CVE-2025-46294

To enhance security, the FileMaker Server 22.0.4 installer now includes an option to disable IIS short filename enumeration by setting NtfsDisable8dot3NameCreation in the Windows registry. This prevents attackers from using the tilde character to discover hidden files and directories. This...

CVE-2025-46294

To enhance security, the FileMaker Server 22.0.4 installer now includes an option to disable IIS short filename enumeration by setting NtfsDisable8dot3NameCreation in the Windows registry. This prevents attackers from using the tilde character to discover hidden files and directories. This...

CVE-2025-46294

The CVE describes a vulnerability in FileMaker Server relating to IIS short filename enumeration (8.3) that could enable information disclosure. Affected: FileMaker Server, prior to/including version 22.0.4; remediation is addressed in 22.0.4 with an option to disable 8.3 name creation. Root caus...

EUVD-2009-0269

Malware in sbrugna...

PT-2025-39898

Name of the Vulnerable Software and Affected Versions Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 25.1.102 Vasion Print formerly PrinterLogic Application versions prior to 25.1.1413 Description Vasion Print formerly PrinterLogic Virtual Appliance Host and Applicati...

CVE-2025-27254

CWE-282 "Improper Ownership Management" in GE Vernova EnerVista UR Setup allows Authentication Bypass. The software's startup authentication can be disabled by altering a Windows registry setting that any user can modify...

CVE-2025-27254

CWE-282 "Improper Ownership Management" in GE Vernova EnerVista UR Setup allows Authentication Bypass. The software's startup authentication can be disabled by altering a Windows registry setting that any user can modify...

CVE-2025-27254

CWE-282 "Improper Ownership Management" in GE Vernova EnerVista UR Setup allows Authentication Bypass. The software's startup authentication can be disabled by altering a Windows registry setting that any user can modify...

"An Account is not Configured" Displayed On Startup when AllowAddStore is set to N in Registry

Citrix Workspace app for Windows is being configured via command line arguments and then launched programmatically The following error is displayed: An Account is not Configured. Please contact your administrator...

UviProcessExcludes registry setting disappears after Citrix VDA upgrade

After upgrading Citrix VDA, the UviProcessExcludes registry setting disappears...

Unable to Create Memory Dump from Windows 2008 R2 Servers after Installing Service Pack 1

Unable to get the operating system to generate complete memory dumps on Windows 2008 R2 servers after updating the server to Service Pack 1 for Windows 2008 R2. The issue was observed on XenApp 6 servers in various environments: Physical servers XenServer virtual machine XenServer with Provisioni...

3 Ways to Hunt for the ZeroLogon Vulnerability on Your Windows Servers

Vulnerability assessment and patch management can be painful time-consuming processes. From the Security team looking at vulnerability reports and prioritizing the riskiest ones for their environment to the IT or Infrastructure team determining exactly which machines need to be patched and...

Windows 10 / Windows Server 2016 September 2017 Information Disclosure Vulnerability (CVE-2017-8529)

The remote Windows host is missing a security update or a registry setting required to enable protections for CVE-2017-8529. It is, therefore, affected by an information disclosure vulnerability: - An information disclosure vulnerability exists when affected Microsoft scripting engines do not...

January 7, 2020, update for Office 2016 (KB4464586)

January 7, 2020, update for Office 2016 KB4464586 This article describes update 4464586 for Microsoft Office 2016 that was released on January 7, 2020.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply t...

Microsoft NET USE win10 - Insufficient Authentication Logic Exploit

Title: Microsoft NET USE win10 - Insufficient Authentication Logic Date: 2020-04-04 Author: hyp3rlinx Vendor: www.microsoft.com CVE: N/A + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source:...

Veeam Recovery Media creating fails with "This access control list is not in canonical form and therefore cannot be modified" error

Challenge During a Veeam Agent for Microsoft Windows backup job the following warning occurs: Collecting recovery media files Details: This access control list is not in canonical form and therefore cannot be modified. Copy The warning may appear in the following cases: Veeam Recovery Media is...

Encryption Key Negotiation of Bluetooth Vulnerability

Executive Summary Microsoft is aware of the Bluetooth BR/EDR basic rate/enhanced data rate, known as "Bluetooth Classic" key negotiation vulnerability that exists at the hardware specification level of any BR/EDR Bluetooth device. An attacker could potentially be able to negotiate the offered key...

April 17, 2018—KB4093113 (Preview of Monthly Rollup)

April 17, 2018—KB4093113 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4093118 released April 10, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Windows Update...

Microsoft Dynamics CRM 2011 Update Rollup 15

Microsoft Dynamics CRM 2011 Update Rollup 15 We have identified a compatibility issue that occurs when you use the Microsoft Dynamics CRM 2011 Client for Outlook with Update Rollup 15 applied against a Dynamics CRM 2013 server. This issue does not affect Dynamics CRM 2011 servers. A new Update...

Script execution on Linux target fails with “Permission Denied” even when executed as root.

Challenge When interacting with Linux servers, Veeam Backup & Replication may encounter a "Permission Denied" error during script execution Pre-freeze, post-thaw, and repository data mover agent scripts, even when the account being used is the root user. Cause All script files are uploaded to and...