CVE-2026-7161

An insufficient encryption vulnerability exists in the Device Authentication functionality of GeoVision GV-IP Device Utility 9.0.5. Listening to broadcast packets can lead to credentials leak. An attacker can listen to broadcast messages to trigger this vulnerability. When interacting with variou...

CVE-2026-7161 GeoVision GV-IP Device Utility Device Authentication insufficient encryption vulnerability

An insufficient encryption vulnerability exists in the Device Authentication functionality of GeoVision GV-IP Device Utility 9.0.5. Listening to broadcast packets can lead to credentials leak. An attacker can listen to broadcast messages to trigger this vulnerability. When interacting with variou...

CVE-2026-42363

An insufficient encryption vulnerability exists in the Device Authentication functionality of GeoVision GV-IP Device Utility 9.0.5. Listening to broadcast packets can lead to credentials leak. An attacker can listen to broadcast messages to trigger this vulnerability. When interacting with variou...

EUVD-2026-25743

An insufficient encryption vulnerability exists in the Device Authentication functionality of GeoVision GV-IP Device Utility 9.0.5. Listening to broadcast packets can lead to credentials leak. An attacker can listen to broadcast messages to trigger this vulnerability. When interacting with variou...

CVE-2026-42363

CVE-2026-42363 affects GeoVision GV-IP Device Utility 9.0.5. The Device Authentication flow encrypts credentials using a protocol resembling Blowfish, but the symmetric key is included in the packet, making confidentiality rely on obscurity. When admin users interact with devices, credentials may...

PT-2026-35277

Name of the Vulnerable Software and Affected Versions GeoVision GV-IP Device Utility version 9.0.5 Description Insufficient encryption in the Device Authentication functionality allows for the leakage of administrator credentials. When the utility sends privileged commands to devices over UDP...

CVE-2025-32901

In KDE Connect before 1.33.0 on Android, malicious device IDs sent via broadcast UDP could cause an application crash...

EUVD-2005-2488

Malware in sbrugna...

EUVD-2018-9092

Malware in sbrugna...

CVE-2018-17337

Intelbras NPLUG 1.0.0.14 devices have XSS via a crafted SSID that is received via a network broadcast...

CVE-2018-17337

Intelbras NPLUG 1.0.0.14 devices have XSS via a crafted SSID that is received via a network broadcast...

Design/Logic Flaw

Intelbras NPLUG 1.0.0.14 devices have XSS via a crafted SSID that is received via a network broadcast...

CVE-2018-17337

Intelbras NPLUG 1.0.0.14 devices have XSS via a crafted SSID that is received via a network broadcast...

CVE-2018-17337

CVE-2018-17337 affects Intelbras NPLUG 1.0.0.14. The connected documents confirm a cross-site scripting (XSS) vulnerability that can be triggered by a specially crafted SSID received over a network broadcast. The root cause is the handling of SSID data leading to script/HTML injection. The report...

broadcast-hid-discoveryd NSE Script

Discovers HID devices on a LAN by sending a discoveryd network broadcast probe. For more information about HID discoveryd, see: Script Arguments broadcast-hid-discoveryd.timeout socket timeout default: 5s broadcast-hid-discoveryd.address address to which the probe packet is sent. default:...

broadcast-bjnp-discover NSE Script

Attempts to discover Canon devices Printers/Scanners supporting the BJNP protocol by sending BJNP Discover requests to the network broadcast address for both ports associated with the protocol. The script then attempts to retrieve the model, version and some additional information for all...

Microsoft Data Access Components Broadcast Reply Buffer Overflow (MS04-003; CVE-2003-0903)

The SQL Server Resolution Protocol is a simple application-level protocol that is used for the transfer of requests and responses between clients and database server discovery services. Microsoft Data Access Components MDAC is a collection of components that provides the underlying functionality...

stardict information leakage

Clipboard content is broadcasted into network...

NCTVideoStudio ActiveX DLLs 1.6 Insecure Method File Creation Exploit

No description provided by source. HTML b NCTVideoStudio ActiveX DLLs Version 1.6 Insecure Method File Creation /b b br/br/ Author : Mountassif Moad a.k.a Stack br/ br/ br/ b/ RegKey Safe for Script: Falsebr/ RegKey Safe for Init: Falsebr/ Implements IObjectSafety: Truebr/ IDisp Safe: Safe for...

CVE-2005-2487

Unknown vulnerability in Sun McData switches and directors 4300, 4500, 6064, and 6140 before E/OS 6.0.0 may allow attackers to cause a denial of service connectivity and array access loss via a network broadcast storm...