EUVD-2025-11972

Malicious code in bioql PyPI...

Planet UNI-NMS-Lite Trust Management Issues Vulnerability

Planet UNI-NMS-Lite is a universal network management system from PLANET China that monitors all deployed wired or wireless PoE industrial grade network devices. Planet UNI-NMS-Lite is vulnerable to a trust management issue that can be exploited by an attacker to submit a special request that can...

CVE-2025-46273

UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to gain administrative privileges to all UNI-NMS managed devices...

The vulnerability of the UNI-NMS-Lite network management system, which stems from the use of rigidly encrypted account data, allows a hacker to elevate their privileges to the level of an administrator.

The vulnerability of the UNI-NMS-Lite network management system is related to the use of strictly encrypted account data. Exploiting this vulnerability can allow a malicious actor to elevate their privileges to the level of an administrator...

CVE-2025-46273

UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to gain administrative privileges to all UNI-NMS managed devices...

CVE-2025-46271

UNI-NMS-Lite is vulnerable to a command injection attack that could allow an unauthenticated attacker to read or manipulate device data...

CVE-2025-46274

Planet UNI-NMS-Lite is affected by CVE-2025-46274, a vulnerability arising from hard-coded credentials that could allow an unauthenticated attacker to read, manipulate, and create entries in the managed database. The risk is described as CRITICAL with network attack vector and no user interaction...

CVE-2025-46273

The CVE-2025-46273 entry concerns Planet UNI-NMS-Lite. Connected sources confirm a vulnerability in UNI-NMS-Lite involving hard-coded credentials that could allow an unauthenticated attacker to gain administrative privileges on all UNI-NMS managed devices, and also document a command-injection pa...

CVE-2025-46273 Planet Technology Network Products Use of Hard-coded Credentials

UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to gain administrative privileges to all UNI-NMS managed devices...

CVE-2025-46271

Planet UNI-NMS-Lite is affected by a command injection vulnerability (CVE-2025-46271). An unauthenticated attacker could read or manipulate device data via crafted requests. Public references include CSIS/Red Hat/NVD entries and multiple phonetic advisories, with discussion of risks and affected ...

PT-2025-17862

Name of the Vulnerable Software and Affected Versions UNI-NMS-Lite affected versions not specified Description The issue concerns the use of hard-coded credentials in UNI-NMS-Lite, which could allow an unauthenticated attacker to gain administrative privileges to all UNI-NMS managed devices...

PT-2025-17860 · Unknown · Uni-Nms-Lite

Name of the Vulnerable Software and Affected Versions: UNI-NMS-Lite affected versions not specified Description: The issue allows an unauthenticated attacker to read or manipulate device data through a command injection attack. Recommendations: At the moment, there is no information about a newer...

PT-2025-17863 · Unknown · Uni-Nms-Lite

Name of the Vulnerable Software and Affected Versions: UNI-NMS-Lite affected versions not specified Description: The issue concerns the use of hard-coded credentials in UNI-NMS-Lite, which could allow an unauthenticated attacker to read, manipulate, and create entries in the managed database...