CVE-2025-13477

The CVE-2025-13477 entry concerns WifiBurada (Digital Operations Services Inc.) with an Authentication Bypass due to Insufficiently Protected Credentials, exposing private data. Affected through 21052026; CVSS 3.1 base score 7.1 (HIGH) with Network attack vector, low complexity, low privileges re...

Dell iDRAC10 安全漏洞

Dell iDRAC10 is an integrated remote access controller developed by the American company Dell. Versions 1.20.70.50 and 1.30.05.10 of Dell iDRAC10 contain security vulnerabilities. These vulnerabilities stem from insufficient credential protection, which may lead to privilege escalation...

IBM InfoSphere Information Server Information Disclosure Vulnerability (CNVD-2026-16130)

IBM InfoSphere Information Server is IBM's enterprise-class data integration platform for integrating, cleansing and transforming data from disparate sources. An information disclosure vulnerability exists in IBM InfoSphere Information Server that stems from insufficient credential protection and...

CVE-2025-14790

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow an attacker to obtain sensitive information due to insufficiently protected credentials...

CVE-2025-14790 IBM InfoSphere Information Server is vulnerable to disclosure of sensitive information

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow an attacker to obtain sensitive information due to insufficiently protected credentials...

Adobe ColdFusion 安全漏洞

Adobe ColdFusion is a dynamic Web server platform and application development framework maintained by Adobe for rapidly building and deploying data-driven dynamic Web sites, Web applications, and enterprise-class services. Adobe ColdFusion suffers from an insufficiently protected credentials...

Plugin Alliance Aquarius Desktop 安全漏洞

Plugin Alliance Aquarius Desktop is an audio plugin management software from Plugin Alliance, Inc. A security vulnerability exists in Plugin Alliance Aquarius Desktop version 3.0.069 that stems from the use of a weak obfuscation scheme to store user authentication credentials, which could lead to...

EUVD-2020-12615

Malware in sbrugna...

EUVD-2015-6413

Malware in sbrugna...

EUVD-2024-41639

Malicious code in bioql PyPI...

EUVD-2024-38705

Malicious code in bioql PyPI...

Dell Digital Delivery Information Disclosure Vulnerability

Dell Digital Delivery is a digital software delivery service offered by Dell that allows users to shop for and automatically download and install paid software e.g., Microsoft Office, Photoshop, etc. in tandem with the purchase of a Dell computer. An information disclosure vulnerability exists in...

Dell Digital Delivery 安全漏洞

Dell Digital Delivery is a digital software delivery service offered by Dell that allows users to shop for and automatically download and install paid software e.g., Microsoft Office, Photoshop, etc. in tandem with the purchase of a Dell computer. An information disclosure vulnerability exists in...

CVE-2020-1789

Huawei OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X products with version 1.0.1.21SP3 have an insufficient authentication vulnerability. The software does not require a strong credential when the user trying to do certain operations. Successful exploit could allow an attacker to pass the...

PT-2025-28190 · Ооо 'Сегнетикс' · Segnetics Smconfig

Уязвимость конфигуратора системных настроек Segnetics SMConfig связана с недостаточной защищенностью хранилища учетных данных. Эксплуатация уязвимости может позволяющая нарушителю, действующему удалённо, раскрыть защищаемую информацию путём отправки специально сформированного GET-запроса...

CVE-2024-40892

A weak credential vulnerability exists in Firewalla Box Software versions before 1.979. This vulnerability allows a physically close attacker to use the license UUID for authentication and provision SSH credentials over the Bluetooth Low-Energy BTLE interface. Once an attacker gains access to the...

CVE-2024-40892

A weak credential vulnerability exists in Firewalla Box Software versions before 1.979. This vulnerability allows a physically close attacker to use the license UUID for authentication and provision SSH credentials over the Bluetooth Low-Energy BTLE interface. Once an attacker gains access to the...

Intel Server Product OpenBMC Security Vulnerability

Intel Server Product OpenBMC is an open source Baseboard Management Controller BMC solution from Intel Corporation USA. A security vulnerability previously existed in Intel Server Product OpenBMC egs-1.05, which stemmed from insufficient credential protection in the affected product. The...

Fortinet FortiNAC 安全漏洞

Fortinet FortiNAC is a set of network access control solutions from the U.S. company Fita Fortinet. The product is mainly used for network access control and IoT security. Fortinet FortiNAC has an access control error vulnerability that stems from insufficient credential protection. An attacker...

PT-2023-16208 · Socomec · Socomec Modulys Gp Netvision

Name of the Vulnerable Software and Affected Versions: SOCOMEC MODULYS GP Netvision versions 7.20 and prior Description: The issue is related to weak encryption for credentials on HTTP connections, which could allow threat actors to obtain sensitive information. Recommendations: For SOCOMEC MODUL...