EUVD-2020-17869

Malware in sbrugna...

CVE-2025-0136 PAN-OS: Unencrypted Data Transfer when using AES-128-CCM on Intel-based hardware devices

Using the AES-128-CCM algorithm for IPSec on certain Palo Alto Networks PAN-OS® firewalls PA-7500, PA-5400, PA-5400f, PA-3400, PA-1600, PA-1400, and PA-400 Series leads to unencrypted data transfer to devices that are connected to the PAN-OS firewall through IPSec. This issue does not affect Clou...

Palo Alto Networks PAN-OS 10.1.x < 10.1.14-h14 / 10.2.x < 10.2.11 / 11.0.x < 11.0.7 / 11.1.x < 11.1.5 Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is 10.1.x prior to 10.1.14-h14, 10.2.x prior to 10.2.11, 11.0.x prior to 11.0.7, or 11.1.x prior to 11.1.5. It is, therefore, affected by a vulnerability. Using the AES-128-CCM algorithm for IPSec on certain Palo Alto Networks...

The vulnerability of the software for designing, operating, and maintaining COMOS technological installations lies in the transfer of accounting data in unencrypted form, allowing a perpetrator to gain access to configuration data.

The vulnerability of COMOS’ software for the design, operation, and maintenance of technological installations lies in the transfer of accounting data in an unencrypted form. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to configuration data...

The vulnerability of the cross-platform software development framework Qt, related to the transmission of protected information in unencrypted form, allows attackers to compromise data integrity.

The vulnerability of the cross-platform software development framework Qt is related to the transfer of protected information in unencrypted form. Exploiting this vulnerability allows a malicious actor to compromise data integrity remotely...

The vulnerability of the Linux operating system’s kernel, which allows a hacker to gain access to confidential data

The vulnerability of the Linux operating system’s kernel is related to the transfer of protected information in unencrypted form. Exploiting this vulnerability allows an attacker to gain access to confidential data...

Jenkins 安全漏洞

Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . An information disclosure vulnerability exists in Jenkins Active Directory Plugin version 2.25 and earlier, which stems...

Vgate iCar2 WiFi OBD2 Dongle Inadequate Access Protections

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Unprotected WiFi access & Unencrypted data transfer product: Vgate iCar 2 WiFi OBD2 Dongle vulnerable version: Vgate iCar 2 WiFi OBD2 Dongle fixed version: - CVE number:...