VulnCheck KEV: CVE-2023-25651

There is a SQL injection vulnerability in some ZTE mobile internet products. Due to insufficient input validation of SMS interface parameter, an authenticated attacker could use the vulnerability to execute SQL injection and cause information leak...

More SIM Cards Vulnerable to Simjacker Attack Than Previously Disclosed

In case you missed it. SimJacker vulnerability is concerning because it can be executed: ➡️ against mass audience, ➡️ against devices manufactured by any vendor, ➡️ with just a $10 GSM modem, ➡️ and there's nothing much affected users can do. Details — https://t.co/BPApXsNghe...

HP Network Automation has multiple vulnerabilities

HP Network Automation is a suite of automated network configuration management tools from Hewlett-Packard HP. The tool automates configuration changes, software updates, compliance audits, and tracking and control of widely distributed, multi-vendor network devices. A remote code execution and...

ManageEngine DeviceExpert 5.6 Java Server Directory Traversal

Exploit for jsp platform in category web applications ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet Unauthenticated Remote Directory Traversal Database Backup / auth-conf.xml Disclosure Exploit product homepage: http://www.manageengine.com/products/device-expert/ file...