CVE-2023-0475 affecting package terraform for versions less than 1.3.2-22

CVE-2023-0475 affecting package terraform for versions less than 1.3.2-22. A patched version of the package is available...

PT-2025-2883 · Sungrow · Sungrow Winet-Sv200

Name of the Vulnerable Software and Affected Versions: SunGrow WiNet-SV200 versions 0.001.00.P027 and earlier Description: The issue concerns a hardcoded password in the affected versions. This password can be used to decrypt all firmware updates. Recommendations: For SunGrow WiNet-SV200 versions...

PT-2025-2886 · Sungrow · Sungrow Winet-Sv200

Name of the Vulnerable Software and Affected Versions: SunGrow WiNet-SV200 versions 0.001.00.P027 and earlier Description: The issue is related to a stack-based buffer overflow that occurs when parsing MQTT messages, due to missing checks on the bounds of MQTT topics. This can lead to a buffer...

PT-2025-3549 · Lunasvg · Lunasvg

Name of the Vulnerable Software and Affected Versions: lunasvg version 3.0.0 Description: The issue is related to a segmentation violation in the plutovg path add path component. This component is part of the lunasvg software. Recommendations: For lunasvg version 3.0.0, consider restricting acces...

PT-2025-3550 · Lunasvg · Lunasvg

Name of the Vulnerable Software and Affected Versions: lunasvg version 3.0.0 Description: The issue is related to an allocation-size-too-big bug in the plutovg surface create component. This bug can be exploited. Recommendations: For lunasvg version 3.0.0, consider disabling the plutovg surface...

PT-2025-3988 · Epsimed +1 · Epsimed Mn-120 Patient Monitor +1

Name of the Vulnerable Software and Affected Versions: Contec Health CMS8000 Patient Monitor affected versions not specified Epsimed MN-120 patient monitor affected versions not specified Description: The affected product sends out remote access requests to a hard-coded IP address, bypassing...

PT-2025-2583 · Themesebrand · Themesebrand Chatvia

Name of the Vulnerable Software and Affected Versions: themesebrand Chatvia version 5.3.2 Description: An issue in themesebrand Chatvia allows a remote attacker to execute arbitrary code via the User profile Upload image function. Recommendations: For themesebrand Chatvia version 5.3.2, consider...

PT-2025-4744 · Re11S · Re11S

Name of the Vulnerable Software and Affected Versions: RE11S version 1.11 Description: A stack overflow issue was discovered in the formStaDrvSetup function through the rootAPmac parameter. This issue allows for a potential overflow, which could lead to security problems. Recommendations: For RE1...

PT-2025-4739 · Re11S · Re11S

Name of the Vulnerable Software and Affected Versions: RE11S version 1.11 Description: A stack overflow issue was discovered in the setWAN function via the pptpUserName parameter. This issue can be exploited, potentially leading to unintended consequences. No information is available about the...

PT-2025-3912 · Fanli2012 · Native-Php-Cms

Name of the Vulnerable Software and Affected Versions: Fanli2012 native-php-cms version 1.0 Description: A critical vulnerability was found in the software, affecting an unknown part of the file /fladmin/user recoverpwd.php. The manipulation leads to the use of default credentials. It is possible...

PT-2025-1189

Name of the Vulnerable Software and Affected Versions MGate 5121/5122/5123 Series firmware version v1.0 Description A stored Cross-site Scripting XSS vulnerability exists due to insufficient sanitization and encoding of user input in the Login Message functionality. An authenticated attacker with...

PT-2025-2552 · Wavlink · Wavlink Ac3000

Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: A static login vulnerability exists in the wctrls functionality. A specially crafted set of network packets can lead to root access. An attacker can send packets to trigger this...

PT-2025-3485 · Monetdb · Monetdb Server

Name of the Vulnerable Software and Affected Versions: MonetDB Server version 11.47.11 Description: An issue in the bind col exp component allows attackers to cause a Denial of Service DoS via crafted SQL statements. Recommendations: For MonetDB Server version 11.47.11, consider disabling the bin...

PT-2025-1220

Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description An elevation-of-privilege issue exists within the Windows Recovery Environment Agent component. Successful exploitation of this issue could allow an attacker to gain elevated privileges on th...

PT-2025-1291 · Adobe · Photoshop

Name of the Vulnerable Software and Affected Versions: Adobe Photoshop versions 25.12, 26.1 and earlier Description: The issue is related to an integer underflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires use...

PT-2025-4219 · Microsoft · Windows Telephony Service +1

Name of the Vulnerable Software and Affected Versions: Windows Telephony Service affected versions not specified Description: The issue allows remote attackers to execute arbitrary code, affecting the system. This can lead to unauthorized access and control. No information is provided about the...

PT-2025-3500 · Monetdb · Monetdb Server

Name of the Vulnerable Software and Affected Versions: MonetDB Server version 11.49.1 Description: The issue in the exps bind column component allows attackers to cause a Denial of Service DoS via crafted SQL statements. Recommendations: For MonetDB Server version 11.49.1, consider restricting...

PT-2025-1245 · Microsoft · Office Excel +2

Name of the Vulnerable Software and Affected Versions: Microsoft Excel affected versions not specified Description: The issue is related to a remote code execution problem in Microsoft Excel. It is associated with the dereferencing of an untrusted pointer in Microsoft Office and 365 Apps for...

PT-2025-3490 · Monetdb · Monetdb Server

Name of the Vulnerable Software and Affected Versions: MonetDB Server version 11.49.1 Description: The issue in the HEAP malloc component allows attackers to cause a Denial of Service DoS via crafted SQL statements. Recommendations: For MonetDB Server version 11.49.1, consider disabling the HEAP...

PT-2025-1095 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the use of memory after it has been freed in the BranchCache technology of Windows operating systems. This can allow a remote attacker to execute arbitrary code. The...