50 matches found
CVE-2025-4386
Medtronic MyCareLink Patient Monitor has an internal serial interface, which allows an attacker with physical access to access a login prompt via a UART terminal....
CVE-2026-49194
The debugging routine SCREENCLICK5053 enables a connection to skip the standard device login prompt entirely and directly enter an interactive shell interface...
CVE-2026-49194 SCREEN_CLICK Authentication Bypass
The debugging routine SCREENCLICK5053 enables a connection to skip the standard device login prompt entirely and directly enter an interactive shell interface...
CVE-2026-49194
Technical details about CVE-2026-49194 are not publicly available in the provided documents; monitor for updates.
EUVD-2025-209726
Medtronic MyCareLink Patient Monitor has an internal serial interface, which allows an attacker with physical access to access a login prompt via a UART terminal....
CVE-2025-4386
Medtronic MyCareLink Patient Monitor has an internal serial interface, which allows an attacker with physical access to access a login prompt via a UART terminal....
CVE-2025-4386 Medtronic MyCareLink Patient Monitor Hardware Debug Port
Medtronic MyCareLink Patient Monitor has an internal serial interface, which allows an attacker with physical access to access a login prompt via a UART terminal....
CVE-2025-4386
CVE-2025-4386 concerns the Medtronic MyCareLink Patient Monitor, which exposes an internal serial interface that can be accessed by an attacker with physical access to reach a UART login prompt. The CVSSv3.1 vector (AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) yields a base score of 6.8 (MEDIUM). The att...
CVE-2025-12108 Missing Authentication for Critical Function Survision License Plate Recognition Camera
The Survision LPR Camera system does not enforce password protection by default. This allows access to the configuration wizard immediately without a login prompt or credentials check...
EUVD-2000-0272
Malware in sbrugna...
EUVD-2007-3535
Malware in sbrugna...
Configure Audit Rules for Network Environment
Attackers may change the system domain name and host name to launch attacks, such as host spoofing. It is recommended that the user set the audit of system calls setdomainname and sethostname and the audit of the /etc/hosts file to monitor changes in the system domain name and host name. You can...
OWA not accessible on Secure Web iOS when Extended Protection is Enabled
After enabling Extended Protection on Exchange Server 2019 CU14, accessing OWA via Secure Web iOS is no longer possible. Users accessing Outlook Web Access OWA through Secure Web on iOS are continuously getting http 401 login prompt. The issue is not seen when using other browsers like Chrome or...
EAP: OIDC app attempting to access the second tenant, the user should be prompted to log
A flaw was found in Red Hat Enterprise Application Platform 8. When an OIDC app that serves multiple tenants attempts to access the second tenant, it should prompt the user to log in again since the second tenant is secured with a different OIDC configuration. The underlying issue is in...
EAP: OIDC app attempting to access the second tenant, the user should be prompted to log
A flaw was found in Red Hat Enterprise Application Platform 8. When an OIDC app that serves multiple tenants attempts to access the second tenant, it should prompt the user to log in again since the second tenant is secured with a different OIDC configuration. The underlying issue is in...
CVE-2023-6236
A flaw was found in Red Hat Enterprise Application Platform 8. When an OIDC app that serves multiple tenants attempts to access the second tenant, it should prompt the user to log in again since the second tenant is secured with a different OIDC configuration. The underlying issue is in...
Cisco NX-OS Software 输入验证错误漏洞
Cisco NX-OS Software is a set of data center-grade operating system software for switches from the U.S. company Cisco Cisco. Cisco NX-OS Software suffers from an authentication error vulnerability that stems from incorrect input validation when TACACS+ and RADIUS process authentication attempts. ...
K31757417: The BIG-IP APM system may log passwords in plaintext when the Debug log level is enabled
Security Advisory Description This issue occurs when all of the following conditions are met: You enable the Debug log level for the access policy. You configure the access policy on the BIG-IP APM system with either of the following: Citrix Login prompt with two-factor authentication Logon page...
SUSE CVE-2017-7783
If a long user name is used in a username/password combination in a site URL such as " http://UserName:[email protected]", the resulting modal prompt will hang in a non-responsive state or crash, causing a denial of service. This vulnerability affects Firefox 55...
Incorrect Default Permissions
Overview com.liferay.portal:portal-impl is a Portal Impl Affected versions of this package are vulnerable to Incorrect Default Permissions due to insecure default settings in the auth.login.prompt.enabled configuration. An attacker can obtain sensitive information such as usernames, site names, a...