CVE-2025-12915 70mai X200 Init Script file inclusion

A vulnerability was found in 70mai X200 up to 20251019. This issue affects some unknown processing of the component Init Script Handler. The manipulation results in file inclusion. The attack requires a local approach. A high complexity level is associated with this attack. The exploitability is...

CVE-2025-12915

CVE-2025-12915 – 70mai X200 : Affects versions up to 20251019. The issue stems from the Init Script Handler component, enabling a local file-inclusion flaw. Attack requires local access with high complexity; exploitability is described as difficult. Public exploit exists. Vendor has been contacte...

CVE-2025-12915 70mai X200 Init Script file inclusion

A vulnerability was found in 70mai X200 up to 20251019. This issue affects some unknown processing of the component Init Script Handler. The manipulation results in file inclusion. The attack requires a local approach. A high complexity level is associated with this attack. The exploitability is...

PT-2025-45572

Name of the Vulnerable Software and Affected Versions 70mai X200 versions up to 20251019 Description A flaw exists in the Init Script Handler component of the software that allows for file inclusion. The attack requires local access and is considered difficult to exploit. The exploit has been...

70mai X200 安全漏洞

70mai X200 is a head-only car recorder from 70mai 70mai, a Chinese company. A security vulnerability exists in 70mai X200 20251019 and earlier versions, which stems from a file inclusion issue in the component Init Script Handler that could lead to a local attack...

EUVD-2005-3118

Malware in sbrugna...

EUVD-2017-15563

Malware in sbrugna...

EUVD-2017-6287

Malware in sbrugna...

EUVD-2013-0358

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987116)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987116 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix off by one in BIOS boundary checking Bounds checking when parsing init scripts...

EUVD-2024-25284

Malicious code in bioql PyPI...

[SECURITY] Fedora 42 Update: corosync-3.1.9-3.fc42

This package contains the Corosync Cluster Engine Executive, several default APIs and libraries, default configuration files, and an init script...

[SECURITY] Fedora 40 Update: corosync-3.1.9-2.fc40

This package contains the Corosync Cluster Engine Executive, several default APIs and libraries, default configuration files, and an init script...

[SECURITY] Fedora 41 Update: corosync-3.1.9-2.fc41

This package contains the Corosync Cluster Engine Executive, several default APIs and libraries, default configuration files, and an init script...

K000148351: PostgreSQL vulnerabilities CVE-2017-15098, CVE-2017-14798, CVE-2016-7048, CVE-2016-5424, and CVE-2016-5423

Security Advisory Description CVE-2017-15098 Invalid jsonpopulaterecordset or jsonbpopulaterecordset function calls in PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, 9.5.x before 9.5.10, 9.4.x before 9.4.15, and 9.3.x before 9.3.20 can crash the server or disclose a few bytes of server memory...

CVE-2024-28137

A local attacker with low privileges can perform a privilege escalation with an init script due to a TOCTOU vulnerability...

CVE-2024-28137 PHOENIX CONTACT: privilege escalation due to a TOCTOU vulnerability in the CHARX Series

A local attacker with low privileges can perform a privilege escalation with an init script due to a TOCTOU vulnerability...

PT-2024-22287 · Phoenix Contact · Charx Sec-3100

Name of the Vulnerable Software and Affected Versions: Phoenix Contact CHARX SEC-3100 affected versions not specified Description: A local attacker with low privileges can perform a privilege escalation with an init script due to a Time-of-Check-to-Time-of-Use TOCTOU vulnerability. Recommendation...

RHEL 6 / 7 : rh-mysql57-mysql (RHSA-2018:3655)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3655 advisory. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs. The...

selinux-policy bug fix update

An update is available for selinux-policy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The selinux-policy packages contain the rules that govern how confined...