CVE-2025-63208

An issue was discovered in bridgetech VB288 Objective QoE Content Extractor, firmware version 5.6.0-8, allowing attackers to gain sensitive information such as administrator passwords via the /probe/core/setup/passwd endpoint...

CVE-2025-63205

An issue was discovered in bridgetech probes VB220 IP Network Probe,VB120 Embedded IP + RF Probe, VB330 High-Capacity Probe, VB440 ST 2110 Production Analytics Probe, and NOMAD, firmware versions 6.5.0-9, allowing attackers to gain sensitive information such as administrator passwords via the...

Malicious code in sitoogether (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 09dd85c25ad8d35e40f8afc89c4a7f0322beb48a72db826b13c2142810460ac9 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-191870 Malicious code in sitoogether (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 09dd85c25ad8d35e40f8afc89c4a7f0322beb48a72db826b13c2142810460ac9 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

CVE-2025-63211

CVE-2025-63211 affects Bridgetech VBC Server & Element Manager. A stored cross-site scripting flaw exists in firmware versions 6.5.0-9 through 6.5.0-10, exploitable via the addName parameter on the /vbc/core/userSetupDoc/userSetupDoc endpoint, potentially enabling arbitrary code execution. Connec...

CVE-2025-63211

Stored cross-site scripting vulnerability in bridgetech VBC Server & Element Manager, firmware versions 6.5.0-9 thru 6.5.0-10, allows attackers to execute arbitrary code via the addName parameter to the /vbc/core/userSetupDoc/userSetupDoc endpoint...

CVE-2025-63209

The ELCA Star Transmitter Remote Control firmware 1.25 for STAR150, BP1000, STAR300, STAR2000, STAR1000, STAR500, and possibly other models, contains an information disclosure vulnerability allowing unauthenticated attackers to retrieve admin credentials and system settings via an unprotected...

CVE-2025-63205

An issue was discovered in bridgetech probes VB220 IP Network Probe,VB120 Embedded IP + RF Probe, VB330 High-Capacity Probe, VB440 ST 2110 Production Analytics Probe, and NOMAD, firmware versions 6.5.0-9, allowing attackers to gain sensitive information such as administrator passwords via the...

PT-2025-47499

Name of the Vulnerable Software and Affected Versions ELCA Star Transmitter Remote Control firmware version 1.25 Description The ELCA Star Transmitter Remote Control firmware version 1.25 has an issue that allows unauthenticated attackers to retrieve admin credentials and system settings. This is...

CVE-2025-63205

Bridgetech probes and NOMAD (VB220, VB120, VB330, VB440) firmware versions 6.5.0-9 have a reported information-disclosure flaw exposed via the /probe/core/setup/passwd endpoint that can reveal administrator passwords. Multiple sources corroborate the affected product set and version, but the supp...

CVE-2025-63209

The ELCA Star Transmitter Remote Control firmware version 1.25 (STAR150, BP1000, STAR300, STAR2000, STAR1000, STAR500, and possibly other models) is affected by an information-disclosure vulnerability: unauthenticated attackers can retrieve admin credentials and system settings via the unprotecte...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46844)

um: line: always fill errorout in setuponeline The pointer isn't initialized by callers, but I have encountered cases where it's still printed; initialize it in all possible cases in setuponeline. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for...

Siemens SCALANCE and RUGGEDCOM Devices Integer Overflow or Wraparound (CVE-2024-53145)

um: potential integer overflow during physmem setup. This vulnerability happens when the real map size is greater than LONGMAX, which can be easily triggered on UML/i386. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

MAL-2025-191791 Malicious code in minemeld-core (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 dfe7b8c00b3748b3fe38ffdf3bd69558abb58091ee3347d47003929976ceb457 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

CLSA-2025-1763139214 gstreamer1-plugins-base: Fix of CVE-2024-47615

CVE-2024-47615: fix OOB-Write in gstparsevorbissetuppacket by validating integer size input to prevent memory corruption...

Malicious code in pylibcugraph (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b298ab8786b687f39d3ce25f6a69effd415c27b384fa23bc45c5fdf640448105 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-191835 Malicious code in pylibcugraph (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b298ab8786b687f39d3ce25f6a69effd415c27b384fa23bc45c5fdf640448105 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

CVE-2025-40170

In the Linux kernel, the following vulnerability has been resolved: net: use dstdevrcu in sksetupcaps Use RCU to protect accesses to dst-dev from sksetupcaps and skdstgsomaxsize. Also use dstdevrcu in ip6dstmtumaybeforward, and ipdstmtumaybeforward. ip4dsthoplimit can use dstdevnetrcu...

MAL-2025-156466 Malicious code in inal-poke76 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4e9426370228cd967af19fc29b68599d549f8c979fb7255fe210809b1f14506 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in google-cloud-iam-credentials (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e75faf49c379401db38883bfb490edbc74161e0d52d38f6aac38f6166645133a Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...