CVE-2025-2442

CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could potentially lead to unauthorized access which could result in the loss of confidentially, integrity and availability when a malicious user, having physical access, sets the radio to the factory default...

CVE-2025-2441

CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could lead to loss of confidentiality when a malicious user, having physical access, sets the radio in factory default mode where the product does not correctly initialize all data...

CVE-2025-2442

CVE-2025-2442 concerns Schneider Electric Trio Q Licensed Data Radio. The vulnerability stems from Initialization of a Resource with an Insecure Default , enabling a malicious user with physical access to set the radio to factory default mode and trigger unauthorized access, potentially compromis...

CVE-2025-2441

CVE-2025-2441 affects Schneider Electric Trio Q Licensed Data Radio. Root cause: insecure initialization of resources when set to factory default, potentially exposing confidential data. Impact: confidentiality loss with physical access; CVSS v3.1/4.0 base scores MEDIUM. Exploitation status not d...

CVE-2025-2441

CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could lead to loss of confidentiality when a malicious user, having physical access, sets the radio in factory default mode where the product does not correctly initialize all data...

Schneider Electric Trio Q Licensed Data Radio 安全漏洞

Schneider Electric Trio Q Licensed Data Radio is a radio from Schneider Electric France. A security vulnerability exists in Schneider Electric Trio Q Licensed Data Radio versions prior to v2.7.2, which stems from an insecure resource initialization that could lead to unauthorized access...

Schneider Electric Trio Q Licensed Data Radio 安全漏洞

The Schneider Electric Trio Q Licensed Data Radio is a radio from Schneider Electric France. The Schneider Electric Trio Q Licensed Data Radio suffers from an information disclosure vulnerability that stems from an insecure initialization of resources, which can be exploited by an attacker to...

The vulnerability of the manaDestroyTxq() function in the Linux kernel driver allows a hacker to induce a service failure.

The vulnerability of the manaDestroyTxq function in the Linux kernel driver is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the SYM_CODE_START() function in the arch/x86/entry/entry_32.S module of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of protected information.

The vulnerability of the SYMCODESTART function in the arch/x86/entry/entry32.S module of the Linux operating system is related to incorrect initialization of resources. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of protected informati...

The vulnerability of the p9_fcall_init() function in the net/9p/client.c module of the 9P protocol implementation in the Linux operating system allows a hacker to induce a service failure.

The vulnerability of the p9fcallinit function in the net/9p/client.c module of the 9P protocol implementation in the Linux operating system is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the nnq_Sigmoid() function in the Quantized Sigmoid Module framework of the PyTorch machine learning library allows attackers to exploit it to compromise the integrity of protected information.

The vulnerability of the nnqSigmoid function in the Quantized Sigmoid Module of the PyTorch machine learning framework is related to incorrect initialization of resources when processing parameters scale and zeropoint. Exploiting this vulnerability can allow attackers to compromise the integrity ...

CVE-2025-1960

CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could cause an attacker to execute unauthorized commands when a system’s default password credentials have not been changed on first use. The default username is not displayed correctly in the WebHMI interfa...

CVE-2025-2129

A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability i...

The vulnerability of the WebHMI component of the EcoStruxure Power Automation System User Interface (EcoSUI) and the EcoStruxure Microgrid Operation Large (EMO-L) system, which allows a hacker to gain unauthorized access to the device.

The vulnerability of the WebHMI component of the SCADA system EcoStruxure Power Automation System User Interface EcoSUI and the EcoStruxure Microgrid Operation Large EMO-L system for optimizing distributed energy resources is related to insecure initialization of the resources. Exploiting this...

CVE-2025-2129 Mage AI insecure default initialization of resource

A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability i...

CVE-2025-2129 Mage AI insecure default initialization of resource

A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability i...

CVE-2025-2129

Mage AI 0.9.75 is associated with an insecure default initialization of a resource (insecure default authentication setup) that could enable a remote attack. Documents describe a network-vector, high attack complexity, and partial confidentiality/integrity/availability impact. The exploitability ...

Mage AI 安全漏洞

Mage AI is a Mage open source intelligent program for building, running and managing data pipelines. A security vulnerability exists in Mage AI version 0.9.75 that stems from insecure resource initialization...

The vulnerability of Intel Active Management Technology (AMT) and Intel Standard Manageability microprogramming software for processors and Intel chipsets allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Intel Active Management Technology AMT and Intel Standard Manageability microprogramming software for processors and Intel chips is related to improper initialization of resources. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected...

The vulnerability of the OutOfBandXML module in the microprogramming software of Intel UEFI processors allows a hacker to gain unauthorized access to protected information.

The vulnerability of the OutOfBandXML module in Intel UEFI microprogramming systems is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...