54 matches found
MINI-FPPX-85HP-W245
Bulletin has no description...
CVE-2026-49129 Music Player Daemon < 0.24.11 SSRF via CurlInputPlugin
Music Player Daemon MPD before version 0.24.11 contains a server-side request forgery vulnerability in CurlInputPlugin where CURLOPTFOLLOWLOCATION is set without CURLOPTREDIRPROTOCOLSSTR, allowing unauthenticated attackers to bypass the http/https scheme restriction by causing a malicious HTTP...
Astra Linux – Vulnerability in Firefox
The incorrect use of the '' method could lead to a “user-after-poison” situation and potentially cause a exploitable crash. This vulnerability affects Firefox versions earlier than 85...
ECHO-E665-D744-85DB
Bulletin has no description...
UBUNTU-CVE-2026-31785
In the Linux kernel, the following vulnerability has been resolved: drm/xe/xepagefault: Disallow writes to read-only VMAs The page fault handler should reject write/atomic access to read only VMAs. Add code to handle this in xepagefaultservice after the VMA lookup. v2: - Apply max line length...
MINI-RP8X-JX56-6X85
Bulletin has no description...
CVE-2025-26385
Johnson Controls Metasys component listed below have Improper Neutralization of Special Elements used in a Command Command Injection Vulnerability . Successful exploitation of this vulnerability could allow remote SQL execution This issue affects Metasys: Application and Data Server ADS installed...
EUVD-2026-2485
In the Linux kernel, the following vulnerability has been resolved: media: adv7842: Avoid possible out-of-bounds array accesses in adv7842cplogstatus It's possible for cpread and hdmiread to return -EIO. Those values are further used as indexes for accessing arrays. Fix that by checking return...
CVE-2022-50585
creationtimestamp| type| source ---|---|--- 2025-10-31 14:55:18+00:00| seen| Telegram/ixl2blQGt5NCej39GZvtCOfIe1N9SFZgdl1oPswDSRDrM...
MINI-VC88-85MM-R5H6
Bulletin has no description...
Linux Distros Unpatched Vulnerability : CVE-2021-23962
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect use of the '' method could have led to a user-after-poison and a potentially exploitable crash. This vulnerability affects Firefox ' method could have...
Linux Distros Unpatched Vulnerability : CVE-2021-23955
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The browser could have been confused into transferring a pointer lock state into another tab, which could have lead to clickjacking attacks. This vulnerability...
CVE-2024-23765
An issue was discovered on HMS Anybus X-Gateway AB7832-F 3 devices. The gateway exposes an unidentified service on port 7412 on the network. All the network services of the gateway become unresponsive after sending 85 requests to this port. The content and length of the frame does not matter. The...
CVE-2022-2985
In music service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additional execution privileges needed...
AZL-60288 CVE-2025-21962 affecting package kernel for versions less than 6.6.85.1-2
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing closetimeo mount option User-provided mount parameter closetimeo of type u32 is intended to have an upper limit, but before it is validated, the value is converted from seconds to jiffi...
AZL-59876 CVE-2025-21936 affecting package kernel for versions less than 6.6.85.1-2
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Add check for mgmtallocskb in mgmtdeviceconnected Add check for the return value of mgmtallocskb in mgmtdeviceconnected to prevent null pointer dereference...
Ghost CMS Security Vulnerability
Ghost CMS is an open source headless content management system CMS written in JavaScript from the Ghost Foundation in Singapore. A security vulnerability exists in Ghost CMS version 5.85.1 and earlier, which originates from a remote attacker bypassing the authentication rate-limiting protection...
PT-2024-3749 · Unknown · Cpci85 Central Processing/Communication +1
Name of the Vulnerable Software and Affected Versions: CPCI85 Central Processing/Communication versions prior to V5.30 SICORE Base system versions prior to V1.3.0 Description: A command injection vulnerability exists due to missing server-side input sanitation in the web interface of affected...
CVE-2012-3785
creationtimestamp| type| source ---|---|--- 2023-11-04 08:43:51+00:00| seen| https://t.me/cibsecurity/70469...
Siemens CP-8031 信任管理问题漏洞
The SICAM A8000 RTU Remote Terminal Unit series is a modular family of devices for remote control and automation applications in all areas of energy supply. A hard-coded credentials vulnerability exists in the CPCI85 firmware of the Siemens SICAM A8000 device, which can be exploited by an attacke...