31 matches found
EUVD-2025-12358
Malicious code in bioql PyPI...
EUVD-2022-37810
Malicious code in bioql PyPI...
EUVD-2022-37811
Malicious code in bioql PyPI...
CVE-2022-34906
A hard-coded cryptographic key is used in FileWave before 14.6.3 and 14.7.x before 14.7.2. Exploitation could allow an unauthenticated actor to decrypt sensitive information saved in FileWave, and even send crafted requests...
CVE-2022-34907
An authentication bypass vulnerability exists in FileWave before 14.6.3 and 14.7.x before 14.7.2. Exploitation could allow an unauthenticated actor to gain access to the system with the highest authority possible and gain full control over the FileWave platform...
CVE-2025-43922
The FileWave Windows client before 16.0.0, in some non-default configurations, allows an unprivileged local user to escalate privileges to SYSTEM...
CVE-2025-43922
The FileWave Windows client before 16.0.0, in some non-default configurations, allows an unprivileged local user to escalate privileges to SYSTEM...
CVE-2025-43922
The FileWave Windows client before 16.0.0, in some non-default configurations, allows an unprivileged local user to escalate privileges to SYSTEM...
FileWave Windows client 安全漏洞
FileWave Windows client is an end-to-end management software client from FileWave Switzerland. A security vulnerability exists in FileWave Windows client versions prior to 16.0.0, which stems from certain non-default configurations that could cause a local user to elevate privileges to SYSTEM...
CVE-2025-43922
The FileWave Windows client before 16.0.0, in some non-default configurations, allows an unprivileged local user to escalate privileges to SYSTEM...
CVE-2025-43922
CVE-2025-43922 affects the FileWave Windows client prior to 16.0.0. In non-default configurations, an unprivileged local user can escalate to SYSTEM. The vulnerability is documented across multiple feeds; the basic impact is local privilege escalation with high severity (CVSS 3.1: LOCAL, NONE/CON...
PT-2025-17450 · Filewave · Filewave Windows Client
Name of the Vulnerable Software and Affected Versions: FileWave Windows client versions prior to 16.0.0 Description: The issue allows an unprivileged local user to escalate privileges to SYSTEM in certain non-default configurations. Recommendations: For versions prior to 16.0.0, update to version...
The vulnerability of cross-platform solutions for managing mobile devices from FileWave lies in the use of a rigidly encrypted cryptographic key, which allows attackers to gain access to protected information.
The vulnerability of the cross-platform solution for managing mobile devices by FileWave lies in the use of a rigidly encrypted cryptographic key. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to the protected information...
The vulnerability of the web server of the cross-platform solution for managing mobile devices by FileWave, related to errors during authentication procedures, allows a hacker to gain full access to the platform.
The vulnerability of the FileWave cross-platform server for managing mobile devices is related to errors during the authentication process. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain full access to the platform...
Critical FileWave MDM Flaws Open Organization-Managed Devices to Remote Hackers
FileWave's mobile device management MDM system has been found vulnerable to two critical security flaws that could be leveraged to carry out remote attacks and seize control of a fleet of devices connected to it. "The vulnerabilities are remotely exploitable and enable an attacker to bypass...
CVE-2022-34907
An authentication bypass vulnerability exists in FileWave before 14.6.3 and 14.7.x before 14.7.2. Exploitation could allow an unauthenticated actor to gain access to the system with the highest authority possible and gain full control over the FileWave platform...
CVE-2022-34906
A hard-coded cryptographic key is used in FileWave before 14.6.3 and 14.7.x before 14.7.2. Exploitation could allow an unauthenticated actor to decrypt sensitive information saved in FileWave, and even send crafted requests...
CVE-2022-34907
An authentication bypass vulnerability exists in FileWave before 14.6.3 and 14.7.x before 14.7.2. Exploitation could allow an unauthenticated actor to gain access to the system with the highest authority possible and gain full control over the FileWave platform...
CVE-2022-34906
A hard-coded cryptographic key is used in FileWave before 14.6.3 and 14.7.x before 14.7.2. Exploitation could allow an unauthenticated actor to decrypt sensitive information saved in FileWave, and even send crafted requests...
CVE-2022-34907
An authentication bypass vulnerability exists in FileWave before 14.6.3 and 14.7.x before 14.7.2. Exploitation could allow an unauthenticated actor to gain access to the system with the highest authority possible and gain full control over the FileWave platform...