Kings KESS Enterprise 安全漏洞

Kings KESS Enterprise is an endpoint security management and document encryption system from the Korean company Kings. A security vulnerability exists in previous versions of Kings KESS Enterprise .25.9.19.Exe, which stems from the exposure of sensitive information, lack of encryption, and...

EUVD-2007-4732

Malware in sbrugna...

EUVD-2018-18719

Malware in sbrugna...

EUVD-2017-6015

Malware in sbrugna...

EUVD-2022-45987

Malicious code in bioql PyPI...

EUVD-2024-25232

Malicious code in bioql PyPI...

EUVD-2022-2466

Malicious code in bioql PyPI...

CVE-2025-48795 Apache CXF: Denial of Service and sensitive data exposure in logs

Apache CXF stores large stream based messages as temporary files on the local filesystem. A bug was introduced which means that the entire temporary file is read into memory and then logged. An attacker might be able to exploit this to cause a denial of service attack by causing an out of memory...

CVE-2024-28065

In Unify CP IP Phone firmware 1.10.4.3, files are not encrypted and contain sensitive information such as the root password hash...

CVE-2024-28065

In Unify CP IP Phone firmware 1.10.4.3, files are not encrypted and contain sensitive information such as the root password hash...

Unify CP IP Phone 安全漏洞

Unify CP IP Phone is a phone from Unify, a German company. A security vulnerability exists in the Unify CP IP Phone firmware version 1.10.4.3, which originates from files that are not encrypted and contain sensitive information such as root passwords...

CVE-2010-3292

The updatebad,phishingsites scripts in mailscanner 4.79.11-2 downloads files and trusts them without using encryption e.g., https or digital signature checking which could allow an attacker to replace certain configuration files e.g., phishing whitelist via dns/packet spoofing...

CVE-2017-14514

Directory Traversal on Tenda W15E devices before 15.11.0.14 allows remote attackers to read unencrypted files via a crafted URL...

Directory traversal

Directory Traversal on Tenda W15E devices before 15.11.0.14 allows remote attackers to read unencrypted files via a crafted URL...

CVE-2017-14514

Directory Traversal on Tenda W15E devices before 15.11.0.14 allows remote attackers to read unencrypted files via a crafted URL...

CVE-2017-14514

Directory Traversal on Tenda W15E devices before 15.11.0.14 allows remote attackers to read unencrypted files via a crafted URL...

CVE-2011-0412

Oracle Solaris 8, 9, and 10 stores back-out patch files undo.Z unencrypted with world-readable permissions under /var/sadm/pkg/, which allows local users to obtain password hashes and conduct brute force password guessing attacks...

Default credentials

Oracle Solaris 8, 9, and 10 stores back-out patch files undo.Z unencrypted with world-readable permissions under /var/sadm/pkg/, which allows local users to obtain password hashes and conduct brute force password guessing attacks...

Information disclosure

RemoteDocs R-Viewer before 1.6.3768 stores encrypted RDZ file data in unencrypted temporary files, which allows local users to obtain sensitive information by reading the temporary files...

CVE-2007-4751

RemoteDocs R-Viewer before 1.6.3768 stores encrypted RDZ file data in unencrypted temporary files, which allows local users to obtain sensitive information by reading the temporary files...