EUVD-2026-23746

A weakness has been identified in langflow-ai langflow up to 1.8.3. Impacted is the function removeapikeys/hasapiterms of the file src/backend/base/langflow/api/utils/core.py of the component Flow Using API. This manipulation causes unprotected storage of credentials. The attack can be initiated...

How to Manually Update GPG key on Veeam Hardened Repository Appliance

Article Applicability This article is specifically regarding the Veeam Hardened Repository ISO v2 appliance, which was distributed alongside Veeam Backup & Replication 12. For information about manually updating the GPG key on the appliances associated with Veeam Backup & Replication 13, review...

SonicWALL TZ Insufficient Verification of Data Authenticity (CVE-2022-47522)

The IEEE 802.11 specifications through 802.11ax allow physically proximate attackers to intercept possibly cleartext target-destined frames by spoofing a target's MAC address, sending Power Save frames to the access point, and then sending other frames to the access point such as authentication...

SUSE CVE-2023-53386

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix potential use-after-free when clear keys Similar to commit c5d2b6fa26b5 "Bluetooth: Fix use-after-free in hciremoveltk/hciremoveirk". We can not access k after kfreercu call...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a risk of post-release reuse during Bluetooth key removal...

CVE-2025-52983

A UI Discrepancy for Security Feature vulnerability in the UI of Juniper Networks Junos OS on VM Host systems allows a network-based, unauthenticated attacker to access the device. On VM Host Routing Engines RE, even if the configured public key for root has been removed, remote users which are i...

PT-2025-18475

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version Description A vulnerability in the Linux kernel has been resolved. The issue is related to the wifi mac80211 component, where the skb control block key could be removed before the ieee80211 tx...

JWK Set's HTTP client only overwrites and appends JWK to local cache during refresh

The project's provided HTTP client's local JWK Set cache should do a full replacement when the goroutine refreshes the remote JWK Set. The current behavior is to overwrite or append. This is a security issue for use cases that utilize the provided auto-caching HTTP client and where key removal fr...

CVE-2024-12559

CVE-2024-12559 affects the ClickDesigns WordPress plugin. A missing capability check in functions clickdesigns_add_api and clickdesigns_remove_api allows unauthenticated modification of the plugin’s API key across all versions up to 1.8.0. Public records confirm this can enable data modification ...

SUSE-SU-2024:2467-1 Security update for fdo-client

This update for fdo-client fixes the following issues: - Removed build key via utils/keysgen.sh. bsc1216293...

PT-2024-41000 · Unknown · Fdo-Client

Name of the Vulnerable Software and Affected Versions: fdo-client affected versions not specified Description: The issue concerns the removal of a build key via utils/keys gen.sh. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

Exploit for Improper Input Validation in Paloaltonetworks Pan-Os

CVE-2024-3400-pot Simple honeypot for CVE-2024-3400 Palo Alto...

SUSE-SU-2023:4550-1 Security update for fdo-client

This update for fdo-client fixes the following issues: - Removed build key via utils/keysgen.sh. bsc1216293...

SUSE-SU-2023:4549-1 Security update for fdo-client

This update for fdo-client fixes the following issues: - Removed build key via utils/keysgen.sh. bsc1216293...

SUSE-SU-2023:4548-1 Security update for fdo-client

This update for fdo-client fixes the following issues: - Removed build key via utils/keysgen.sh. bsc1216293...

SUSE-SU-2023:4547-1 Security update for fdo-client

This update for fdo-client fixes the following issues: - Removed build key via utils/keysgen.sh. bsc1216293...

PT-2023-36294 · Unknown · Fdo-Client

Name of the Vulnerable Software and Affected Versions: fdo-client affected versions not specified Description: The issue concerns the removal of a build key via utils/keys gen.sh. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

PT-2023-36292 · Unknown · Fdo-Client

Name of the Vulnerable Software and Affected Versions: fdo-client affected versions not specified Description: The issue concerns the removal of a build key via utils/keys gen.sh. No information is provided about the estimated number of potentially affected devices or real-world incidents where...

Android App "Wolt Delivery: Food and more" uses a hard-coded API key for an external service

Overview Android App "Wolt Delivery: Food and more" provided by Wolt uses a hard-coded API key for an external service CWE-798. Naoya Kurosawa of BroadBand Security, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...

PT-2022-35177 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.2 Description: The issue is related to preventing double key removal and unref in the mctp protocol. It was introduced in version v5.18 and fixed in version v6.0.2. The actual impact and attack plausibility...