4 matches found
CVE-2021-38415
Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable a heap-based buffer overflow when parsing a specially crafted project file, which may allow an attacker to execute arbitrary code...
yimioa 安全漏洞
yimioa CloudNet OA is a locally deployed OA software by rabbit individual developers. A security vulnerability exists in versions prior to yimioa v2024.07.04, which stems from improper access control of the WebSecurityConfig component and allows an unauthorized attacker to arbitrarily change the...
SUSE CVE-2025-27154
Spotipy is a lightweight Python library for the Spotify Web API. The CacheHandler class creates a cache file to store the auth token. Prior to version 2.25.1, the file created has rw-r--r-- 644 permissions by default, when it could be locked down to rw------- 600 permissions. This leads to overly...
Huawei Vicky-AL00 FRP Bypass Vulnerability
The Huawei Vicky-AL00 is a smartphone product from the Chinese company Huawei Huawei. A security vulnerability exists in versions prior to Huawei Vicky-AL00 Vicky-AL00AC00B172D. During the process of entering FRP to reset the phone, an attacker can exploit the vulnerability to enter Talkback mode...