30 matches found
EUVD-2019-4702
Malware in sbrugna...
EUVD-2024-31881
Malicious code in bioql PyPI...
EUVD-2025-7246
Malicious code in bioql PyPI...
EUVD-2025-16336
Malicious code in bioql PyPI...
PT-2025-28897 · Tenda · Tenda Cp3 Pro
Name of the Vulnerable Software and Affected Versions: Tenda CP3 Pro version 22.5.4.93 Description: An insecure permissions issue exists in the Tenda CP3 Pro firmware. The telnet service telnetd is enabled by default during boot via the initialization script /etc/init.d/eth.sh. This allows remote...
CVE-2025-47996 Windows MBT Transport Driver Elevation of Privilege Vulnerability
...
Nessus Network Monitor < 6.5.1 Multiple Vulnerabilities (TNS-2025-10)
According to its self-reported version, the Nessus Network Monitor running on the remote host is prior to 6.5.1. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2025-10 advisory. - In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in...
CVE-2025-24916
When installing Tenable Network Monitor to a non-default location on a Windows host, Tenable Network Monitor versions prior to 6.5.1 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default...
PT-2025-22809 · Tenable · Tenable Network Monitor
Name of the Vulnerable Software and Affected Versions: Tenable Network Monitor versions prior to 6.5.1 Description: The issue arises when Tenable Network Monitor is installed to a non-default location on a Windows host. In such cases, versions prior to 6.5.1 did not enforce secure permissions for...
CVE-2025-24914
When installing Nessus to a non-default location on a Windows host, Nessus versions prior to 10.8.4 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location. -...
[R1] Nessus Version 10.8.4 Fixes Multiple Vulnerabilities
R1 Nessus Version 10.8.4 Fixes Multiple Vulnerabilities Arnie Cabral Thu, 04/17/2025 - 11:58 Nessus leverages third-party software to help provide underlying functionality. Several of the third-party components libxml2, expat were found to contain vulnerabilities, and updated versions have been...
[R1] Nessus Agent Version 10.7.4 Fixes One Vulnerability
R1 Nessus Agent Version 10.7.4 Fixes One Vulnerability Arnie Cabral Wed, 04/02/2025 - 11:12 When installing Nessus Agent to a non-default location on a Windows host, Nessus Agent versions prior to 10.7.4 did not enforce secure permissions for sub-directories. This could allow for local privilege...
CVE-2025-24915
When installing Nessus Agent to a non-default location on a Windows host, Nessus Agent versions prior to 10.8.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location...
CVE-2025-24915
When installing Nessus Agent to a non-default location on a Windows host, Nessus Agent versions prior to 10.8.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location...
CVE-2025-24915
CVE-2025-24915 concerns Tenable Nessus Agent on Windows. Affected: Nessus Agent installed to a non-default location. Root cause: older Agent versions (pre-10.8.3) did not enforce secure permissions for sub-directories in non-default install paths, enabling potential local privilege escalation. Im...
CVE-2024-4157
The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 5.1.15 via deserialization of untrusted input in the extractDynamicValues function. This makes it possible for...
CVE-2024-3291 Privilege Escalation
When installing Nessus Agent to a directory outside of the default location on a Windows host, Nessus Agent versions prior to 10.6.4 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default...
CVE-2024-3291 Privilege Escalation
When installing Nessus Agent to a directory outside of the default location on a Windows host, Nessus Agent versions prior to 10.6.4 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default...
[R1] Nessus Version 10.7.3 Fixes Multiple Vulnerabilities
R1 Nessus Version 10.7.3 Fixes Multiple Vulnerabilities Arnie Cabral Wed, 05/15/2024 - 11:01 Two separate vulnerabilities were discovered, reported and fixed: When installing Nessus to a directory outside of the default location on a Windows host, Nessus versions prior to 10.7.3 did not enforce...
Race condition
modules/luksbootkeyfile/main.py in Calamares versions 3.1 through 3.2.10 has a race condition between the time when the LUKS encryption keyfile is created and when secure permissions are set...