CVE-2026-7821

Improper certificate validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to enroll a device belonging to a restricted set of unenrolled devices, leading to information disclosure about EPMM appliance and impacting on the integrity of...

CVE-2026-7821

Improper certificate validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to enroll a device belonging to a restricted set of unenrolled devices, leading to information disclosure about EPMM appliance and impacting on the integrity of...

GHSA-Q96J-3FMM-7FV4 LXD: Importing a crafted backup leads to project restriction bypass

Summary LXD instance backup import validates project restrictions against backup/index.yaml embedded in the tar archive, but creates the actual instance from backup/container/backup.yaml extracted to the storage volume. Because these are separate, independently attacker-controlled files within th...

CoAP Protocol: Definition, Architecture

Professionals involved in IoT network designing or development must have come across CoAP. A dedicatedly set standard by IETF, it works the best when it comes to constrained IoT-enabled solutions. To make you understand CoAP Constrained Application Protocol better, we have prepared this post,...

Binary vulnerability in jerryscript (CNVD-2020-72374)

erryScript is a lightweight JavaScript engine that runs on restricted devices. A binary vulnerability exists in jerryscript. An attacker could exploit this vulnerability to cause an impact on usability...

Binary vulnerability in jerryscript (CNVD-2020-72373)

JerryScript is a lightweight JavaScript engine that runs on restricted devices. A binary vulnerability exists in jerryscript, which can be exploited by attackers to compromise usability...