CVE-2026-24003 EvseV2G has sequence state validation bypass

EVerest is an EV charging software stack. In versions up to and including 2025.12.1, it is possible to bypass the sequence state verification including authentication, and send requests that transition to forbidden states relative to the current one, thereby updating the current context with...

The vulnerability of the Fake Authentication Result Handler component in the DKIM-filtering software OpenDKIM allows a perpetrator to influence the integrity of the protected information.

The vulnerability of the Fake Authentication Result Handler component in the DKIM-filtering software OpenDKIM is related to the lack of checks for sequence numbers during the deletion of fake fields. Exploiting this vulnerability allows a malicious actor to influence the integrity of the protecte...

The vulnerability of the Siemens RUGGEDCOM CROSSBOW access control system allows a intruder to re-record any files in the system.

The vulnerability of the Siemens RUGGEDCOM CROSSBOW access control system lies in the validation of input data during the processing of sequence bypasses for directories. Exploiting this vulnerability allows a malicious actor to re-record any files in the system...

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...