243 matches found
MAL-2025-14075 Malicious code in additor-elements-evo (npm)
The package additor-elements-evo was found to contain malicious code...
A Hybrid Intrusion Detection System with a New Approach to Protect the Cybersecurity of Cloud Computing
Cybersecurity is one of the foremost challenges facing the world of cloud computing. Recently, the widespread adoption of smart devices in cloud computing environments that provide Internet-based services has become prevalent. Therefore, it is essential to consider the security threats in these...
CVE-2023-50121
Autel EVO NANO drone flight control firmware version 1.6.5 is vulnerable to denial of service DoS...
CVE-2023-47335
Insecure permissions in the setNFZEnable function of Autel Robotics EVO Nano drone v1.6.5 allows attackers to breach the geo-fence and fly into no-fly zones...
CVE-2018-15807
POSIM EVO 15.13 for Windows includes an "Emergency Override" administrative account that may be accessed through POSIM's "override" feature. This Override prompt expects a code that is computed locally using a deterministic algorithm. This code may be generated by an attacker and used to bypass a...
CVE-2018-15808
POSIM EVO 15.13 for Windows includes hardcoded database credentials for the "root" database user. "root" access to POSIM EVO's database may result in a breach of confidentiality, integrity, or availability or allow for attackers to remotely execute code on associated POSIM EVO clients...
Malicious code in evo-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1963187cd4dc65fd86ae4bdae898bd2fea39e8e6a8464b3b00e2a83f5dcbb95b The OpenSSF Package Analysis project identified 'evo-web' @ 100.0.2 npm as malicious. It is considered malicious because: - The package executes...
MAL-2025-3949 Malicious code in evo-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1963187cd4dc65fd86ae4bdae898bd2fea39e8e6a8464b3b00e2a83f5dcbb95b The OpenSSF Package Analysis project identified 'evo-web' @ 100.0.2 npm as malicious. It is considered malicious because: - The package executes...
CVE-2024-10385 Stored XSS in DirectAdmin Evo Skin
Ticket management system in DirectAdmin Evolution Skin is vulnerable to XSS Cross-site Scripting, which allows a low-privileged user to inject and store malicious JavaScript code. If an admin views the ticket, the script might perform actions with their privileges, including command execution. ...
Malicious code in eslint-plugin-evo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04325a96cfbff0b91342138baf94c31960794bb6b22d270ae933581f0da5df5f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10243 Malicious code in eslint-plugin-evo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04325a96cfbff0b91342138baf94c31960794bb6b22d270ae933581f0da5df5f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
The vulnerability of the PFE (evo-pfemand) control demon in JunOS Evolved operating systems allows a intruder to trigger a service failure.
The vulnerability of the PFE evo-pfemand control demon for JunOS Evolved is related to the unlimited distribution of resources. Exploiting this vulnerability allows a malicious actor to cause service failures by executing arbitrary commands through the command line interface, or by sending...
CVE-2024-47509
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS.When specific SNMP GET operations or specifi...
CVE-2024-47505
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS.When specific SNMP GET operations or specifi...
CVE-2024-47508
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS.When specific SNMP GET operations or specifi...
CVE-2024-39544 Junos OS Evolved: Low privileged local user able to view NETCONF traceoptions files
An Incorrect Default Permissions vulnerability in the command line interface CLI of Juniper Networks Junos OS Evolved allows a low privileged local attacker to view NETCONF traceoptions files, representing an exposure of sensitive information. On all Junos OS Evolved platforms, when NETCONF...
PT-2024-7197 · Juniper Networks · Junos Evolved
Name of the Vulnerable Software and Affected Versions: JunOS Evolved affected versions not specified Description: The issue is related to an unbounded resource allocation in the PFE management daemon evo-pfemand of JunOS Evolved operating systems. An attacker, acting remotely, can exploit this...
CVE-2024-8497
Franklin Fueling Systems TS-550 EVO versions prior to 2.26.4.8967 possess a file that can be read arbitrarily that could allow an attacker obtain administrator credentials...
Franklin Fueling TS-550 EVO Automatic Tank Gauge 安全漏洞
Franklin Fueling TS-550 EVO Automatic Tank Gauge is an automated industrial tank gauge from Franklin Fueling USA. A security vulnerability previously existed in the Franklin Fueling TS-550 EVO Automatic Tank Gauge version 2.26.4.8967, which stemmed from administrator credentials being stored in a...
CVE-2024-8497
CVE-2024-8497 affects Franklin Fueling Systems TS-550 EVO prior to version 2.26.4.8967. The flaw is an absolute path traversal that allows reading a file containing administrator credentials, enabling an attacker to obtain admin access to the device. The vulnerability is exploitable remotely with...