Lucene search
K
Bdu FstecRecent

90709 matches found

BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of SIPROTEC 5 devices’ relay protection, automation, and control functions lies in the fact that the disclosure of information is possible through a query string, allowing attackers to expose confidential data.

The vulnerability of SIPROTEC 5 devices for relay protection, automation, and control lies in the ability to disclose information through query strings. Exploiting this vulnerability could allow a malicious actor to disclose confidential information remotely...

5.4CVSS5.7AI score0.00277EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of microprogrammed software in Siemens SIMATIC S7 programmable logic controllers is related to insufficient verification of the communication channel source. This allows a intruder to trigger a service failure.

The vulnerability of microprogrammed software in Siemens SIMATIC S7 programmable logic controllers is related to insufficient verification of the communication channel source. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

7.8CVSS7.2AI score0.00424EPSS
Exploits0References2Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the SICK DL100 laser sensor lies in the use of a reversible one-way hash function, which allows a intruder to influence the integrity of the device.

The vulnerability of the SICK DL100 laser sensor lies in the use of a reversible one-way hash function. Exploiting this vulnerability allows an attacker to remotely influence the integrity of the device by obtaining the password...

10CVSS5.8AI score0.00518EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the Wondershare Repairit software for repairing damaged files lies in the improper assignment of permissions to critical resources, allowing attackers to circumvent existing security restrictions.

The vulnerability of the Wondershare Repairit software for repairing damaged files is related to the improper assignment of permissions for a critical resource. Exploiting this vulnerability allows an attacker to bypass existing security restrictions remotely...

9.4CVSS7.6AI score0.02818EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the parseInt() function on the dify.ai development platform allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the parseInt function on the dify.ai development platform is related to the insufficient isolation of system-dependent functions. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected informatio...

10CVSS7.3AI score0.00718EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the GitHub.repo() function in the GitHub library for Julia, GitHub.jl, allows a hacker to gain access to any other endpoints.

The vulnerability of the GitHub.repo function in the Julia package GitHub.jl is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to gain access to any other endpoints...

7.8CVSS5.8AI score0.00414EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the ZimaOS operating system, related to errors in privilege management, allows a perpetrator to disclose protected information.

The vulnerability of the ZimaOS operating system is related to errors in privilege management. Exploiting this vulnerability can allow an attacker to disclose protected information...

7.1CVSS5.7AI score0.00191EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the Zohocorp ManageEngine Exchange Reporter Plus software, a monitoring, analysis, and reporting tool, arises from the lack of measures taken to protect the website structure. This allows attackers to perform cross-site scripting attacks (XSS).

The vulnerability of the monitoring, analysis, and reporting software Zohocorp ManageEngine Exchange Reporter Plus is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

8.5CVSS5.5AI score0.00478EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.2 views

The vulnerability of the OpenCTI platform for analyzing cyber threats, related to improper code generation, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the OpenCTI platform for analyzing cyber threats is related to improper code generation management. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

9.1CVSS7.6AI score0.00776EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.8 views

The vulnerability of the product suite for facilitating the reception of fax messages, the MICI Network NetFax Server, arises from the disclosure of information during data transmission. This vulnerability allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the product suite for facilitating the reception of fax messages related to MICI Network NetFax Server lies in the disclosure of information during data transmission. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access ...

7.8CVSS5.8AI score0.00556EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the nghttp2 component in the PowerDNS DNSdist software, which allows a attacker to cause a service failure.

The vulnerability of the nghttp2 component in the PowerDNS DNSdist software lies in the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

7.8CVSS7.4AI score0.02068EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the UniFi Network software, related to deficiencies in authentication procedures, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the UniFi Network software is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

6.8CVSS6.7AI score0.00311EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.2 views

The vulnerability of Wangshen SecGate 3600 lies in the incorrect restriction of the path name to the restricted access catalog, allowing attackers to bypass existing security restrictions.

The vulnerability of Wangshen SecGate 3600 relates to incorrect restrictions on the path name to the restricted access catalog. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...

6.5CVSS6.6AI score0.08693EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the Chall-Manager software, related to unlimited resource distribution, allows a perpetrator to cause a service failure.

