CVE-2025-15653

Dräger Zeus Infinity Empowered Zeus IE and Zeus RS C500 anesthesia workstations contain a local security vulnerability that allows unauthorized individuals with physical access to compromise software integrity via USB interface manipulation. Attackers can exploit the unprotected USB interfaces to...

CVE-2025-15653 Dräger Zeus IE Anesthesia Workstation USB Interface Privilege Escalation

Dräger Zeus Infinity Empowered Zeus IE and Zeus RS C500 anesthesia workstations contain a local security vulnerability that allows unauthorized individuals with physical access to compromise software integrity via USB interface manipulation. Attackers can exploit the unprotected USB interfaces to...

CVE-2025-15653

The affected products are Dräger Zeus Infinity Empowered (Zeus IE) and Zeus RS C500 anesthesia workstations. The vulnerability is a local privilege escalation via unprotected USB interfaces that attackers with physical access can exploit to compromise software integrity. Reported impact includes ...

CVE-2025-15653

Dräger Zeus Infinity Empowered Zeus IE and Zeus RS C500 anesthesia workstations contain a local security vulnerability that allows unauthorized individuals with physical access to compromise software integrity via USB interface manipulation. Attackers can exploit the unprotected USB interfaces to...

PT-2026-45864

Dräger Zeus Infinity Empowered Zeus IE and Zeus RS C500 anesthesia workstations contain a local security vulnerability that allows unauthorized individuals with physical access to compromise software integrity via USB interface manipulation. Attackers can exploit the unprotected USB interfaces to...

CVE-2025-7636

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ergosis Security Systems Computer Industry and Trade Inc. ZEUS PDKS allows SQL Injection.This issue affects ZEUS PDKS: from 1.0.5.10 through 10022026. NOTE: The vendor was contacted early about thi...

CVE-2025-7636 SQLi in Ergosis Security Systems' ZEUS PDKS

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ergosis Security Systems Computer Industry and Trade Inc. ZEUS PDKS allows SQL Injection.This issue affects ZEUS PDKS: from 1.0.5.10 through 10022026. NOTE: The vendor was contacted early about thi...

CVE-2025-7636 SQLi in Ergosis Security Systems' ZEUS PDKS

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ergosis Security Systems Computer Industry and Trade Inc. ZEUS PDKS allows SQL Injection.This issue affects ZEUS PDKS: from 1.0.5.10 through 10022026. NOTE: The vendor was contacted early about thi...

CVE-2025-7636

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ergosis Security Systems Computer Industry and Trade Inc. ZEUS PDKS allows SQL Injection.This issue affects ZEUS PDKS: from 1.0.5.10 through 10022026. NOTE: The vendor was contacted early about thi...

CVE-2025-7636

ZEUS PDKS by Ergosis Security Systems Computer Industry and Trade Inc. is affected by CVE-2025-7636: an SQL injection caused by improper neutralization of special elements in SQL commands. Affects ZEUS PDKS versions from

PT-2026-7266

Name of the Vulnerable Software and Affected Versions Ergosis Security Systems Computer Industry and Trade Inc. ZEUS PDKS versions 1.0.5.10 through 10022026 Description The software contains an Improper Neutralization of Special Elements used in an SQL Command issue, specifically a SQL Injection...

Ergosis Security ZEUS PDKS SQL注入漏洞

Ergosis Security ZEUS PDKS is an attendance and access control management system developed by the Turkish company Ergosis Security. Versions of Ergosis Security ZEUS PDKS from 1.0.5.10 up to version 10022026 have a SQL injection vulnerability. This vulnerability arises due to improper handling of...

CVE-2010-0362

Zeus Web Server before 4.3r5 does not use random transaction IDs for DNS requests, which makes it easier for remote attackers to spoof DNS responses...

CVE-2010-0359

Buffer overflow in the SSLv2 support in Zeus Web Server before 4.3r5 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a long string in an invalid Client Hello message...

Alleged Jabber Zeus Coder ‘MrICQ’ in U.S. Custody

A Ukrainian man indicted in 2012 for conspiring with a prolific hacking group to steal tens of millions of dollars from U.S. businesses was arrested in Italy and is now in custody in the United States, KrebsOnSecurity has learned. Sources close to the investigation say Yuriy Igorevich Rybtsov , a...

EUVD-2025-36838

Malicious code in zeus-me-ops-tool npm...

Malicious code in zeus-mex-user-profile (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3fc81d9c5665e17c547b5f656a72158c37bbde79ea7dab611838f87e54a37833 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-49078 Malicious code in zeus-mex-user-profile (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3fc81d9c5665e17c547b5f656a72158c37bbde79ea7dab611838f87e54a37833 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-49077 Malicious code in zeus-me-ops-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cdb883ba3968557743369275e52574c356a37a380d7314c4fd45cc3ee6088a9b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in zeus-me-ops-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cdb883ba3968557743369275e52574c356a37a380d7314c4fd45cc3ee6088a9b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...