SUSE CVE-2026-43147

In the Linux kernel, the following vulnerability has been resolved: Revert "PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV" This reverts commit 05703271c3cd "PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV", which causes a deadlock by recursively takin...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50296)

hns3: A kernel crash may occur when the driver is uninstalled and the VF is disabled concurrently. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...

EUVD-2023-48461

Malicious code in bioql PyPI...

PT-2025-24934 · Tenda · Tenda Fh1202

Name of the Vulnerable Software and Affected Versions: Tenda FH1202 version 1.2.0.14 Description: A critical issue was found in the function fromVirtualSer of the file /goform/VirtualSer. The manipulation of the argument page leads to a stack-based buffer overflow. It is possible to launch the...

PT-2025-23414 · Jeewms · Jeewms

Name of the Vulnerable Software and Affected Versions: JeeWMS versions up to 20250504 Description: A critical issue has been found in the function dogenerateOne2Many of the file /generateController.do?dogenerateOne2Many of the component File Handler, leading to improper access controls. The attac...

PT-2025-22934

Name of the Vulnerable Software and Affected Versions Open Asset Import Library Assimp version 5.4.3 Description A vulnerability has been found in Open Asset Import Library Assimp, affecting the function MDLImporter::ParseSkinLump 3DGS MDL7 of the file...

PT-2025-18146 · Unknown · Prison Management System

Name of the Vulnerable Software and Affected Versions: code-projects Prison Management System version 1.0 Description: A critical vulnerability was found in the Prison Management System, affecting the addrecord function of the Prison Mgmt Sys component. The manipulation of the filename argument...

PT-2025-17462 · Panhainan · Ds-Java

Name of the Vulnerable Software and Affected Versions: panhainan DS-Java version 1.0 Description: A critical issue affects the function uploadUserPic.action of the file src/com/phn/action/FileUpload.java. The manipulation of the argument fileUpload leads to code injection. The attack may be...

PT-2025-17205 · D Link · Dir 832

Name of the Vulnerable Software and Affected Versions: dlink DIR 832 version 240802 Description: The issue allows a remote attacker to execute arbitrary code via the function 0x41dda8. Recommendations: For dlink DIR 832 version 240802, consider disabling the function 0x41dda8 as a temporary...

PT-2025-20730 · Tenda · Tenda Fh451

Name of the Vulnerable Software and Affected Versions: Tenda FH451 version 1.0.0.9 Description: The issue concerns a remote code execution vulnerability in the formSafeEmailFilter function. This allows for unauthorized execution of code, potentially leading to security breaches. Recommendations:...

PT-2025-14788 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda Ac15 version 15.13.07.13 Description: A buffer overflow issue has been discovered. It occurs when the webCgiGetUploadFile function calls the socketRead function to process HTTP request messages, resulting in the overwriting of a buffer ...

PT-2025-14724 · Assimp +2 · Assimp +2

Name of the Vulnerable Software and Affected Versions: Open Asset Import Library Assimp version 5.4.3 Description: A critical issue has been found in the Open Asset Import Library Assimp, affecting the function Assimp::LWO::AnimResolver::UpdateAnimRangeSetup in the file...

PT-2025-12705 · Tenda · Tenda Ac8

Name of the Vulnerable Software and Affected Versions: Tenda AC8 version 16.03.34.06 Description: The issue concerns a buffer overflow vulnerability in the fromSetRouteStatic function, which can be exploited via the parameter list. Recommendations: For Tenda AC8 version 16.03.34.06, consider...

PT-2025-14761

Name of the Vulnerable Software and Affected Versions Open Asset Import Library Assimp version 5.4.3 Description A critical issue was found in the ASE File Handler component, specifically affecting the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices in the file...

PT-2025-25550 · Assimp +1 · Assimp +1

Name of the Vulnerable Software and Affected Versions: Open Asset Import Library Assimp versions up to 5.4.3 Description: A critical issue was found in the Open Asset Import Library Assimp. The read meshes function in the library is affected, leading to a heap-based buffer overflow. This issue ca...

PT-2024-7700 · Tp Link · Tp-Link Tl-Wdr5620

Name of the Vulnerable Software and Affected Versions: TP-LINK TL-WDR5620 version 2.3 Description: A remote code execution RCE vulnerability exists in TP-LINK TL-WDR5620 via the httpProcDataSrv function. This issue allows a remote attacker to execute arbitrary code. The vulnerability occurs due t...

PT-2024-1320 · Totolink · Totolink N200Re

Name of the Vulnerable Software and Affected Versions: Totolink N200RE version 9.3.5u.6139 B20201216 Description: A critical vulnerability has been found, affecting the main function of the /cgi-bin/cstecgi.cgi file. This issue leads to a stack-based buffer overflow, which can be exploited...

PT-2023-27645 · Tenda · Tenda Ac23

Name of the Vulnerable Software and Affected Versions: Tenda AC23 version 16.03.07.45 cn Description: The issue arises from the sub 451784 function not validating user-entered parameters, leading to a stack overflow. Recommendations: For Tenda AC23 version 16.03.07.45 cn, as a temporary workaroun...

PT-2023-26643 · Comfast · Comfast Cf-Xr11

Name of the Vulnerable Software and Affected Versions: COMFAST CF-XR11 version 2.7.2 Description: An issue in COMFAST CF-XR11 allows an attacker to execute arbitrary code via the destination parameter of the sub 431F64 function in bin/webmgnt. Recommendations: For COMFAST CF-XR11 version 2.7.2,...

PT-2022-26875 · Ip Com · Ip-Com Ew9

Name of the Vulnerable Software and Affected Versions: IP-COM EW9 version 15.11.0.149732 Description: A command injection issue was found in the formSetDebugCfg function, which could potentially be exploited. Recommendations: For IP-COM EW9 version 15.11.0.149732, as a temporary workaround,...