrary OS commands using specially crafted serialized da...

CVE-2015-7253

The Web Console in Commvault Edge Server 10 R2 allows remote attackers to execute arbitrary OS commands via crafted serialized data in a cookie...

Design/Logic Flaw

The Web Console in Commvault Edge Server 10 R2 allows remote attackers to execute arbitrary OS commands via crafted serialized data in a cookie...

CVE-2015-7253

The CVE-2015-7253 issue affects Commvault Edge Server 10 R2 Web Console, where deserialization of untrusted cookie data yields remote arbitrary OS command execution with the web server’s privileges (CWE-502). The root cause is deserializing user-provided cookie data without proper validation, ena...

CVE-2015-7253

The Web Console in Commvault Edge Server 10 R2 allows remote attackers to execute arbitrary OS commands via crafted serialized data in a cookie...

Commvault Edge Server deserializes cookie data insecurely

Overview Commvault Edge Server, version 10 R2, deserializes untrusted, user-provided cookie data, resulting in arbitrary OS command execution with the web server's privileges. Description CWE-502: Deserialization of Untrusted Data - CVE-2015-7253Commvault Edge Server, version 10 R2, deserializes...