CVE-2025-20203

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against users of the interface of an affected system. The...

CVE-2025-20120

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface on an affected device. This...

CVE-2025-20120

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface on an affected device. This...

CVE-2025-20120

CVE-2025-20120 describes a stored cross-site scripting (XSS) vulnerability in the web-based management interfaces of Cisco’s EPNM and Prime Infrastructure. The root cause is insufficient validation of user-supplied input in the interface, allowing an unauthenticated, remote attacker to inject mal...

Cisco Evolved Programmable Network Manager和Cisco Prime Infrastructure 跨站脚本漏洞

Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure are both products of Cisco Corporation.Cisco Evolved Programmable Network Manager is a network management Cisco Prime Infrastructure is a software application that simplifies the management of wireless and wired networks...

The vulnerability of the Linux operating system’s FPGA kernel component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s FPGA kernel component is related to the dereferencing of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the fpga_mgr_register() function in the Documentation/driver-api/fpga/fpga-mgr.rst section of the Linux operating system’s kernel allows a attacker to cause a service failure.

The vulnerability of the fpgamgrregister function in the Documentation/driver-api/fpga/fpga-mgr.rst section of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

CODESYS Edge Gateway 安全漏洞

CODESYS Edge Gateway is an extended CODESYS gateway from CODESYS Germany used to connect CODESYS automation servers to CODESYS PLCs in a local network. A security vulnerability exists in CODESYS Edge Gateway versions prior to 3.5.21.0, which stems from the fact that an unauthenticated remote...

PT-2025-11584

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description An unauthenticated remote attacker can gain limited information of the PLC network, but the user management of the PLCs prevents actual access to the PLCs. Recommendations At the moment, there...

Vulnerability of the development, debugging, and optimization tools for FPGA applications. The Intel oneAPI DPC++/C++ compiler’s support package is vulnerable due to an uncontrolled search path element, allowing attackers to exploit this vulnerability to gain enhanced privileges.

The vulnerability of the FPGA Support Package for the Intel oneAPI DPC++/C++ Compiler relates to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

Linux Distros Unpatched Vulnerability : CVE-2024-45817

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In x86's APIC Advanced Programmable Interrupt Controller architecture, error conditions are reported in a status register. Furthermore, the OS can opt to receiv...

The vulnerability of the web server of the microprogramming software for programmable logic controllers SIMATIC S7-1200 allows attackers to perform spoofing attacks.

The vulnerability of the web server of microprogrammed software-controlled logical controllers SIMATIC S7-1200 is related to errors in authenticating certificates. Exploiting this vulnerability allows an attacker to perform spoofing attacks remotely...

The vulnerability of the implementation of the Factory Interface Network Service (FINS) protocol in the microcomputer-based software for programmable logic controllers SYSMAC allows a intruder to gain unauthorized access to protected information and execute arbitrary commands.

The vulnerability of the Factory Interface Network Service FINS protocol implemented in SYSMAC programmable logic controllers is related to the absence of authentication. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to sensitive informati...

Intel Quartus Prime 代码问题漏洞

Intel Quartus Prime is a programmable logic device tool for the design and development of Fpga from Intel Corporation. A code issue vulnerability exists in Intel Quartus Prime versions prior to 23.1.1 Patch 1.01std, which stems from the presence of an uncontrolled search path that could allow an...

PT-2025-6666 · Intel · Fpga Support Package For The Intel Oneapi Dpc++/C++ Compiler

Name of the Vulnerable Software and Affected Versions: FPGA Support Package for the IntelR oneAPI DPC++/C++ Compiler software for Windows versions prior to 2024.2 Description: The issue is related to an uncontrolled search path in the FPGA Support Package for the IntelR oneAPI DPC++/C++ Compiler...

Azure Linux 3.0 Security Update: kernel (CVE-2010-0309)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2010-0309 advisory. - The pitioportread function in the Programmable Interval Timer PIT emulation in i8254.c in KVM 83 does not...

The vulnerability of microprogrammed programmable logic controllers ABB FBXi, FBVi, FBTi, and CBXi arises from incorrect handling of file names for PHP functions like include or require. This allows attackers to exploit their privileges and execute arbitrary code.

The vulnerability of microprogrammed programmable logic controllers ABB FBXi, FBVi, FBTi, and CBXi is related to incorrect handling of file names for PHP functions like include or require. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary code...

The vulnerability of microprogrammed software for programmable logic controllers ABB FBXi, FBVi, FBTi, and CBXi lies in the lack of origin verification in WebSockets. This allows attackers to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of microprogrammed programmable logic controllers ABB FBXi, FBVi, FBTi, and CBXi is related to the lack of origin verification in WebSockets. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and gain unauthorized access to protected...

CVE-2024-27458

A potential security vulnerability has been identified in the HP Hotkey Support software, which might allow local escalation of privilege. HP is releasing mitigation for the potential vulnerability. Customers using HP Programmable Key are recommended to update HP Hotkey Support...

Rockwell Automation GuardLogix 5580和Rockwell Automation GuardLogix 5380 安全漏洞

The Rockwell Automation GuardLogix 5580 and Rockwell Automation GuardLogix 5380 are both programmable logic controllers from Rockwell Automation. A security vulnerability exists in the Rockwell Automation GuardLogix 5580 and Rockwell Automation GuardLogix 5380. An attacker could exploit this...