173 matches found
EUVD-2004-1187
Malware in sbrugna...
EUVD-2001-1464
Malware in sbrugna...
EUVD-2022-49228
Malicious code in bioql PyPI...
EUVD-2023-39834
Malicious code in bioql PyPI...
EUVD-2024-48213
Malicious code in bioql PyPI...
EUVD-2022-39098
Malicious code in bioql PyPI...
EUVD-2025-26418
Malicious code in bioql PyPI...
EUVD-2023-46398
Malicious code in bioql PyPI...
EUVD-2025-31162
Malicious code in bioql PyPI...
EUVD-2025-4191
Malicious code in bioql PyPI...
PT-2025-39455
Name of the Vulnerable Software and Affected Versions Flock Safety Bravo Edge AI Compute Device version BRAVO 00.00 local 20241017 Description The Flock Safety Bravo Edge AI Compute Device version BRAVO 00.00 local 20241017 ships with Secure Boot disabled. This allows an attacker to flash modifie...
ABB Terra AC Wallbox
SUMMARY ABB is aware of vulnerabilities in the product versions listed as affected in the advisory. An attacker who successfully exploited this vulnerability could cause the pollution of heap memory which potentially takes remote control of the product and performs a write operation to the flash...
CVE-2025-41664 Improper Permission Handling Enables Unauthorized Access to Firmware and Certificates
A low-privileged remote attacker could gain unauthorized access to critical resources, such as firmware and certificates, due to improper permission handling during the runtime of services e.g., FTP/SFTP. This access could allow the attacker to escalate privileges and modify firmware...
CVE-2025-55581
D-Link DCS-825L firmware version 1.08.01 and possibly prior versions contain an insecure implementation in the mydlink-watch-dog.sh script. The script monitors and respawns the dcp and signalc binaries without validating their integrity, origin, or permissions. An attacker with filesystem access...
Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2 (Update A)
RISK EVALUATION Successful exploitation of these vulnerabilities may allow an attacker to modify firmware and access the space that is protected by the device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities,...
CVE-2025-48468
Successful exploitation of the vulnerability could allow an attacker that has physical access to interface with JTAG to inject or modify firmware...
CVE-2025-48468
Successful exploitation of the vulnerability could allow an attacker that has physical access to interface with JTAG to inject or modify firmware...
CVE-2025-48468
CVE-2025-48468 centers on an open JTAG debug port that, with physical access, lets an attacker inject or modify firmware. Multiple connected sources tie this to Advantech industrial controllers (e.g., WISE-4010LAN, WISE-4050LAN, WISE-4060LAN) and describe the root cause as reliance on a JTAG inte...
CVE-2025-48468 Open JTAG Debug Port
Successful exploitation of the vulnerability could allow an attacker that has physical access to interface with JTAG to inject or modify firmware...
CVE-2025-48468 Open JTAG Debug Port
Successful exploitation of the vulnerability could allow an attacker that has physical access to interface with JTAG to inject or modify firmware...