CVE-2026-25070 XikeStor SKS8310-8X PingTestSet Command Injection

XikeStor SKS8310-8X Network Switch firmware versions 1.04.B07 and prior contain an OS command injection vulnerability in the /goform/PingTestSet endpoint that allows unauthenticated remote attackers to execute arbitrary operating system commands. Attackers can inject malicious commands through th...

OESA-2026-1200 glibc security update

The GNU C Library project provides the core libraries for the GNU system and GNU/Linux systems, as well as many other systems that use Linux as the kernel. These libraries provide critical APIs including ISO C11, POSIX.1-2008, BSD, OS-specific APIs and more. These APIs include such foundational...

EUVD-2018-19887

Malware in sbrugna...

EUVD-2024-30551

Malicious code in bioql PyPI...

Dell SmartFabric OS10 Server-Side Request Forgery Vulnerability

Dell SmartFabric OS10 is a Linux-based network switch operating system from Dell Dell. Dell SmartFabric OS10 suffers from a server-side request forgery vulnerability, which stems from the server not implementing an adequate authentication mechanism to confirm the origin of the request, and can be...

NETGEAR 安全漏洞

GC108P and other smart switch products from Netgear, U.S.A. Several of Netgear's smart switches are vulnerable to an input validation error, which stems from a failure of the daemon to check for validation when an authentication TLV is missing from an incoming NSDP packet. An unauthenticated...

Huawei S7700 and S9700 Denial of Service Vulnerability

The Huawei S7700 and S9700 are both intelligent routing switches from Huawei China. The Huawei S7700 and S9700 denial of service vulnerability, the vulnerability is due to the device failing to adequately authenticate messages. An unauthenticated, remote attacker could exploit this vulnerability ...