CVE-2025-59094

A local privilege escalation vulnerability has been identified in the Kaba exos 9300 System management application d9sysdef.exe. Within this application it is possible to specify an arbitrary executable as well as the weekday and start time, when the specified executable should be run with SYSTEM...

CVE-2025-53398

CVE-2025-53398 affects Portrait Displays Dell Color Management application 3.3.8 for Dell monitors. The root cause is insecure permissions on a temporary folder created during a custom installation path, enabling a local, low-privilege attacker to achieve elevated system privileges. The exploit i...

CVE-2025-53919

An issue was discovered in the Portrait Dell Color Management application through 3.3.008 for Dell monitors, It creates a temporary folder, with weak permissions, during installation and uninstallation. A low-privileged attacker with local access could potentially exploit this, leading to elevati...

CVE-2025-66330

App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-66330

App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-66330

App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

EUVD-2025-201673

App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-66330

App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-66330

App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-66330

CVE-2025-66330 affects Huawei HarmonyOS’s file management app, causing a bypass of the app lock verification/checksum and potentially compromising service confidentiality. Documents consistently describe a lock-check bypass without listing specific vulnerable versions, exploit details, or remedia...

PT-2025-49534

App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

EUVD-2025-36557

HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP ThinPro 8.1 SP8, which includes updates to mitigate potential vulnerabilities...

EUVD-2023-48485

Malicious code in bioql PyPI...

PT-2025-38109

Name of the Vulnerable Software and Affected Versions: OMRON SOCIAL SOLUTIONS Co., Ltd. UPS management application affected versions not specified Description: The Uninterruptible Power Supply UPS management application is susceptible to a flaw where executable file paths for Windows services are...

CVE-2023-44127

he vulnerability is that the Call management "com.android.server.telecom" app patched by LG launches implicit intents that disclose sensitive data to all third-party apps installed on the same device. Those intents include data such as contact details and phone numbers...

CVE-2020-13588

An exploitable SQL injection vulnerability exists in the ‘entities/fields’ page of the Rukovoditel Project Management App 2.7.2. The headingfieldid parameter in ‘‘entities/fields’ page is vulnerable to authenticated SQL injection. An attacker can make authenticated HTTP requests to trigger this...

CVE-2020-13587

An exploitable SQL injection vulnerability exists in the "formsfieldsrules/rules" page of the Rukovoditel Project Management App 2.7.2. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability, this can be done...

Security Bulletin: The Log Source Management App for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. Log Source Management App for IBM QRadar SIEM has addressed the applicable CVEs in an update. Vulnerability Details CVEID:CVE-2024-43796 DESCRIPTION: expressjs...

PT-2024-12195 · Enel X · Waybox Enel X Web Management Application

Name of the Vulnerable Software and Affected Versions: Waybox Enel X Web management application affected versions not specified Description: The issue concerns a denial-of-service condition in the Waybox Enel X Web management application, where a specific request could cause the system to reboot...

Security Bulletin: The Log Source Management App for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities (CVE-2024-28849, CVE-2024-29041, CVE-2024-29180)

Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. Log Source Management App for IBM QRadar SIEM has addressed the applicable CVEs in an update. Vulnerability Details CVEID:CVE-2024-28849 DESCRIPTION: Node.js...