EUVD-2026-29522

Untrusted pointer dereference for some IntelR QuickAssist Adapter 8960 software before version 1.13 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable escalation of...

CVE-2025-32449

CVE-2025-32449 affects PRI Driver software before version 03.03.1002, with an unquoted search path in Ring 3: User Applications that can enable privilege escalation. The issue is local and requires an authenticated user with high attack complexity and user interaction; the vulnerability impacts c...

EUVD-2009-4886

Malware in sbrugna...

CVE-2025-6785

CVE-2025-6785 affects Tesla Model 3 software versions from 2023.Xx before 2023.44. The vulnerability stems from insecure handling of externally accessible CAN wiring, which can grant physical access to the CAN bus and enable injection of specially formed CAN messages to control remote start funct...

Code injection

Cambium Enterprise Wi-Fi System Software before 6.4.2 does not sanitize the ping host argument in device-agent...

CVE-2022-27170

Protection mechanism failure in the IntelR Media SDK software before version 22.2.2 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-35648

Nautilus treadmills T616 S/N 100672PRO21140001 through 100672PRO21171980 and T618 S/N 100647PRO21130111 through 100647PRO21183960 with software before 2022-06-09 allow physically proximate attackers to cause a denial of service fall by connecting the power cord to a 120V circuit which may lead to...

CVE-2022-25154

A DLL hijacking vulnerability in Samsung portable SSD T5 PC software before 1.6.9 could allow a local attacker to escalate privileges. An attacker must already have user privileges on Windows 7, 10, or 11 to exploit this vulnerability...

CVE-2015-2254

Huawei OceanStor UDS devices with software before V100R002C01SPC102 might allow remote attackers to capture and change patch loading information resulting in the deletion of directory files and compromise of system functions when loading a patch...

CVE-2015-7842

Huawei FusionServer rack servers RH2288 V3 with software before V100R003C00SPC603, RH2288H V3 with software before V100R003C00SPC503, XH628 V3 with software before V100R003C00SPC602, RH1288 V3 with software before V100R003C00SPC602, RH2288A V2 with software before V100R002C00SPC701, RH1288A V2 wi...

Format string

Format string vulnerability in Huawei AR100, AR120, AR150, AR200, AR500, AR550, AR1200, AR2200, AR2500, AR3200, and AR3600 routers with software before V200R007C00SPC900 and NetEngine 16EX routers with software before V200R007C00SPC900 allows remote authenticated users to cause a denial of servic...

CVE-2016-6362

Cisco Aironet 1800, 2800, and 3800 devices with software before 8.2.110.0, 8.2.12x before 8.2.121.0, and 8.3.x before 8.3.102.0 allow local users to gain privileges via crafted CLI parameters, aka Bug ID CSCuz24725...

CVE-2013-5648

Absolute path traversal vulnerability in the handleStartDataFile function in DigiDocSAXParser.c in libdigidoc 3.6.0.0, as used in ID-software before 3.7.2 and other products, allows remote attackers to overwrite arbitrary files via a filename beginning with / slash or \ backslash in a DDOC file...

CVE-2012-5216

Cross-site request forgery CSRF vulnerability on HP ProCurve 1700-8 aka J9079A switches with software before VA.02.09 and 1700-24 aka J9080A switches with software before VB.02.09 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

CVE-2009-5037

Cisco Adaptive Security Appliances ASA 5500 series devices with software before 8.23 allow remote attackers to cause a denial of service ASDM syslog outage via a long URL, aka Bug IDs CSCsm11264 and CSCtb92911...