50 matches found
EUVD-2026-29500
The nexent v1.7.5.2 backend service contains an unauthorized arbitrary storage file deletion vulnerability in its file management API. The DELETE /storage/objectname:path endpoint lacks authentication, authorization, and input validation mechanisms. Unauthenticated remote attackers can send craft...
CVE-2026-31216
The nexent v1.7.5.2 backend service contains an unauthorized arbitrary storage file deletion vulnerability in its file management API. The DELETE /storage/objectname:path endpoint lacks authentication, authorization, and input validation mechanisms. Unauthenticated remote attackers can send craft...
CVE-2026-31216
The CVE concerns the Nexent v1.7.5.2 backend service. The vulnerability lies in the file management API: DELETE /storage/{object_name:path} accepts a user-controlled object_name and is missing authentication, authorization, and input validation. This allows unauthenticated remote attackers to del...
Release Information for Dell SC Series Plug-In for Veeam Backup & Replication
This plug-in leverages the Veeam Universal Storage API, which enables storage OEMs to allow Veeam Backup & Replication integration to the arrays for backup and replication jobs. Requirements Before installing Dell SC Series Plug-In v1.0.211, ensure that you are running Veeam Backup & Replication...
EUVD-2025-74036
The VAPIX Edge storage API that allowed a privilege escalation, enabling a VAPIX administrator-privileged user to gain Linux Root privileges. This flaw can only be exploited after authenticating with an administrator-privileged service account...
CVE-2025-9055
The VAPIX Edge storage API that allowed a privilege escalation, enabling a VAPIX administrator-privileged user to gain Linux Root privileges. This flaw can only be exploited after authenticating with an administrator-privileged service account...
PT-2025-46313
Name of the Vulnerable Software and Affected Versions VAPIX Edge affected versions not specified Description The VAPIX Edge storage API contains a flaw that allows privilege escalation. An authenticated VAPIX administrator-privileged user can gain Linux Root privileges. Exploitation requires...
EUVD-2015-9062
Malware in sbrugna...
EUVD-2017-6384
Malware in sbrugna...
EUVD-2014-5068
Malware in sbrugna...
EUVD-2015-5457
Malware in sbrugna...
EUVD-2025-20017
Malicious code in bioql PyPI...
EUVD-2025-27469
Malicious code in bioql PyPI...
MAL-2025-41496 Malicious code in @twork-data-services/customer-storage-api-v5-customer (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-41495 Malicious code in @twork-data-services/customer-storage-api-v3-customer-timezone (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-41494 Malicious code in @twork-data-services/customer-storage-api-v3-customer-attribute (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-41493 Malicious code in @twork-data-services/customer-storage-api-v2-customer-email (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2025-46733
OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In version 4.5.0, using a specially crafted tee-supplicant binary running in REE userspace, an attacker can trigger a panic in a TA that...
UBUNTU-CVE-2025-46733
OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In version 4.5.0, using a specially crafted tee-supplicant binary running in REE userspace, an attacker can trigger a panic in a TA that...
CVE-2025-46733 REE userspace code can panic TAs, leading to fTPM PCR reset and data disclosure
OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In version 4.5.0, using a specially crafted tee-supplicant binary running in REE userspace, an attacker can trigger a panic in a TA that...