The vulnerability of the Chall-Manager software is related to the unlimited distribution of resources. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

7.8CVSS6AI score0.00444EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the Chall-Manager software, related to asymmetric resource consumption, allows a intruder to trigger a service failure.

The vulnerability of the Chall-Manager software is related to asymmetric resource consumption. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

7.8CVSS6AI score0.00461EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the MELSEC iQ-F series of programmable logic controllers lies in their overly restrictive mechanism for locking user account data, which allows a intruder to trigger a service failure.

The vulnerability of the MELSEC iQ-F series of programmable logic controllers lies in their overly restrictive mechanism for locking user account data, which allows a intruder to trigger a service failure...

5.3CVSS5.8AI score0.00373EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the EDA component of the Red Hat Ansible Automation Platform allows a perpetrator to execute arbitrary commands.

The vulnerability of the EDA component of the Red Hat Ansible Automation Platform is related to improper code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

9CVSS6AI score0.00465EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.2 views

The vulnerability of the microprogramming software of the SIMATIC CN 4100 communication gateway, which is related to the use of rigidly encrypted account data, allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the microprogramming software of the SIMATIC CN 4100 communication gateway lies in the use of strictly encrypted account data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS7.3AI score0.00329EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the microprogramming software of the SIMATIC CN 4100 communication gateway, related to access control errors, allows a intruder to trigger a service failure.

The vulnerability of the MICROprogramming software for the SIMATIC CN 4100 communication gateway is related to access control errors. Exploiting this vulnerability could allow an intruder to cause service failures...

4.9CVSS7.3AI score0.00186EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the microprogramming software of the SIMATIC CN 4100 communication gateway, related to information disclosure, allows a intruder to gain access to confidential information.

The vulnerability of the MICROprogramming software for the SIMATIC CN 4100 communication gateway relates to the exposure of information. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to confidential information...

6.8CVSS7.3AI score0.0032EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the software for calculating the positions of individual RTLS transponders in the SIMATIC RTLS Locating Manager lies in the insufficient verification of input data. This allows a intruder to perform maintenance work without being detected.

The vulnerability of the software for calculating the positions of individual RTLS transponders in the SIMATIC RTLS Locating Manager is related to insufficient verification of input data. Exploiting this vulnerability could allow an intruder to cause a service failure...

6.2CVSS5.8AI score0.00122EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the software development environment for systems that automate technological processes, the Totally Integrated Automation Portal (Portal TIA), and the software used for modeling and simulating the operation of Siemens S7 controllers, arises due to deficiencies in the deserialization mechanism, allowing attackers to execute arbitrary code.

The vulnerability of the software development environment of Totally Integrated Automation Portal Portal TIA and the software for simulating and testing the operation of Siemens S7 controllers is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow an...

7.8CVSS6.1AI score0.00185EPSS
Exploits0References2Affected Software8
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the microprogrammed software for POWER METER SICAM Q100 and POWER METER SICAM Q200 lies in the unencrypted storage of critical information, which allows an intruder to gain unauthorized access to the protected data.

The vulnerability of the microprogrammed power meter measuring devices POWER METER SICAM Q100 and POWER METER SICAM Q200 is related to the unencrypted storage of critical information. Exploiting this vulnerability can allow an intruder to gain unauthorized access to the protected information...

6.2CVSS5.8AI score0.00092EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the React Native native bottom tabs library, related to insecure privilege management, allows attackers to execute arbitrary code.

The vulnerability of the React Native native bottom tabs library relates to insecure handling of privileges. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.4CVSS6.1AI score0.00463EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the Remote for Mac remote control tool, related to improper code generation, allows a hacker to execute arbitrary code.

The vulnerability of the Remote for Mac remote control tool is related to improper code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS6.1AI score0.01389EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the npm library for git commiters, related to the lack of measures taken at the management level to clean up data, allows a perpetrator to execute arbitrary code.

