CVE-2026-32720 Improper Access Control in github.com/ctfer-io/monitoring

The CTFer.io Monitoring component is in charge of the collection, process and storage of various signals i.e. logs, metrics and distributed traces. Prior to 0.2.1, due to a mis-written NetworkPolicy, a malicious actor can pivot from a component to any other namespace. This breaks the...

VulnCheck KEV: CVE-2025-48633

In hasAccountsOnAnyUser of DevicePolicyManagerService.java, there is a possible way to add a Device Owner after provisioning due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

EUVD-2019-5310

Malware in sbrugna...

EUVD-2024-42259

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2024-56611

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/mempolicy: fix migratetonode assuming there is at least one VMA in a MM We currently assume that there is at least one VMA in a MM, which isn't true. So we...

PlantUML 访问控制错误漏洞

PlantUML is a component that allows rapid authoring. for generating diagrams from textual descriptions. A security vulnerability exists in PlantUML versions prior to 1.2023.9 that stems from the presence of an incorrect access control policy...

Android devices fail to enroll into XenMobile after upgrading Netscaler

The following symptoms are seen: Android devices fail to enrollinto XenMobile The error"Security policy does not allow you to connect" is seen in Secure Hub Android devices enrolling with Device Administrator mode legacy are the ones that see this adverse behavior the most but a smaller group of...

Endpoint Management | Issues deploying Credential policy with Discretionary CA - PKIs

After trying to deploy a credential policy, the device Assigned Policies section shows the following error from the Failed Column: Path: Dashboard Manage Devices %Device% Edit Assigned Policies - Type: Credentials - Comment: Command preparation failed:...

Qualcomm 组件 访问控制错误漏洞

The Qualcomm Component is a component of Qualcomm Incorporated USA. The intrinsic parts that provide the functionality of Qualcomm devices. A security vulnerability exists in the Qualcomm Closed Source Component that stems from an incorrect policy that results in unprivileged access...

DEBIAN-CVE-2006-5170

pamldap in nssldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other distributions does not return an error condition when an LDAP directory server responds with a PasswordPolicyResponse control response, which causes the pamauthenticate function to return a success cod...

CVE-2001-0355

Novell Groupwise 5.5 sp1 and sp2 allows a remote user to access arbitrary files via an implementation error in Groupwise system policies...