CVE-2025-47823

Flock Safety LPR License Plate Reader devices with firmware through 2.2 have a hardcoded password for a system...

CVE-2025-47824

Flock Safety LPR License Plate Reader devices with firmware through 2.2 have cleartext storage of code...

CVE-2025-47822

Flock Safety LPR License Plate Reader devices with firmware through 2.2 have an on-chip debug interface with improper access control...

CVE-2025-47824

Flock Safety LPR License Plate Reader devices with firmware through 2.2 have cleartext storage of code...

CVE-2025-47823

Flock Safety LPR License Plate Reader devices with firmware through 2.2 have a hardcoded password for a system...

[SECURITY] Fedora 41 Update: glow-2.1.1-1.fc41

Glow is a terminal based markdown reader designed from the ground up to bring out the beauty=E2=80=94and power=E2=80=94of the CLI. Use it to discover mark down files, read documentation directly on the command line. Glow will find local markdown files in subdirectories or a local Git repository...

[SECURITY] Fedora 42 Update: glow-2.1.1-1.fc42

Glow is a terminal based markdown reader designed from the ground up to bring out the beauty=E2=80=94and power=E2=80=94of the CLI. Use it to discover mark down files, read documentation directly on the command line. Glow will find local markdown files in subdirectories or a local Git repository...

CVE-2025-47824

Flock Safety LPR License Plate Reader devices with firmware through 2.2 have cleartext storage of code...

CVE-2025-47824

CVE-2025-47824 concerns Flock Safety LPR devices with firmware up to 2.2, where the underlying issue is cleartext storage of code. This is documented across multiple sources (NVD/Red Hat/CERT style advisories and PT-2025-27042). The root cause is not fully elaborated beyond the existence of clear...

CVE-2025-47822

Flock Safety LPR License Plate Reader devices with firmware through 2.2 have an on-chip debug interface with improper access control...

CVE-2025-47822

Flock Safety LPR License Plate Reader devices with firmware through 2.2 have an on-chip debug interface with improper access control...

CVE-2025-47823

Flock Safety LPR License Plate Reader devices with firmware through 2.2 have a hardcoded password for a system...

CVE-2025-47822

Flock Safety LPR devices running firmware up to 2.2 expose an on-chip debug interface with improper access control. This affects the LPR module (license plate reader) and can impact confidentiality, integrity, and availability as indicated by CVSS bases (high impact across metrics). The connected...

CVE-2025-47823

CVE-2025-47823 affects Flock Safety LPR devices with firmware up to 2.2, where a hardcoded password for a system exists. The issue enables unauthorized access via physical attack vector (attackVector: PHYSICAL) with low complexity, no privileges required, and impacts confidentiality (HIGH) per th...

CVE-2025-47824

Flock Safety LPR License Plate Reader devices with firmware through 2.2 have cleartext storage of code...

SUSE CVE-2025-6375

A vulnerability was found in poco up to 1.14.1. It has been rated as problematic. Affected by this issue is the function MultipartInputStream of the file Net/src/MultipartReader.cpp. The manipulation leads to null pointer dereference. The attack needs to be approached locally. The exploit has bee...

CVE-2025-6375

A vulnerability was found in poco up to 1.14.1. It has been rated as problematic. Affected by this issue is the function MultipartInputStream of the file Net/src/MultipartReader.cpp. The manipulation leads to null pointer dereference. The attack needs to be approached locally. The exploit has bee...

CVE-2025-47293

CVE-2025-47293 concerns PowSyBl (Power System Blocks) where powsybl-core XML parsing via com.powsybl.commons.xml.XmlReader is vulnerable to XXE and SSRF. The root cause is treating XmlReader as trusted when untrusted XML (CGMES/XIIDM) is submitted, allowing privilege escalation to read sensitive ...

CVE-2025-47293 PowSyBl Core XML Reader allows XXE and SSRF

PowSyBl Power System Blocks is a framework to build power system oriented software. Prior to version 6.7.2, in certain places, powsybl-core XML parsing is vulnerable to an XML external entity XXE attack and to a server-side request forgery SSRF attack. This allows an attacker to elevate their...

DEBIAN-CVE-2025-6275

A vulnerability was found in WebAssembly wabt up to 1.0.37. It has been declared as problematic. Affected by this vulnerability is the function GetFuncOffset of the file src/interp/binary-reader-interp.cc. The manipulation leads to use after free. It is possible to launch the attack on the local...