EUVD-2026-30942

An improper authentication vulnerability was discovered in the Motorola Factory Test component com.motorola.motocit. The application contained a reference to a writable file descriptor in external storage which could be used by third party apps running on the device to open a TCP server, exposing...

CVE-2026-5804

An improper authentication vulnerability was discovered in the Motorola Factory Test component com.motorola.motocit. The application contained a reference to a writable file descriptor in external storage which could be used by third party apps running on the device to open a TCP server, exposing...

Fickling has safety check bypass via REDUCE+BUILD opcode sequence

Assessment It is believed that the analysis pass works as intended, REDUCE and BUILD are not at fault here. The few potentially unsafe modules have been added to the blocklist https://github.com/trailofbits/fickling/commit/0c4558d950daf70e134090573450ddcedaf10400. Original report Summary All 5 of...

PT-2025-44627

Name of the Vulnerable Software and Affected Versions GameMaker IDE versions prior to 2024.14.0 Description An integer overflow exists in GameMaker IDE versions prior to 2024.14.0. This issue can result in application crashes, leading to denial-of-service DoS attacks. The network create server...

CVE-2025-9998 Improper validation of packets sequencing

The sequence of packets received by a Networking server are not correctly checked. An attacker could exploit this vulnerability to send specially crafted messages to force the application to stop...

CVE-2025-9998

CVE-2025-9998 describes an issue where the sequence of packets received by a Networking server is not correctly checked, enabling a potential denial-of-service via specially crafted messages to force the application to stop. Multiple sources (NVD, Red Hat, CVE.org, CIRCL, VulnEnrichment) corrobor...

CVE-2023-20125 Cisco BroadWorks Network Server TCP Denial of Service Vulnerability

A vulnerability in the local interface of Cisco BroadWorks Network Server could allow an unauthenticated, remote attacker to exhaust system resources, causing a denial of service DoS condition. This vulnerability exists because rate limiting does not occur for certain incoming TCP connections. An...

DiCal-RED 4009 Information Disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-042 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Versions: Unknown Tested Versions: 4009 Vulnerability Type: Exposure of Sensitive Information to an Unauthorized Actor CWE-200 Risk Level: Medium Solution...

CVE-2024-32258

The network server of fceux 2.7.0 has a path traversal vulnerability, allowing attackers to overwrite any files on the server without authentication by fake ROM...

CVE-2024-32258

The network server of fceux 2.7.0 has a path traversal vulnerability, allowing attackers to overwrite any files on the server without authentication by fake ROM...

CVE-2024-32258

The network server of fceux 2.7.0 has a path traversal vulnerability, allowing attackers to overwrite any files on the server without authentication by fake ROM...

CVE-2024-32258

The CVE-2024-32258 entry concerns FCEUX 2.7.0’s network server (NetPlay). A path traversal vulnerability exists due to inadequate filtering of ROM file names, allowing an unauthenticated attacker to overwrite arbitrary files on the server by sending a crafted ROM load request. Documentation in th...

CVE-2024-32258

The network server of fceux 2.7.0 has a path traversal vulnerability, allowing attackers to overwrite any files on the server without authentication by fake ROM...

CVE-2024-32258

The network server of fceux 2.7.0 has a path traversal vulnerability, allowing attackers to overwrite any files on the server without authentication by fake ROM...

PT-2024-24474 · Fceux · Fceux

Name of the Vulnerable Software and Affected Versions: fceux version 2.7.0 Description: The network server of fceux has a path traversal vulnerability, allowing attackers to overwrite any files on the server without authentication by using a fake ROM. Recommendations: For fceux version 2.7.0, as ...

PT-2023-29437 · Netty +1 · Netty +1

Name of the Vulnerable Software and Affected Versions: XXL-RPC affected versions not specified Description: The issue concerns a high-performance, distributed RPC framework. When a TCP server is set up using the Netty framework and the Hessian serialization mechanism, attackers may be able to...

Uncaught Exception

Overview grpcio is a None Affected versions of this package are vulnerable to Uncaught Exception. due to the lack of error handling in the TCP server. An attacker can cause a denial of service by initiating a significant number of connections with the server. Note: This is only exploitable if the...

编号撤回

dnsmasq is a lightweight DNS forwarding and DHCP and TFTP server written in C. It can be used as a server to forward DNS, DHCP, and TFTP. This CVE number has been withdrawn...

CVE-2023-26494

The CVE-2023-26494 entry concerns lorawan-stack, an open source LoRaWAN network server. A security flaw exists prior to version 3.24.1 where the login page contains an open redirect, allowing an attacker to present a user-controlled redirect at sign-in and potentially facilitate phishing by misle...

K11522001: Apache vulnerabilities CVE-2018-1313, CVE-2018-1338, CVE-2018-1339, CVE-2018-1335, and CVE-2018-8003

Security Advisory Description CVE-2018-1313 In Apache Derby 10.3.1.4 to 10.14.1.0, a specially-crafted network packet can be used to request the Derby Network Server to boot a database whose location and contents are under the user's control. If the Derby Network Server is not running with a Java...