20 matches found
Yokogawa FAST/TOOLS
RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to redirected users to malicious sites, decrypt communications, perform a man-in-the-middle MITM attack, execute malicious scripts, steal files, and perform other various attacks. 2. RECOMMENDED PRACTICES...
EUVD-2017-8418
Malware in sbrugna...
EUVD-2019-11925
Malware in sbrugna...
EUVD-2012-4828
Malware in sbrugna...
EUVD-2015-8290
Malware in sbrugna...
EUVD-2025-4274
Malicious code in bioql PyPI...
CVE-2025-38447
In the Linux kernel, the following vulnerability has been resolved: mm/rmap: fix potential out-of-bounds page table access during batched unmap As pointed out by David1, the batched unmap logic in trytounmapone may read past the end of a PTE table when a large folio's PTE mappings are not fully...
PT-2025-30285 · Commscope · Ruckus Unleashed +1
Name of the Vulnerable Software and Affected Versions: CommScope Ruckus Unleashed versions prior to 200.15.6.212.14 and 200.17.7.0.139 CommScope Ruckus ZoneDirector versions prior to 10.5.1.0.279 Description: An issue exists where the authenticated configuration endpoint /admin/ conf.jsp writes t...
CVE-2025-3497 Radiflow iSAP Smart Collector Linux distribution unmaintained
The Linux distribution underlying the Radiflow iSAP Smart Collector CentOS 7 - VSAP 1.20 is obsolete and reached end of life EOL on June 30, 2024. Thus, any unmitigated vulnerability could be exploited to affect this product...
PT-2025-28348 · Phoenix Contact · Charx Sec-3000 +7
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An unauthenticated adjacent attacker can configure a new OCPP backend due to insecure defaults for the configuration interface. Recommendations: At the moment, there is no information about ...
CVE-2025-1710 CVE-2025-1710
The maxView Storage Manager does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it susceptible to brute-force attacks...
PT-2025-16934 · WordPress · Wp Editor
Name of the Vulnerable Software and Affected Versions: WP Editor plugin for WordPress versions up to, and including, 1.2.9.1 Description: The issue allows authenticated attackers with Administrator-level access and above to read arbitrary files on the affected site's server, potentially revealing...
CVE-2025-30695
...
CVE-2025-21206
Visual Studio Installer Elevation of Privilege Vulnerability...
Microsoft SharePoint Information Disclosure Vulnerability
...
PT-2023-6515 · Nvidia · Nvidia Omniverse Workstation Launcher
Name of the Vulnerable Software and Affected Versions: NVIDIA Omniverse Workstation Launcher for Windows and Linux affected versions not specified Description: The issue is related to the authentication flow in the NVIDIA Omniverse Workstation Launcher, where a user's access token is visible in t...
msg-value-loop
Lines of code Vulnerability details Impact The use of msg.value in a loop in different places in the contract can introduce potential risks. The contract accepts Ether as part of its execution and relay calls. If the contract's logic does not handle or validate the msg.value appropriately, it can...
Beers with Talos Ep. #72: Getting to Patch Day - Understanding Vulnerability Risks and Options
Beers with Talos BWT Podcast episode No. 72 is now available. Download this episode and subscribe to Beers with Talos: If iTunes and Google Play aren't your thing, click here. Recorded Jan. 31, 2020 When a vulnerability is released, regardless if it has a website and logo or not, we need to...
CVE-2025-3494
...
Security Update for Microsoft Visual Studio 2005 Service Pack 1 (KB971023)
A security issue has been identified that could allow an attacker to compromise your Windows-based system with the Microsoft Visual Studio 2005 Service Pack 1 and gain complete control over it. You can help protect your computer by installing this update from Microsoft. After you install this ite...