CVE-2025-14547 ECJ-PAKE Integer Underflow Vulnerability in Silicon Labs PSA Crypto and SE Manager APIs

An integer underflow vulnerability is present in Silicon Lab’s implementation of PSA Crypto and SE Manager EC-JPAKE APIs during ZKP parsing. Triggering the underflow can lead to a hard fault, causing a temporary denial of service...

CVE-2025-63211

Stored cross-site scripting vulnerability in bridgetech VBC Server & Element Manager, firmware versions 6.5.0-9 thru 6.5.0-10, allows attackers to execute arbitrary code via the addName parameter to the /vbc/core/userSetupDoc/userSetupDoc endpoint...

Bridgetech VBC Server & Element Manager 安全漏洞

Bridgetech VBC Server & Element Manager is a broadcast core software platform from Bridgetech Norway. A security vulnerability exists in Bridgetech VBC Server & Element Manager versions 6.5.0-10 and 6.5.0-9, which originates from a vulnerability that could allow an unauthorized attacker to delete...

PT-2025-47515

Name of the Vulnerable Software and Affected Versions bridgetech VBC Server & Element Manager versions 6.5.0-9 through 6.5.0-10 Description A stored cross-site scripting issue exists in bridgetech VBC Server & Element Manager. Successful exploitation allows attackers to execute arbitrary code. Th...

CVE-2025-63214

An issue was discovered in bridgetech VBC Server & Element Manager, firmware version 6.5.0-10 , 6.5.0-9, allowing unauthorized attackers to delete and create arbitrary accounts...

CVE-2025-63214

The CVE-2025-63214 affects bridgetech VBC Server & Element Manager, firmware 6.5.0-9 and 6.5.0-10, allowing unauthorized attackers to delete and create arbitrary accounts. Public sources (PT-2025-47526) recommend updating to a version newer than 6.5.0-10. Risk/exploitation details are not specifi...

PT-2025-47526

Name of the Vulnerable Software and Affected Versions bridgetech VBC Server & Element Manager versions 6.5.0-9 through 6.5.0-10 Description An issue exists in bridgetech VBC Server & Element Manager that allows unauthorized attackers to create and delete arbitrary accounts. Recommendations Update...

Bridgetech VBC Server & Element Manager 安全漏洞

Bridgetech VBC Server & Element Manager is a broadcast core software platform from Bridgetech Norway. A security vulnerability exists in Bridgetech VBC Server & Element Manager versions 6.5.0-9 through 6.5.0-10, which originates from a stored cross-site script in the addName parameter of the...

EUVD-2017-15764

Malware in sbrugna...

EUVD-2023-29936

Malicious code in bioql PyPI...

EUVD-2023-29153

Malicious code in bioql PyPI...

CVE-2023-25189

BTS is affected by information disclosure vulnerability where mobile network operator personnel connected over BTS Web Element Manager, regardless of the access privileges, having a possibility to read BTS service operation details performed by Nokia Care service personnel via SSH...

CVE-2022-43675

An issue was discovered in NOKIA NFM-T R19.9. Reflected XSS in the Network Element Manager exists via /oms1350/pages/otn/cpbLogDisplay via the filename parameter, under /oms1350/pages/otn/connection/E2ERoutingDisplayWithOverLay via the id parameter, and under /oms1350/pages/otn/mainOtn via all...

CVE-2023-25189

BTS is affected by information disclosure vulnerability where mobile network operator personnel connected over BTS Web Element Manager, regardless of the access privileges, having a possibility to read BTS service operation details performed by Nokia Care service personnel via SSH...

Nokia Airscale ASIKA Single RAN 安全漏洞

Nokia Airscale ASIKA Single RAN is an application for end-to-end use by Nokia of Finland. A security vulnerability exists in Nokia Airscale ASIKA Single RAN, which originates from a mobile network operator's personnel connected to the BTS Web Element Manager, regardless of their access rights, ma...

PT-2024-12050 · Nokia · Bts

Name of the Vulnerable Software and Affected Versions: BTS affected versions not specified Description: The issue concerns an information disclosure vulnerability. Mobile network operator personnel connected over BTS Web Element Manager can read BTS service operation details performed by Nokia Ca...

CVE-2023-25189

Summary: CVE-2023-25189 is an information-disclosure vulnerability affecting Nokia BTS Web Element Manager, enabling mobile network operator personnel to read BTS service operation details performed by Nokia Care personnel via SSH, regardless of their access privileges. Affected component: BTS We...

CVE-2022-41762

An issue was discovered in NOKIA NFM-T R19.9. Multiple Reflected XSS vulnerabilities exist in the Network Element Manager via any parameter to log.pl, the bench or pid parameter to top.pl, or the id parameter to easy1350.pl...

CVE-2022-41760

An issue was discovered in NOKIA NFM-T R19.9. Relative Path Traversal can occur under /oms1350/data/cpb/log of the Network Element Manager via the filename parameter, allowing a remote authenticated attacker to read arbitrary files...

CVE-2022-39820

In Network Element Manager in NOKIA NFM-T R19.9, an Unprotected Storage of Credentials vulnerability occurs under /root/RestUploadManager.xml.DRC and /DEPOT/KECustom199/OTNEDRC/RestUploadManager.xml. A remote user, authenticated to the operating system, with access privileges to the directory /ro...