CVE-2025-27397

Siemens SCALANCE LPE9403 (6GK5998-3GS00-2AC2) is affected by CVE-2025-27397. All versions below V4.0 fail to properly restrict user-controlled log paths, enabling an authenticated, highly-privileged attacker to read and write arbitrary files if the path ends with 'log'. Connected sources confirm ...

The vulnerability of iPadOS and iOS operating systems lies in the improper handling of the link before accessing files. This allows attackers to gain access to read and write system files.

The vulnerability of iPadOS and iOS operating systems is related to an incorrect definition of the link before accessing a file. Exploiting this vulnerability can allow a remote attacker to gain access to read and write system files...

The vulnerability of the High Availability service of the Cisco Smart Software Manager On-Prem administration tool allows a hacker to gain access to read and write system files.

The vulnerability of the Cisco Smart Software Manager On-Premise administration software’s high availability feature is related to the presence of a statistical password for the standard account. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read and...

Schneider Electric Modbus Serial Driver Resource Management Error Vulnerability

Schneider Electric Modbus Serial Driver is a serial driver from Schneider Electric France. A resource management error vulnerability exists in the Schneider Electric Modbus Serial Driver. An attacker could exploit this vulnerability to perform write operations to system files or other critical us...