MAL-2026-3747 Malicious code in @aiscene/aiserver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 542fdb1c23b52adda0ed5164b65c9768aef7a5edd45473f9cd3ceab3065b1bb3 When the installed aiserver tool is started via its bin, npm start, or loading dist/index.js, it registers the host with a hardcoded remote controlle...

Dell Integrated Dell Remote Access Controller 安全漏洞

Dell Integrated Dell Remote Access Controller is an embedded controller for remote management and monitoring of servers from Dell USA. An information disclosure vulnerability exists in Dell Integrated Dell Remote Access Controller. The vulnerability stems from the failure to clear debugging...

PT-2026-26133

Dell Integrated Dell Remote Access Controller 9, 14G versions prior to 7.00.00.174, 15G and 16G versions prior to 7.10.90.00, contain an Exposure of Sensitive System Information Due to Uncleared Debug Information vulnerability. A high privileged attacker with remote access could potentially explo...

EUVD-2018-6665

Malware in sbrugna...

EUVD-2024-18206

Malicious code in bioql PyPI...

CVE-2025-38742

Dell iDRAC Service Module iSM, versions prior to 6.0.3.0, contains an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution...

ABB RMC-100 安全漏洞

The ABB RMC-100 is a remote modular controller from ABB Switzerland. Capable of managing automation, liquid and gas measurement, asset data centralization for large production and transmission facilities. ABB RMC-100 has a security vulnerability that stems from the use of hard-coded encryption ke...

ABB RMC-100 安全漏洞

The ABB RMC-100 is a remote modular controller from ABB Switzerland. Capable of managing automation, liquid and gas measurements, asset data centralization for large production and transmission facilities. A security vulnerability exists in the ABB RMC-100 that stems from the use of hard-coded...

CVE-2024-20491

A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker with access to a tech support file to view sensitive information. This vulnerability exists because remote controller credentials are recorded in an internal log that is stored in the tech support file...

CVE-2020-29664

A command injection issue in djisys in DJI Mavic 2 Remote Controller before firmware version 01.00.0510 allows for code execution via a malicious firmware upgrade packet...

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08604)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method UnlockGeneralSettings, which can be exploited by an attacker to bypass...

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08370)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the CreateLog method, which can be exploited by an attacker to bypass authorization...

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08358)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method UpdateConnectionVariables, which can be exploited by an attacker to...

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08592)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the LockWebServerGatewaySettings method, which can be exploited by an attacker to bypass...

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08366)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the ExportCertificate method, which can be exploited by an attacker to bypass...

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08372)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the UpdateTraceLevelSettings method, which can be exploited by an attacker to bypass...

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08364)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that stems from an SQL injection in the ImportCertificate method, which can be exploited by an attacker to bypass authorization...

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08619)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an internal method UpdateProjectUserRights, which can be exploited by an attacker to bypass authorization...

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08601)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method LockTcmSettings, which can be exploited by an attacker to bypass...

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-09146)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that can be exploited by an attacker to cause remote code execution...