Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-25832

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00491EPSS
Exploits0References1
NVD
NVD
added 2025/08/26 6:15 a.m.22 views

CVE-2025-41702

The JWT secret key is embedded in the egOS WebGUI backend and is readable to the default user. An unauthenticated remote attacker can generate valid HS256 tokens and bypass authentication/authorization due to the use of hard-coded cryptographic key...

9.8CVSS0.00491EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/26 6:10 a.m.17 views

CVE-2025-41702 egOS WebGUI Hard-Coded JWT Secret Enables Authentication Bypass

The JWT secret key is embedded in the egOS WebGUI backend and is readable to the default user. An unauthenticated remote attacker can generate valid HS256 tokens and bypass authentication/authorization due to the use of hard-coded cryptographic key...

9.8CVSS0.00491EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/26 6:10 a.m.5 views

CVE-2025-41702 egOS WebGUI Hard-Coded JWT Secret Enables Authentication Bypass

The JWT secret key is embedded in the egOS WebGUI backend and is readable to the default user. An unauthenticated remote attacker can generate valid HS256 tokens and bypass authentication/authorization due to the use of hard-coded cryptographic key...

9.8CVSS7.4AI score0.00491EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/26 12:0 a.m.1 views

Welotec多款产品 安全漏洞

Welotec EG400Mk2 series and Welotec EG500Mk2 series are a series of edge IoT computing gateways from Welotec, Germany. A security vulnerability exists in several Welotec products that stems from JWT keys hardcoded in the egOS WebGUI backend, which could lead to bypassing authentication and...

9.8CVSS6.8AI score0.00491EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.6 views

PT-2025-34744

Name of the Vulnerable Software and Affected Versions: egOS WebGUI affected versions not specified Description: The JWT secret key is embedded in the egOS WebGUI backend and is readable to the default user. An unauthenticated remote attacker can generate valid HS256 tokens and bypass...

9.8CVSS6.5AI score0.00491EPSS
Exploits0References13
Carbon Black Blog
Carbon Black Blog
added 2019/12/04 4:0 p.m.47 views

Our Communication Strategy to Help Development Make the Switch to Kubernetes

VMware Carbon Black has acquired a lot of technology as it has grown. That means we have a lot of different tooling in play that is both costly and complex to manage. Our VP of Engineering recognized this and created a new team specifically tasked with creating a unified system infrastructure and...

7.1AI score
Exploits0
Rows per page
Query Builder