EUVD-2025-55553

Malicious code in burning-red-lion npm...

Two CVSS 10.0 Bugs in Red Lion RTUs Could Hand Hackers Full Industrial Control

Cybersecurity researchers have disclosed two critical security flaws impacting Red Lion Sixne t remote terminal unit RTU products that, if successfully exploited, could result in code execution with the highest privileges. The shortcomings, tracked as CVE-2023-40151 andCVE-2023-42770 , are both...

CVE-2023-40151

creationtimestamp| type| source ---|---|--- 2025-10-15 04:50:00+00:00| seen| https://thehackernews.com/2025/10/two-cvss-100-bugs-in-red-lion-rtus.html 2025-10-16 04:34:03+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m3bwka3urn26...

EUVD-2017-6344

Malware in sbrugna...

EUVD-2019-2692

Malware in sbrugna...

EUVD-2019-2698

Malware in sbrugna...

EUVD-2016-10145

Malware in sbrugna...

EUVD-2019-2704

Malware in sbrugna...

EUVD-2019-2710

Malware in sbrugna...

EUVD-2023-44758

Malicious code in bioql PyPI...

EUVD-2023-38489

Malicious code in bioql PyPI...

EUVD-2023-54675

Malicious code in bioql PyPI...

EUVD-2022-42519

Malicious code in bioql PyPI...

EUVD-2023-47202

Malicious code in bioql PyPI...

CVE-2023-34412

A vulnerability in Red Lion Europe mbNET/mbNET.rokey and Helmholz REX 200 and REX 250 devices with firmware lower 7.3.2 allows an authenticated remote attacker with high privileges to inject malicious HTML or JavaScript code XSS...

CVE-2019-10984

Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious input file that causes the program to mishandle pointers...

CVE-2019-10978

Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious input file that operates outside of the designated memory area...

CVE-2019-10996

Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious input file that can reference memory after it has been freed...

CVE-2019-10990

Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, uses a hard-coded password to encrypt protected files in transit and at rest, which may allow an attacker to access configuration files...

CVE-2024-5672 Red Lion Europe: mbNET.mini vulnerable to OS command injection

A high privileged remote attacker can execute arbitrary system commands via GET requests due to improper neutralization of special elements used in an OS command...