EUVD-2025-23950

Malicious code in bioql PyPI...

CVE-2025-48709

BMC Control-M/Server 9.0.21.300 displays cleartext database credentials in process lists and logs. An authenticated attacker with shell access could observe these credentials and use them to log in to the database server. For example, when Control-M/Server on Windows has a database connection on,...

CVE-2025-48709 BMC Control-M/Server cleartext database credentials in process lists and logs

BMC Control-M/Server 9.0.21.300 displays cleartext database credentials in process lists and logs. An authenticated attacker with shell access could observe these credentials and use them to log in to the database server. For example, when Control-M/Server on Windows has a database connection on,...

PHP-FPM logs from children may be altered

...

Cloudera Manager =< 5.5 Process logs access (CVE-2016-4949)

Cloudera Manager =:7180/cmf/process//logs?filename=stderr,stdout.log The prerequisite to exploit this vulnerability is to know or iterate the targeted process identifier. The impact of the vulnerability is that a poorly developed process might contain sensitive information. The Cloudera CERT...