CVE-2025-9815 alaneuler batteryKid NSXPCListener PrivilegeHelper.swift missing authentication

A weakness has been identified in alaneuler batteryKid up to 2.1 on macOS. The affected element is an unknown function of the file PrivilegeHelper/PrivilegeHelper.swift of the component NSXPCListener. This manipulation causes missing authentication. It is possible to launch the attack on the loca...

CVE-2025-9815 alaneuler batteryKid NSXPCListener PrivilegeHelper.swift missing authentication

A weakness has been identified in alaneuler batteryKid up to 2.1 on macOS. The affected element is an unknown function of the file PrivilegeHelper/PrivilegeHelper.swift of the component NSXPCListener. This manipulation causes missing authentication. It is possible to launch the attack on the loca...

CVE-2025-9815

CVE-2025-9815 affects alaneuler batteryKid up to 2.1 on macOS. The vulnerability is in PrivilegeHelper/PrivilegeHelper.swift within the NSXPCListener component, where a manipulation causes missing authentication. This enables a local attack on the host, with the exploit publicly available. Remedi...

batteryKid 安全漏洞

batteryKid is a tool to extend battery life by the individual developer of Alaneuler. A security vulnerability exists in batteryKid 2.1 and earlier versions, which stems from a missing authentication in the file PrivilegeHelper/PrivilegeHelper.swift...

PT-2025-35539

Name of the Vulnerable Software and Affected Versions: alaneuler batteryKid versions 2.0 through 2.1 Description: A weakness has been identified in alaneuler batteryKid on macOS. The affected element is an unknown function within the file PrivilegeHelper/PrivilegeHelper.swift of the NSXPCListener...

TP-link TL-WA855RE Missing Authentication for Critical Function Vulnerability

TP-link TL-WA855RE contains a missing authentication for critical function vulnerability. This vulnerability could allow an unauthenticated attacker on the same network to submit a TDDPRESET POST request for a factory reset and reboot. The attacker can then obtain incorrect access control by...

CVE-2025-7405

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to read or write the device values of the product and stop the operation of the programs, since MODBUS/TCP in the products does not...

CVE-2025-7405

CVE-2025-7405 concerns Mitsubishi Electric MELSEC iQ-F Series CPU module with missing authentication for the MODBUS/TCP function, enabling remote, unauthenticated reads/writes of device values and potential disruption of program operation. Affected product is MELSEC iQ-F Series CPU module; root c...

CVE-2025-8861

TSA developed by Changing has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read, modify, and delete database contents...

CVE-2025-54942

A missing authentication for critical function vulnerability in SUNNET Corporate Training Management System before 10.11 allows remote attackers to access deployment functionality without prior authentication...

CVE-2025-54942

A missing authentication for critical function vulnerability in SUNNET Corporate Training Management System before 10.11 allows remote attackers to access deployment functionality without prior authentication...

CVE-2025-54942 SUNNET Corporate Training Management System - Missing Authentication for Critical Function

A missing authentication for critical function vulnerability in SUNNET Corporate Training Management System before 10.11 allows remote attackers to access deployment functionality without prior authentication...

CVE-2025-54942

CVE-2025-54942 describes a missing authentication for a critical function in the SUNNET Corporate Training Management System prior to version 10.11, allowing remote attackers to access deployment functionality without credentials. The vulnerability is corroborated by multiple connected records (N...

CVE-2025-54942 SUNNET Corporate Training Management System - Missing Authentication for Critical Function

A missing authentication for critical function vulnerability in SUNNET Corporate Training Management System before 10.11 allows remote attackers to access deployment functionality without prior authentication...

PT-2025-35336

Name of the Vulnerable Software and Affected Versions SUNNET Corporate Training Management System versions prior to 10.11 Description A missing authentication check for a critical function allows remote attackers to access deployment functionality without authentication. Recommendations Update to...

CVE-2025-8861

TSA developed by Changing has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read, modify, and delete database contents...

CVE-2025-8861 Changing｜TSA - Missing Authentication

TSA developed by Changing has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read, modify, and delete database contents...

CVE-2025-8861

CVE-2025-8861 concerns Changing TSA, a timestamp server product, with a Missing Authentication vulnerability that allows unauthenticated remote attackers to read, modify, and delete database contents. The underlying issue is an access-control flaw (lack of authentication). The connected documents...

CVE-2025-8861 Changing｜TSA - Missing Authentication

TSA developed by Changing has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read, modify, and delete database contents...

PT-2025-35180

Name of the Vulnerable Software and Affected Versions: TSA developed by Changing affected versions not specified Description: TSA developed by Changing is susceptible to a missing authentication issue. This allows unauthenticated remote attackers to read, modify, and delete database contents...