EUVD-2021-12370

Malware in sbrugna...

EUVD-2017-14059

Malware in sbrugna...

EUVD-2023-28517

Malicious code in bioql PyPI...

EUVD-2024-42275

Malicious code in bioql PyPI...

EUVD-2022-44768

Malicious code in bioql PyPI...

EUVD-2024-42516

Malicious code in bioql PyPI...

CVE-2024-47122

In the goTenna Pro App, the encryption keys are stored along with a static IV on the End User Device EUD. This allows for complete decryption of keys stored on the EUD if physically compromised. This allows an attacker to decrypt all encrypted broadcast communications based on encryption keys...

CVE-2022-41576

The rphone module has a script that can be maliciously modified.Successful exploitation of this vulnerability may cause irreversible programs to be implanted on user devices...

CVE-2021-25424

Improper authentication vulnerability in Tizen bluetooth-frwk prior to Firmware update JUN-2021 Release allows bluetooth attacker to take over the user's bluetooth device without user awareness...

Growatt Cloud Applications 安全漏洞

Growatt Cloud Applications is a monitoring platform from Growatt in China. A security bypass vulnerability exists in Growatt Cloud Applications version 3.6.0 and prior versions, which can be exploited by an unauthenticated attacker to add another user's device to a scenario...

CVE-2024-23942

A local user may find a configuration file on the client workstation with unencrypted sensitive data. This allows an attacker to impersonate the device or prevent the device from accessing the cloud portal which leads to a DoS...

CVE-2025-24896

Misskey is an open source, federated social media platform. Starting in version 12.109.0 and prior to version 2025.2.0-alpha.0, a login token named token is stored in a cookie for authentication purposes in Bull Dashboard, but this remains undeleted even after logout is performed. The primary...

CVE-2024-47122

In the goTenna Pro App, the encryption keys are stored along with a static IV on the End User Device EUD. This allows for complete decryption of keys stored on the EUD if physically compromised. This allows an attacker to decrypt all encrypted broadcast communications based on encryption keys...

Remote code execution

Zoom clients prior to 5.13.5 contain an improper trust boundary implementation vulnerability. If a victim saves a local recording to an SMB location and later opens it using a link from Zoom’s web portal, an attacker positioned on an adjacent network to the victim client could set up a malicious...

Design/Logic Flaw

Assuming a shell privilege is gained, an improper exception handling for multisimbarhidebymeadiafull value in SystemUI prior to SMR Oct-2021 Release 1 allows an attacker to cause a permanent denial of service in user device before factory reset...

CVE-2021-25474

Assuming a shell privilege is gained, an improper exception handling for multisimbarshowonqspanel value in SystemUI prior to SMR Oct-2021 Release 1 allows an attacker to cause a permanent denial of service in user device before factory reset...

Registry Based EPA Scan on ADC to Look Active Device or Computer Name of Explicit

This article describes how to configure a registry-based EPA scan on NetScaler to look for the active device or computer name of an explicit workstation. Background When the user types the NetScaler Gateway web address, the NetScaler Gateway checks to see if there are any client-based security...

Cross site request forgery (csrf)

A vulnerability has been identified in SINEMA Remote Connect Server All versions V2.0 SP1. Some parts of the web application are not protected against Cross Site Request Forgery CSRF attacks. The security vulnerability could be exploited by an attacker that is able to trigger requests of a...

SolarWinds User Device Tracker (UDT) Detection (Windows SMB Login)

SMB login-based detection of SolarWinds User Device Tracker UDT. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Storefront 3.12 - Unable to start any of the Citrix services

Event ID 304 and 307 registered as error stating that User device registration error. Also we get below mentioned error:...