EulerOS 2.0 SP13 : cups (EulerOS-SA-2025-2518)

According to the versions of the cups package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.12 and earlier, when the AuthTyp...

EUVD-2025-199891

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config a...

CVE-2025-63701

A heap corruption vulnerability exists in the Advantech TP-3250 printer driver's DrvUIx64ADVANTECH.dll v0.3.9200.20789 when DocumentPropertiesW is called with a valid dmDriverExtra value but an undersized output buffer. The driver incorrectly assumes the output buffer size matches the input buffe...

CVE-2025-63701

A heap corruption vulnerability exists in the Advantech TP-3250 printer driver's DrvUIx64ADVANTECH.dll v0.3.9200.20789 when DocumentPropertiesW is called with a valid dmDriverExtra value but an undersized output buffer. The driver incorrectly assumes the output buffer size matches the input buffe...

PT-2025-47004

Name of the Vulnerable Software and Affected Versions Advantech TP-3250 printer driver versions v0.3.9200.20789 Description A heap corruption issue exists in the Advantech TP-3250 printer driver’s DrvUI x64 ADVANTECH.dll component. The issue occurs when the DocumentPropertiesW function is called...

EUVD-2025-175348

Certain HP LaserJet Pro printers may be vulnerable to information disclosure leading to credential exposure by altering the scan/send destination address and/or modifying the LDAP Server...

PT-2025-46872

Name of the Vulnerable Software and Affected Versions HP LaserJet Pro printers affected versions not specified Description Certain HP LaserJet Pro printers may be susceptible to information disclosure, potentially leading to credential exposure. This can occur by altering the scan/send destinatio...

CVE-2025-64187 OctoPrint is vulnerable to XSS through Action Command Notifications and Prompts

OctoPrint provides a web interface for controlling consumer 3D printers. Versions 1.11.3 and below are affected by a vulnerability that allows injection of arbitrary HTML and JavaScript into Action Command notifications and prompts popups generated by the printer. An attacker who successfully...

Lexmark Printers Stored Cross-site Scripting (CVE-2020-13481)

A stored cross site scripting vulnerability has been identified in the embedded web server used in Lexmark devices. The vulnerability can be used to attack the user’s browser, exposing session credentials and other information accessible to the browser. %NASLMINLEVEL 80900 C Tenable, Inc...

Lexmark Printers Integer Overflow or Wraparound (CVE-2023-26065)

An integer overflow vulnerability has been identified in PostScript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503905; scriptversion"1.3";...

Lexmark Printers Buffer Overflow (CVE-2023-26064)

An out of bounds write vulnerability has been identified in PostScript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503891; scriptversion"1.3";...

Lexmark Printers Improper Input Validation (CVE-2019-6489)

Certain Lexmark CX, MX, X, XC, XM, XS, and 6500e devices before 2019-02-11 allow remote attackers to erase stored shortcuts. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

Lexmark Printers Path Traversal (CVE-2021-44737)

PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged to overwrite internal configuration files. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

Siemens SIMATIC Devices Out-of-bounds Write (CVE-2021-4090)

An out-of-bounds OOB memory write flaw was found in the NFSD in the Linux kernel. Missing sanity may lead to a write beyond bmvalbmlen-1 in nfsd4decodebitmap4 in fs/nfsd/nfs4xdr.c. In this flaw, a local attacker with user privilege may gain access to out-of-bounds memory, leading to a system...

Pwn2Own Ireland 2025: The Hacks, The Winners, and The Big Payouts

Hackers earned over $1 million at Pwn2Own Ireland 2025 in Cork, breaching printers, routers, NAS devices, and more as Summoning Team claimed Master of Pwn...

Brother MFC-J4410DW Printers Cross-site Scripting (CVE-2015-1056)

Cross-site scripting XSS vulnerability in Brother MFC-J4410DW printer with firmware before L allows remote attackers to inject arbitrary web script or HTML via the url parameter to general/status.html and possibly other pages. This plugin only works with Tenable.ot. Please visit...

EUVD-2025-33868

A weakness has been identified in harry0703 MoneyPrinterTurbo up to 1.2.6. The impacted element is the function uploadmusic of the file app/controllers/v1/music.py of the component API Endpoint. Executing manipulation of the argument File can lead to path traversal. The attack may be performed fr...

CVE-2025-11607

A weakness has been identified in harry0703 MoneyPrinterTurbo up to 1.2.6. The impacted element is the function uploadmusic of the file app/controllers/v1/music.py of the component API Endpoint. Executing a manipulation of the argument File can lead to path traversal. The attack may be performed...

EUVD-1999-1544

Malware in sbrugna...

EUVD-2001-0044

Malware in sbrugna...