14 matches found
CVE-2025-64530
Apollo Federation is an architecture for declaratively composing APIs into a unified graph. A vulnerability in versions of Apollo Federation's composition logic prior to 2.9.5, 2.10.4, 2.11.5, and 2.12.1 allowed some queries to Apollo Router to improperly bypass access controls on types/fields...
EUVD-2015-8558
Malware in sbrugna...
CVE-2025-7213
CVE-2025-7213 concerns FNKvision FNK-GU2 devices (firmware versions up to 40.1.7) with an on‑chip debug/test interface exposed via the UART Interface. The root cause is improper access control of the UART interface, enabling unauthorized access to the on‑chip debug/test functionality. Impact is d...
PT-2025-13698 · Tenda · Tenda Fh1202
Name of the Vulnerable Software and Affected Versions: Tenda FH1202 version 1.2.0.14408 Description: A critical issue affects the Web Management Interface component, specifically the unknown processing of the file /goform/SysToolDDNS. This leads to improper access controls, allowing for remote...
Huawei PC Manager 安全漏洞
Huawei PC Manager is a computer management application from Huawei China. A security vulnerability exists in Huawei PC Manager, which stems from improper interface access control, and can be exploited by an attacker to potentially cause a SMRAM leak...
Security Advisory - Inappropriate Interface access Control Vulnerability in a Huawei PC Product
A Huawei PC product has a vulnerability in improper interface access control. Successful exploitation of this vulnerability may cause SMRAM leaks.Vulnerability ID:HWPSIRT-2023-98172 This vulnerability has been assigned a CVEID:CVE-2023-52712...
CVE-2023-20256
Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass a configured access control list ACL and allow traffic that should be denied to flo...
PT-2023-7556 · Cisco · Cisco Ftd +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Cisco Firepower Threat Defense FTD Software affected versions not specified Description: Multiple vulnerabilities in the per-user-override feature could allow an...
SSPanel UIM 安全漏洞
SSPanel UIM is a multi-purpose proxy service sales management system designed for the Shadowsocks / V2Ray / Trojan protocols by the individual developer Anankke. A security vulnerability exists in SSPanel UIM version 2023.3, which stems from not restricting access to the interface, leading to the...
CVE-2015-8681
The ovisp driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01...
CVE-2015-8307
The Graphics driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL00 before...
CVE-2015-8680
The Graphics driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL00 before...
CVE-2015-8680
The CVE-2015-8680 entry describes an interface access control vulnerability in Huawei P8 and Mate S devices where the graphics driver can be manipulated by a crafted app with graphics permission to cause a denial of service (system crash) or gain privileges. Affected software includes Huawei mode...
Security Advisory - Multiple Security Vulnerabilities in Driver of Huawei Smart Phones
There are multiple security vulnerabilities in driver of some Huawei smart phones. There are two interface access control vulnerabilities in Graphics driver. An attacker may trick a user into installing a malicious application and application can exploit the vulnerability to crash the system or...