PT-2026-43021

A security vulnerability has been identified in Acer Care Center where the ACCSvc service creates a Named Pipe with a weak Security Descriptor. This vulnerability allows an authenticated local user to connect and send a specially crafted message message type 0x03 to the pipe, causing the service ...

Linux Distros Unpatched Vulnerability : CVE-2026-35512

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xrdp is an open source RDP server. Versions through 0.10.5 have a heap-based buffer overflow in the EGFX graphics dynamic virtual channel implementation due to...

Advisory ROSA-SA-2026-3208

Software: webmin 2.520 WASP: ROSA-CHROME unaffected versions = webmin-2.520-1 affected versions webmin-2.520-1 CVE-ID: CVE-2025-61541 BDU-ID: 2025-14429 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the getwebminemailurl function of the Webmin hosting control panel is related to access delimitatio...

PT-2026-7282

Name of the Vulnerable Software and Affected Versions IntelR OptaneTM PMem management software versions prior to CR MGMT 02.00.00.4052 IntelR OptaneTM PMem management software versions prior to CR MGMT 03.00.00.0538 Description A condition check issue exists in the IntelR OptaneTM PMem management...

CVE-2020-7197

SSMC3.7.0.0 is vulnerable to remote authentication bypass. HPE StoreServ Management Console SSMC 3.7.0.0 is an off node multiarray manager web application and remains isolated from data on the managed arrays. HPE has provided an update to HPE StoreServ Management Console SSMC software 3.7.0.0...

CVE-2021-41232

Thunderdome is an open source agile planning poker tool in the theme of Battling for points. In affected versions there is an LDAP injection vulnerability which affects instances with LDAP authentication enabled. The provided username is not properly escaped. This issue has been patched in versio...

PT-2025-44342

Name of the Vulnerable Software and Affected Versions Zitadel versions prior to 4.6.0 Zitadel versions prior to 3.4.3 Zitadel versions prior to 2.71.18 Description Zitadel, an open-source identity infrastructure software, is susceptible to online brute-force attacks targeting OTP, TOTP, and...

EUVD-2018-2381

Malware in sbrugna...

EUVD-2019-14912

Malware in sbrugna...

EUVD-2025-3091

Malicious code in bioql PyPI...

Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability

A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco IOS XE Software could allow an authenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper error handling when parsing a specific SNMP...

JVN#72111431: Multiple vulnerabilities in Group-Office

Group-Office provided by Intermesh BV contains multiple vulnerabilities listed below. Cross-site scripting CWE-79 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N Base Score 4.8 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Base Score 5.4 CVE-2025-53504 Path traversal CWE-22...

PT-2025-33647 · Unknown · File Station 5

Name of the Vulnerable Software and Affected Versions: File Station 5 versions prior to 5.5.6.4933 Description: An out-of-bounds write vulnerability affects File Station 5. If a remote attacker gains a user account, they can exploit the vulnerability to modify or corrupt memory. Recommendations:...

PT-2025-30479

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 141 Firefox ESR versions prior to 128.13 Firefox ESR versions prior to 140.1 Thunderbird versions prior to 141 Thunderbird versions prior to 128.13 Thunderbird versions prior to 140.1 Description Insufficient escaping...

PT-2025-30279 · Commscope · Ruckus Zonedirector +1

Name of the Vulnerable Software and Affected Versions: CommScope Ruckus Unleashed versions prior to 200.15.6.212.14 and 200.17.7.0.139 CommScope Ruckus ZoneDirector versions prior to 10.5.1.0.279 Description: A hidden debug script .ap debug.sh invoked from the restricted command-line interface do...

PT-2025-29423 · Lb Link · Lb-Link Bl-Ac1900 +5

Name of the Vulnerable Software and Affected Versions: LB-LINK BL-AC1900 LB-LINK BL-AC2100 AZ3 LB-LINK BL-AC3600 LB-LINK BL-AX1800 LB-LINK BL-AX5400P LB-LINK BL-WR9000 versions up to 20250702 Description: A critical vulnerability exists that leads to information disclosure. The issue is located i...

PT-2025-29216 · WordPress · Woodmart

Name of the Vulnerable Software and Affected Versions: WoodMart versions prior to 8.2.6 Description: The WoodMart plugin for WordPress is vulnerable to Information Exposure in versions prior to 8.2.6 due to insufficient restrictions on post inclusion within the woodmart get posts by query functio...

PT-2025-28486

Name of the Vulnerable Software and Affected Versions: Ivanti Endpoint Manager Mobile EPMM versions prior to 12.5.0.2 Ivanti Endpoint Manager Mobile EPMM version 12.4.0.3 Ivanti Endpoint Manager Mobile EPMM version 12.3.0.3 Description: The issue allows a remote authenticated attacker with high...

PT-2025-28401 · Siemens · Ruggedcom I802 +49

Name of the Vulnerable Software and Affected Versions: RUGGEDCOM i800 versions prior to V5.10.0 RUGGEDCOM i801 versions prior to V5.10.0 RUGGEDCOM i802 versions prior to V5.10.0 RUGGEDCOM i803 versions prior to V5.10.0 RUGGEDCOM M2100 versions prior to V5.10.0 RUGGEDCOM M2200 versions prior to...

PT-2025-28760 · Adobe · Indesign Desktop

Name of the Vulnerable Software and Affected Versions: InDesign Desktop versions 19.5.3 and earlier Description: InDesign Desktop versions 19.5.3 and earlier are susceptible to an Access of Uninitialized Pointer issue, potentially leading to arbitrary code execution with current user privileges...