CVE-2026-20142 Sensitive Information Disclosure in "_internal" index in Splunk Enterprise

In Splunk Enterprise versions below 10.2.0, 10.0.2, 9.4.7, 9.3.9, and 9.2.11, a user of a Splunk Search Head Cluster SHC deployment who holds a role with access to the Splunk internal index could view the RSA accessKey value from the Authentication.conf file, in plain text...

Splunk Enterprise 9.2.0 < 9.2.11, 9.3.0 < 9.3.8, 9.4.0 < 9.4.7, 10.0.0 < 10.0.2 (SVD-2026-0209)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2026-0209 advisory. - In Splunk Enterprise versions below 10.2.0, 10.0.2, 9.4.7, 9.3.8, and 9.2.11, and Splunk Cloud Platform versions below...

CVE-2021-47796

Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows unauthenticated attackers to access a Linux shell. Attackers can connect to port 23 using the default credential to execute arbitrary commands on the camera's operating system...

Denver SHC-150 Trust Management Vulnerability

The Denver SHC-150 is an indoor surveillance camera produced by the Danish company Denver. The Denver SHC-150 has a trust management vulnerability, which stems from hard-coded telnet credentials. This vulnerability could allow unauthenticated attackers to access the Linux shell...

CVE-2021-47796 Denver Smart Wifi Camera SHC-150 - 'Telnet' Remote Code Execution (RCE)

Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows unauthenticated attackers to access a Linux shell. Attackers can connect to port 23 using the default credential to execute arbitrary commands on the camera's operating system...

CVE-2021-47796

CVE-2021-47796 affects the Denver SHC-150 Smart Wifi Camera. It exposes a hardcoded telnet credential allowing unauthenticated access to a Linux shell over port 23, enabling arbitrary command execution on the device. The CVSS metrics in the provided records indicate CRITICAL impact (high confiden...

CVE-2021-47796 Denver Smart Wifi Camera SHC-150 - 'Telnet' Remote Code Execution (RCE)

Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows unauthenticated attackers to access a Linux shell. Attackers can connect to port 23 using the default credential to execute arbitrary commands on the camera's operating system...

PT-2026-3168

Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows unauthenticated attackers to access a Linux shell. Attackers can connect to port 23 using the default credential to execute arbitrary commands on the camera's operating system...

EUVD-2025-25251

Malicious code in bioql PyPI...

EUVD-2025-28823

Malicious code in bioql PyPI...

CVE-2025-9176

An os command injection flaw has been discovered in neurobin shc. The make function in the src/shc.c file does not properly handle environmental variables, which may lead to command injection. This vulnerability requires local access in order to exploit. Mitigation Mitigation for this issue is...

CVE-2025-9176

A security flaw has been discovered in neurobin shc up to 4.0.3. Impacted is the function make of the file src/shc.c of the component Environment Variable Handler. The manipulation results in os command injection. The attack is only possible with local access. The exploit has been released to the...

CVE-2025-9176

CVE-2025-9176 affects neurobin shc up to version 4.0.3. The vulnerability is in the Environment Variable Handler, specifically the make function in src/shc.c, enabling local OS command injection. Exploitation requires local access, and public exploits/ PoC are mentioned in multiple sources. Remed...

CVE-2025-9175

A vulnerability was identified in neurobin shc up to 4.0.3. This issue affects the function make of the file src/shc.c. The manipulation leads to stack-based buffer overflow. The attack can only be performed from a local environment. The exploit is publicly available and might be used...

CVE-2025-9174

A vulnerability was determined in neurobin shc up to 4.0.3. This vulnerability affects the function make of the file src/shc.c of the component Filename Handler. Executing manipulation can lead to os command injection. The attack can only be executed locally. The exploit has been publicly disclos...

CVE-2025-9175

CVE-2025-9175 affects neurobin shc up to version 4.0.3. The vulnerability is in the make() function of src/shc.c, causing a stack-based buffer overflow that can be triggered locally. Public exploit appears to be available. Several sources corroborate a local-exploitation scenario with varying imp...

CVE-2025-9175 neurobin shc shc.c make stack-based overflow

A vulnerability was identified in neurobin shc up to 4.0.3. This issue affects the function make of the file src/shc.c. The manipulation leads to stack-based buffer overflow. The attack can only be performed from a local environment. The exploit is publicly available and might be used...

CVE-2025-9175 neurobin shc shc.c make stack-based overflow

A vulnerability was identified in neurobin shc up to 4.0.3. This issue affects the function make of the file src/shc.c. The manipulation leads to stack-based buffer overflow. The attack can only be performed from a local environment. The exploit is publicly available and might be used...

CVE-2025-9174 neurobin shc Filename shc.c make os command injection

A vulnerability was determined in neurobin shc up to 4.0.3. This vulnerability affects the function make of the file src/shc.c of the component Filename Handler. Executing manipulation can lead to os command injection. The attack can only be executed locally. The exploit has been publicly disclos...

CVE-2025-9174

The CVE describes a local OS command-injection in neurobin shc ≤ 4.0.3, caused by unsafe handling in the make function of src/shc.c (Filename Handler). Public exploit details indicate local access is required; exploitation has been disclosed. Impact includes potential compromise of confidentialit...