PT-2025-31805 · Intelbras · Intelbras Incontrol

Name of the Vulnerable Software and Affected Versions: Intelbras InControl version 2.21.60.9 Description: A vulnerability exists in Intelbras InControl that allows for information disclosure. The issue is related to the processing of the /v1/operador/ JSON Endpoint. The exploitation of this issue...

CVE-2025-6526 70mai M300 HTTP Server insufficiently protected credentials

A vulnerability, which was classified as problematic, has been found in 70mai M300 up to 20250611. This issue affects some unknown processing of the component HTTP Server. The manipulation leads to insufficiently protected credentials. The attack can only be done within the local network. The...

CVE-2025-6139

CVE-2025-6139 affects TOTOLINK T10, version 4.1.8cu.5207. A vulnerability in the file /etc/shadow.sample allows use of a hard-coded password due to trust-management weaknesses. Attack requires proximity (local network) with high complexity, and the vulnerability potentially impacts confidentialit...

Ackites KillWxapkg Zip Bomb Resource Exhaustion

A vulnerability was found in Ackites KillWxapkg up to 2.4.1. It has been rated as problematic. This issue affects some unknown processing of the component wxapkg File Decompression Handler. The manipulation leads to resource consumption. The attack may be initiated remotely. The complexity of an...

CVE-2025-4534 SunGrow Logger1000 weak password

A vulnerability, which was classified as problematic, has been found in SunGrow Logger1000 01A. This issue affects some unknown processing. The manipulation leads to weak password requirements. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is...

CVE-2025-3122 WebAssembly wabt binary-reader-interp.cc BeginFunctionBody null pointer dereference

A vulnerability classified as problematic was found in WebAssembly wabt 1.0.36. Affected by this vulnerability is the function BinaryReaderInterp::BeginFunctionBody of the file src/interp/binary-reader-interp.cc. The manipulation leads to null pointer dereference. The attack can be launched...

CVE-2025-2148

CVE-2025-2148 : PyTorch 2.6.0+cu124 contains a vulnerability affecting torch.ops.profiler._call_end_callbacks_on_jit_fut in the Tuple Handler. Manipulating the argument None can cause memory corruption. The report notes a remote attack with high impact and high attack complexity; no explicit reme...

CVE-2025-1341

CVE-2025-1341 affects PMWeb 7.2.0, specifically the Setting Handler component, causing weak password requirements. Several connected sources confirm remote exploitation potential with high attack complexity and a high overall risk (CVSS 3.1: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H; base 8.1). Exploit...

CVE-2025-1147 GNU Binutils nm nm.c internal_strlen buffer overflow

A vulnerability has been found in GNU Binutils 2.43 and classified as problematic. Affected by this vulnerability is the function sanitizer::internalstrlen of the file binutils/nm.c of the component nm. The manipulation of the argument const leads to buffer overflow. The attack can be launched...