CVE-2025-20973

Improper authentication in Secure Folder prior to version 1.8.12.0 in Android 13, and 1.9.21.00 in Android 14 allows physical attackers to reset the lock type of Secure Folder...

CVE-2025-20973

Improper authentication in Secure Folder prior to version 1.8.12.0 in Android 13, and 1.9.21.00 in Android 14 allows physical attackers to reset the lock type of Secure Folder...

CVE-2025-20973

CVE-2025-20973 corresponds to an improper authentication issue in Samsung Secure Folder. Affected versions are prior to 1.8.12.0 on Android 13 and prior to 1.9.21.00 on Android 14. This vulnerability allows a physical attacker to reset the Secure Folder lock type. Remediation is to update to 1.8....

SAMSUNG Folder 安全漏洞

SAMSUNG Folder is a cell phone folder management program from Samsung South Korea. A security vulnerability exists in SAMSUNG Folder that stems from improper authentication and could allow a physical attacker to reset the Secure Folder lock type...

PT-2025-20058 · Samsung +1 · Secure Folder +2

Name of the Vulnerable Software and Affected Versions: Secure Folder versions prior to 1.8.12.0 in Android 13 Secure Folder versions prior to 1.9.21.00 in Android 14 Description: The issue is related to improper authentication in Secure Folder, allowing physical attackers to reset the lock type...

WEM External task not working when "run script " selected

External task configured using below option for "run script" In the WEM logs we could see below error 12:14:13 PM Warning - VuemExternalTaskExecutor.ExecuteExternalTask : External Task - Create User Cache Folder Id:3 - Unable to validate target file existence... 12:14:13 PM Exception -...

Linux : Session closes immediately while getting gray screen for 10 seconds

When launch connection on linux vda from cloud, for a user the connection closes after a grey windows on vda user home folder is not created but other users may login fine...

No Secondary Node GUI Access, Intermittent issue due to /var over 100% Full

The graphical user interface GUI on the secondary system becomes unresponsive or inaccessible when the /var directory exceeds 100% disk utilization. This is primarily attributed to the /var/log/db/default/lbvserver folder occupying a high amount of storage space. Despite manual removal of files...

CVE-2025-30408

Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect Cloud Agent Windows before build 39904, Acronis Cyber Protect 16 Windows before build 39938...

CVE-2025-30408

Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect Cloud Agent Windows before build 39904, Acronis Cyber Protect 16 Windows before build 39938...

CVE-2025-30408

CVE-2025-30408 is a local privilege escalation affecting Acronis Cyber Protect Cloud Agent (Windows) before build 39904 and Acronis Cyber Protect 16 before build 39938. The root cause is insecure folder permissions that could allow elevation of privileges. Public sources confirm affected versions...

CVE-2025-30408

Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect Cloud Agent Windows before build 39904, Acronis Cyber Protect 16 Windows before build 39938...

PT-2025-17728 · Acronis · Acronis Cyber Protect Cloud Agent

Name of the Vulnerable Software and Affected Versions: Acronis Cyber Protect Cloud Agent Windows versions prior to build 39904 Description: The issue is related to local privilege escalation due to insecure folder permissions. Recommendations: For versions prior to build 39904, update to build...

Dust: Race Condition in Folder Creation Allows Bypassing Folder Limit

The application enforced a hard limit of 10 folders per user under a specific space. However, due to a race condition, it was possible to bypass this limit by sending multiple folder creation requests simultaneously after deleting one folder. This allowed creating more than 10 folders, breaking t...

Rockwell Automation ThinManager 安全漏洞

Rockwell Automation ThinManager is a thin client management software from Rockwell Automation, Inc. It allows thin clients to be assigned to multiple remote desktop servers simultaneously. A security vulnerability exists in Rockwell Automation ThinManager that stems from improper inheritance of...

No, it’s not OK to delete that new inetpub folder

In a new update for the guide concerning CVE-2025-21204 Microsoft told users they need the new inetpub folder for protection. As part of April’s patch Tuesday updates, Microsoft released a patch to a link following flaw in the Windows Update Stack. Applying the patch creates a new...

CVE-2025-21197

Improper access control in Windows NTFS allows an authorized attacker to disclose file path information under a folder where the attacker doesn't have permission to list content...

Moodle 4.1.x < 4.1.3 Arbitrary Folder Creation

According to its self-reported version, the Moodle install hosted on the remote host is prior to 4.1.3. It is, therefore, affected by an Arbitrary Folder creation in TinyMCE. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported versi...

Siemens License Server（SLS） 安全漏洞

Siemens License Server SLS is a tool from Siemens, Germany, for managing and distributing licenses for Siemens software products. A privilege mismanagement vulnerability exists in Siemens License Server that stems from not properly validating an executable file in an application folder, which can...

PT-2025-15482

Name of the Vulnerable Software and Affected Versions Windows Update Stack affected versions not specified Description The vulnerability is related to improper link resolution before file access in the Windows Update Stack, allowing an authorized attacker to elevate privileges locally. This issue...