The vulnerability of the npm library’s git-ciers is related to the lack of measures taken to clean up data at the management level. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS6AI score0.0228EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.2 views

The vulnerability of Ruckus Virtual SmartZone wireless network controller’s microprogramming software, related to the use of the default cryptographic key, allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of Ruckus Virtual SmartZone wireless network controller’s microprogramming software is related to the use of a default cryptographic key. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

10CVSS7.5AI score0.0072EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.5 views

The vulnerability of the software for centralized control of the Ruckus Network Director network infrastructure lies in the use of rigidly encrypted user credentials. This allows a malicious individual to elevate their privileges and gain access to the RND server.

The vulnerability of the software for centralized management of the Ruckus Network Director infrastructure is related to the use of strictly encrypted user credentials. Exploiting this vulnerability can allow an attacker to increase their privileges and gain access to the RND server...

9CVSS7.5AI score0.00453EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.5 views

The vulnerability of Ruckus Virtual SmartZone wireless network controller’s microprogramming software, related to the failure to implement measures to neutralize special elements, allows a intruder to execute arbitrary code.

The vulnerability of Ruckus Virtual SmartZone wireless network controller’s microprogramming software is related to the lack of measures taken to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS7.8AI score0.01772EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.2 views

The vulnerability of the TIA Administrator software development environment is related to errors in checking the cryptographic signature, which allows a perpetrator to execute arbitrary code.

The vulnerability of the TIA Administrator software-related to errors in checking the cryptographic signature. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

6.2CVSS6AI score0.00069EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.5 views

The vulnerability of microprogrammed software in programmable logic controllers SIMATIC S7-1200, related to improper verification of syntax correctness in input data, allows a intruder to cause malfunctions during maintenance operations.

The vulnerability of microprogrammed software in programmable logic controllers SIMATIC S7-1200 is related to improper verification of syntax correctness in input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause malfunctions in the system...

6.8CVSS5.8AI score0.00529EPSS
Exploits0References2Affected Software34
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the Fast_wireless_conf component in the microprogramming software for UTT Jinqi 750W routers allows a hacker to cause a service failure.

The vulnerability of the Fastwirelessconf component in the microprogramming software for UTT Jinqi 750W routers is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

9CVSS7.3AI score0.00796EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.2 views

The vulnerability of the SICK DL100 laser sensor lies in the fact that the code can be loaded without checking its integrity, allowing a intruder to execute any arbitrary code.

The vulnerability of the SICK DL100 laser sensor lies in the fact that the code is loaded without checking its integrity. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.4CVSS7.9AI score0.00389EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the Wondershare Repairit software for repairing damaged files lies in the improper assignment of privileges, which allows attackers to bypass existing security restrictions.

The vulnerability of the Wondershare Repairit software for repairing damaged files is related to improper privilege assignment. Exploiting this vulnerability could allow an attacker to bypass existing security restrictions remotely...

9.7CVSS7.6AI score0.03736EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the plugin for controlling the display of Block Logic blocks in the WordPress content management system is related to improper code generation, allowing attackers to execute arbitrary code.

The vulnerability of the plugin for controlling the display of Block Logic blocks in the WordPress content management system is related to improper handling of code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9CVSS7.6AI score0.00791EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.2 views

The vulnerability of the microprogramming software for the Zenitel ICX500 and ICX510 switching routers lies in the lack of measures taken to clean data at the management level, allowing attackers to trigger service failures.

The vulnerability of the microprogrammed switching software of Zenitel ICX500 and ICX510 is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability can allow a malicious actor to cause service failures...

8.4CVSS5.8AI score0.00231EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.2 views

The vulnerability of the microprogramming software for the Zenitel ICX500 and ICX510 switching routers lies in the lack of measures taken to clean data at the management level, allowing attackers to trigger service failures.

The vulnerability of the microprogrammed switching software of Zenitel ICX500 and ICX510 is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability can allow a malicious actor to cause service failures...

8.4CVSS5.8AI score0.00251EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the java-plugin-runner plugin for the Apache APISIX cloud API allows a hacker to escalate their privileges.

The vulnerability of the java-plugin-runner plugin of the Apache APISIX cloud API gateway is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability can allow attackers to increase their privileges...

