FortiClient EMS - Authentication Bypass

Detects whether Fortinet hotfix FG-IR-26-099 for CVE-2026-35616 is missing by comparing behavioral responses from a certificate-authenticated endpoint. The template sends X-SSL-CLIENT-VERIFY: SUCCESS without certificate material and checks whether this spoofed header changes server behavior. id:...

InHand IR Series 安全漏洞

The InHand IR Series is a series of industrial-grade cellular wireless routers produced by InHand Corporation in the United States. Several products in the InHand IR Series have security vulnerabilities. These vulnerabilities stem from command injection in the Admin Access function, which may all...

InHand IR Series 安全漏洞

The InHand IR Series is a series of industrial-grade cellular wireless routers produced by InHand Corporation in the United States. The InHand IR Series contains a security vulnerability, which stems from command injection in the ZeroTier VPN function. This vulnerability could allow attackers to...

InHand IR Series 安全漏洞

The InHand IR Series is a series of industrial-grade cellular wireless routers produced by InHand Corporation in the United States. The InHand IR Series contains a security vulnerability, which stems from command injection in the WireGuard VPN function. This vulnerability may allow attackers to...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: media: irtoy: free before error exiting The leak in the error handling path has been fixed...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fixed a potential memory leak in intelsetupirqremapping. After committing e3beca48a45b “irqdomain/treewide: Keep the firmware node unconditionally allocated”. For theardown scenario, the fn variable is only freed afte...

Fortinet FortiManager DoS due to unsafe function in signal handler (FG-IR-26-137)

The version of FortiManager installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-26-137 advisory. - A use of potentially Dangerous Function vulnerability CWE-676 in FortiAnalyzer and FortiManager API may allow an...

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: media: rc: gpio-ir-recv: add remove function In case runtime PM is enabled, do runtime PM clean up to remove cpu latency qos request, otherwise driver removal may have below kernel dump: 19.463299 Unable to handle kernel NULL...

CVE-2025-61624

creationtimestamp| type| source ---|---|--- 2026-04-14 04:00:00+00:00| exploited| https://fortiguard.fortinet.com/psirt/FG-IR-26-122...

WordPress plugin Manoir 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

Fortinet FortiAnalyzer SSO authentication bypass (FG-IR-26-060)

The version of FortiAnalyzer installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-26-060 advisory. - An Authentication Bypass Using an Alternate Path or Channel vulnerability CWE-288 in FortiOS, FortiManager, FortiAnalyz...

ROS-20260120-73-0005

A vulnerability in the inputevent function of the drivers/hid/hid-appleir.c module of the Linux kernel is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

MiracleLinux 8 : kernel-4.18.0-240.el8 (AXSA:2021-1489:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1489:04 advisory. kernel: use after free in the video driver leads to local privilege escalation CVE-2019-9458 kernel: use-after-free in drivers/bluetooth/hcildisc.c...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004422)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004422 advisory. In the Linux kernel before 5.1.6, there is a use-after-free in serialirinitmodule in drivers/media/rc/serialir.c. Tenable has extracted the preceding description blo...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003990)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003990 advisory. In the Linux kernel before 5.1.6, there is a use-after-free in serialirinitmodule in drivers/media/rc/serialir.c. Tenable has extracted the preceding description blo...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004170)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004170 advisory. A memory leak in the cx23888irprobe function in drivers/media/pci/cx23885/cx23888-ir.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of servi...

CVE-2025-1073

Panasonic IR Control Hub IR Blaster versions 1.17 and earlier may allow an attacker with physical access to load unauthorized firmware onto the device...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000295)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000295 advisory. In the Linux kernel before 5.1.6, there is a use-after-free in serialirinitmodule in drivers/media/rc/serialir.c. Tenable has extracted the preceding description blo...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993121)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993121 advisory. In the Linux kernel, the following vulnerability has been resolved: media: rc: gpio-ir-recv: add remove function In case runtime PM is enabled, do runtime PM clean u...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992562)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992562 advisory. In the Linux kernel, the following vulnerability has been resolved: media: rc: gpio-ir-recv: add remove function In case runtime PM is enabled, do runtime PM clean u...