60 matches found
EUVD-2009-2058
Malware in sbrugna...
EUVD-2009-2798
Malware in sbrugna...
EUVD-2015-1959
Malware in sbrugna...
EUVD-2014-3287
Malware in sbrugna...
EUVD-2011-4767
Malware in sbrugna...
EUVD-2013-4808
Malware in sbrugna...
EUVD-2021-1670
Malware in sbrugna...
EUVD-2022-52416
Malicious code in bioql PyPI...
EUVD-2022-5375
Malicious code in bioql PyPI...
CVE-2025-32878
An issue was discovered on COROS PACE 3 devices through 3.0808.0. It implements a function to connect the watch to a WLAN. This function is mainly for downloading firmware files. Before downloading firmware files, the watch requests some information about the firmware via HTTPS from the back-end...
CVE-2024-24768
1Panel is an open source Linux server operation and maintenance management panel. The HTTPS cookie that comes with the panel does not have the Secure keyword, which may cause the cookie to be sent in plain text if accessed using HTTP. This issue has been patched in version 1.9.6...
CVE-2020-25193
By having access to the hard-coded cryptographic key for GE Reason RT430, RT431 & RT434 GNSS clocks in firmware versions prior to version 08A06, attackers would be able to intercept and decrypt encrypted traffic through an HTTPS connection...
RLSA-2024:3094 Moderate: perl-CPAN security update
The CPAN module is a tool to query, download and build perl modules from CPAN sites. Security Fixes: perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS CVE-2023-31484 For more details about the security issues, including the impact, a CVSS score,...
CVE-2021-47662
CVE-2021-47662 is associated with Franka Emika Robot. The vulnerability arises from missing authorization, enabling an unauthenticated remote attacker to trigger a shutdown button over HTTPS and cause a denial-of-service. Connected sources confirm the issue affects the Franka Emika Robot hardware...
CVE-2021-47662 Unauthenticated remote shutdown of the cobot
Due to missing authorization an unauthenticated remote attacker can cause a DoS attack by connecting via HTTPS and triggering the shutdown button...
CVE-2025-2222
CWE-552: Files or Directories Accessible to External Parties vulnerability over https exists that could leak information and potential privilege escalation following man in the middle attack...
CVE-2024-10718 Cookie without Secure attribute in phpipam/phpipam
In phpipam/phpipam version 1.5.1, the Secure attribute for sensitive cookies in HTTPS sessions is not set. This could cause the user agent to send those cookies in plaintext over an HTTP session, potentially exposing sensitive information. The issue is fixed in version 1.7.0...
CVE-2024-42513
Vulnerability in the OPC UA .NET Standard Stack before 1.5.374.158 allows an unauthorized attacker to bypass application authentication when using HTTPS endpoints...
MGASA-2023-0196 Updated httpie packages fix security vulnerability
Cookie exposure to third parties CVE-2022-24737...
PT-2022-21459 · Wwbn · Wwbn Avideo
Name of the Vulnerable Software and Affected Versions: WWBN AVideo versions 11.6 Description: An information disclosure issue exists in the cookie functionality. The session cookie and the pass cookie miss the HttpOnly flag, making them accessible via JavaScript. The session cookie also misses th...