5.3CVSS5.8AI score0.00172EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the ZimaOS operating system, related to errors in privilege management, allows a perpetrator to escalate their privileges.

The vulnerability of the ZimaOS operating system is related to errors in privilege management. Exploiting this vulnerability can allow an attacker to enhance their privileges...

5.5CVSS5.8AI score0.00164EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the constructFromCanonical() function in the jinjava template rendering library allows a attacker to execute arbitrary code.

The vulnerability of the constructFromCanonical function in the jinjava template rendering library is related to the lack of measures taken to neutralize special elements in the template creation mechanism. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS6.4AI score0.02315EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the Cisco Cyber Vision Center network security control software lies in the lack of protective measures for the website structure, allowing attackers to carry out cross-site scripting attacks (XSS).

The vulnerability of the Cisco Cyber Vision Center network security control software is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

5.5CVSS5.5AI score0.00197EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.2 views

The vulnerability of the FydeOS operating system, which stems from the possibility of using rigidly defined credentials, allows a perpetrator to escalate their privileges and execute arbitrary code.

The vulnerability of the FydeOS operating system is related to the possibility of using rigidly defined credentials. Exploiting this vulnerability allows a remote attacker to increase their privileges and execute arbitrary code...

10CVSS6.1AI score0.00518EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.7 views

The vulnerability of the child_process function in the MCP-server for managing clusters of virtual machines in Kubernetes allows a attacker to execute arbitrary commands.

The vulnerability of the childprocess function in the MCP-server for managing clusters of virtual machines in Kubernetes is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

7.6CVSS6.1AI score0.02191EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.3 views

The vulnerability of the software for controlling UniFi Connect EV Station Lite lies in the insufficient verification of input data, allowing a perpetrator to execute arbitrary commands.

The vulnerability of the software for controlling UniFi Connect EV Station Lite is related to insufficient verification of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

10CVSS7.6AI score0.01181EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.1 views

The vulnerability of software for managing, controlling, and organizing printing processes in Vasion Print Virtual Appliance Host and Print Application lies in errors related to the authentication process. This allows attackers to execute arbitrary code or escalate their privileges.

The vulnerability of software for managing, controlling, and organizing printing processes in Vasion Print Virtual Appliance Host and Print Application is related to errors in the certificate validation process. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or...

10CVSS6.1AI score0.00441EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.6 views

The vulnerability of the Undertow HTTP server’s kernel allows for attacks using SSRF, due to errors in the mechanism for processing input data when handling Host headers.

The vulnerability of the Undertow HTTP server’s kernel is related to errors in the mechanism for checking input data when processing Host headers. Exploiting this vulnerability allows a remote attacker to perform an SSRF attack by sending a specially crafted request...

9.7CVSS7.5AI score0.01179EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.6 views

The vulnerability of the library for calculating and analyzing expressions Expr, related to unlimited resource distribution, allows a perpetrator to perform a denial-of-service attack.

The vulnerability of the library for calculating and analyzing expressions related to Expr is associated with unlimited distribution of resources. Exploiting this vulnerability could allow a malicious actor to perform denial-of-service attacks...

7.8CVSS7.1AI score0.00577EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.5 views

The vulnerability of the Docker Dpanel’s visual control panel, related to the use of a hard-coded cryptographic key, allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Docker Dpanel’s visual control panel is related to the use of a hard-coded cryptographic key. Exploiting this vulnerability could allow an attacker, operating remotely, to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS5.8AI score0.00777EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the GNU Mailman email distribution management package, related to authentication mechanism flaws, allows attackers to create arbitrary files.

The vulnerability of the GNU Mailman email distribution management package is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows a malicious actor to create arbitrary files remotely...

5.8CVSS5.8AI score0.00403EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/09 12:0 a.m.4 views

The vulnerability of the ControlID iDSecure On-Premises access control system, due to deficiencies in authentication procedures, allows attackers to circumvent existing security restrictions.

The vulnerability of the ControlID iDSecure On-Premises access control system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to circumvent existing security restrictions remotely...

7.8CVSS5.7AI score0.0048EPSS
Exploits0References3Affected Software1
Total number of security vulnerabilities90709