PT-2026-33410

A path traversal vulnerability exists in CubeCart prior to 6.6.0, which may allow a user with an administrative privilege to access higher-level directories that should not be accessible...

CVE-2026-40245 Free5GC: UDR nudr-dr influenceData/subs-to-notify leaks SUPI in error response body without authentication

Free5GC is an open-source Linux Foundation project for 5th generation 5G mobile core networks. Versions 4.2.1 and below contain an information disclosure vulnerability in the UDR Unified Data Repository service. The handler for GET /nudr-dr/v2/application-data/influenceData/subs-to-notify sends a...

PT-2026-25602

Improper verification of cryptographic signature in Smart Switch prior to version 3.7.69.15 allows remote attackers to potentially bypass authentication...

EUVD-1999-0163

Malware in sbrugna...

📄 Piciorgros TMO-100 Information Disclosure

Piciorgros TMO-100 suffers from an issue where it provides unauthorized log data access. It affects versions prior to 4.20. PDF advisory: https://rt-solutions.de/piciorgros/PiciorgrosTMO-100IP-Loggeren.pdf Classification -------------- - CWE-200: Exposure of Sensitive Information to an Unauthoriz...

PT-2025-32650 · Siemens · Siprotec 5 7Sa82 +16

Name of the Vulnerable Software and Affected Versions: SIPROTEC 5 6MD84 CP300 versions prior to 10.0 SIPROTEC 5 6MD85 CP300 versions 7.80 through 9.99 SIPROTEC 5 6MD86 CP300 versions 7.80 through 9.99 SIPROTEC 5 6MD89 CP300 versions 7.80 through 9.99 SIPROTEC 5 6MU85 CP300 versions 7.80 through...

Siemens CPCI85 Central Processing和SICORE Base system 访问控制错误漏洞

The SICAM 8 power automation platform is a universal, integrated hardware and software-based solution for all applications in the power supply sector.The SICAM A8000 RTUs are modular devices for remote control and automation applications in all areas of energy supply.The SICAM EGS is the gateway ...

Array Networks ArrayOS AG 授权问题漏洞

Array Networks ArrayOS AG is an SSL-VPN product from Array Networks that enables secure remote access regardless of user, device or location. It provides scalable and controllable remote and mobile access to corporate networks, enterprise applications and cloud services for any user, any device,...

SUSE CVE-2017-11147

In PHP before 5.6.30 and 7.x before 7.0.15, the PHAR archive handler could be used by attackers supplying malicious archive files to crash the PHP interpreter or potentially disclose information due to a buffer over-read in the pharparsepharfile function in ext/phar/phar.c...

UBUNTU-CVE-2023-25725

HAProxy before 2.7.3 may allow a bypass of access control because HTTP/1 headers are inadvertently lost in some situations, aka "request smuggling." The HTTP header parsers in HAProxy may accept empty header field names, which could be used to truncate the list of HTTP headers and thus make some...

DEBIAN-CVE-2022-2582

The AWS S3 Crypto SDK sends an unencrypted hash of the plaintext alongside the ciphertext as a metadata field. This hash can be used to brute force the plaintext, if the hash is readable to the attacker. AWS now blocks this metadata field, but older SDK versions still send it...

CVE-2022-34851 BIG-IP and BIG-IQ iControl SOAP vulnerability CVE-2022-34851

In BIG-IP Versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and all versions of 13.1.x, and BIG-IQ Centralized Management all versions of 8.x, an authenticated attacker may cause iControl SOAP to become unavailable through undisclosed request...

Privilege Escalation

github.com/theupdateframework/go-tuf is vulnerable to privilege escalation The vulnerability exists because updating metadata files is not properly implemented for roles other than root which allows an attacker to install older and vulnerable software in the system...

CVE-2022-29173

A flaw was found in go-tuf. This flaw allows an attacker to cause clients to install older software than the software the client previously knew to be available and may include software with known vulnerabilities...

Code injection

go-tuf is a Go implementation of The Update Framework TUF. go-tuf does not correctly implement the client workflow for updating the metadata files for roles other than the root role. Specifically, checks for rollback attacks are not implemented correctly meaning an attacker can cause clients to...

Schneider Electric ConneXium Network Manager Software安全漏洞

Schneider Electric ConneXium Network Manager Software, an industrial Ethernet network management software from Schneider Electric, France, is vulnerable to a denial of service in Schneider Electric ConneXium Network Manager Software03.23 and earlier versions contain a denial of service...

Schneider Electric IGSS 缓冲区错误漏洞

The Schneider Electric Interactive Graphical SCADA System IGSS is an advanced SCADA system for monitoring and controlling industrial processes. An out-of-bounds write vulnerability exists in the Definition module of Interactive Graphical SCADA System IGSS versions 15.0.0.21140 and earlier. The...

mariadb-connector-c: Improper validation of content in a OK packet received from server

libmariadb/mariadblib.c in MariaDB Connector/C before 3.1.8 does not properly validate the content of an OK packet received from a server. NOTE: although mariadblib.c was originally based on code shipped for MySQL, this issue does not affect any MySQL components supported by Oracle...

CVE-2020-1792

Honor V10 smartphones with versions earlier than BKL-AL20 10.0.0.156C00E156R2P4 and versions earlier than BKL-L09 10.0.0.146C432E4R1P4 have an out of bounds write vulnerability. The software writes data past the end of the intended buffer because of insufficient validation of certain parameter wh...

CVE-2018-0243

A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a configured file action policy that is intended to drop the Server Message Block Version 2 SMB2 and SMB Version 3 SMB3 protocols if malware is detected. The...