34 matches found
EUVD-2026-22310
CWE-798 Use of Hard-coded Credentials vulnerability exists that could cause unauthorized access to sensitive device information when an unauthenticated attacker is able to interrogate the SNMP port...
EUVD-2025-206288
A potential vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to gain access to sensitive device information...
CVE-2025-13454
A potential vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to gain access to sensitive device information...
CVE-2025-13454
A potential vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to gain access to sensitive device information...
CVE-2025-13454
A potential vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to gain access to sensitive device information...
PT-2026-2960
Name of the Vulnerable Software and Affected Versions ThinkPlus configuration software affected versions not specified Description A local authenticated user may be able to access sensitive device information. Recommendations At the moment, there is no information about a newer version that...
PT-2025-52686
Name of the Vulnerable Software and Affected Versions Xiongmai XM530 IP cameras version V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06 Description An authentication bypass issue exists in Xiongmai XM530 IP cameras. This allows unauthenticated remote attackers to access sensitive device information...
CVE-2025-59780
General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web server which could allow an attacker to send GET requests to obtain sensitive device information...
EUVD-2025-37551
A potential vulnerability was reported in some Lenovo Tablets that could allow a local authenticated user or application to gain access to sensitive device specific information...
CVE-2025-11193
A potential vulnerability was reported in some Lenovo Tablets that could allow a local authenticated user or application to gain access to sensitive device specific information...
Lenovo Tablets 安全漏洞
Lenovo Tablets is a line of tablet computers from the Chinese company Lenovo Lenovo. A security vulnerability exists in Lenovo Tablets that originates from a locally authenticated user or application that could access sensitive device-specific information...
EUVD-2020-4793
Malware in sbrugna...
EUVD-2013-6779
Malware in sbrugna...
CVE-2025-43716
A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the URI of the /client/index.php endpoint, an attacker can bypass access controls and gain unauthorized access to various endpoints such as...
CVE-2025-43716
A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the URI of the /client/index.php endpoint, an attacker can bypass access controls and gain unauthorized access to various endpoints such as...
CVE-2025-30109
In the IROAD APK 5.2.5, there are Hardcoded Credentials in the APK for ports 9091 and 9092. The mobile application for the dashcam contains hardcoded credentials that allow an attacker on the local Wi-Fi network to access API endpoints and retrieve sensitive device information, including live and...
CVE-2025-30109
CVE-2025-30109 affects the IROAD APK (version 5.2.5). The issue arises from hardcoded credentials in the APK for ports 9091 and 9092, enabling an attacker on the local Wi‑Fi network to access API endpoints and retrieve sensitive device information, including live and recorded footage. The provide...
CVE-2025-30109
In the IROAD APK 5.2.5, there are Hardcoded Credentials in the APK for ports 9091 and 9092. The mobile application for the dashcam contains hardcoded credentials that allow an attacker on the local Wi-Fi network to access API endpoints and retrieve sensitive device information, including live and...
CVE-2024-6421
An unauthenticated remote attacker can read out sensitive device information through a incorrectly configured FTP service...
CVE-2024-22066
There is a privilege escalation vulnerability in ZTE ZXR10 ZSR V2 intelligent multi service router . An authenticated attacker could use the vulnerability to obtain sensitive information about the device...