Security Advisories

CWE-926

Improper Export of Android Application Components

Jan 7, 2026 KL-001-2026-001

CVE-2025-15464

yintibao Fun Print Mobile Unauthorized Access via Context Hijacking

Felix Segoviano

yintibao • Fun Print Mobile

View

CWE-24

Path Traversal: '../filedir'

CWE-434

Unrestricted Upload of File with Dangerous Type

CWE-648

Incorrect Use of Privileged APIs

Jul 27, 2025 KL-001-2025-016

CVE-2025-54769

Xorux LPAR2RRD File Upload Directory Traversal

Jim Becher

Xorux • LPAR2RRD

View

CWE-648

Incorrect Use of Privileged APIs

CWE-532

Insertion of Sensitive Information into Log File

Jul 27, 2025 KL-001-2025-015

CVE-2025-54768

Xorux LPAR2RRD Read Only User Log Download Exposing Sensitive Information

Jim Becher

Xorux • LPAR2RRD

View

CWE-648

Incorrect Use of Privileged APIs

Jul 27, 2025 KL-001-2025-014

CVE-2025-54767

Xorux LPAR2RRD Read Only User Denial of Service

Jim Becher

Xorux • LPAR2RRD

View

CWE-648

Incorrect Use of Privileged APIs

Jul 27, 2025 KL-001-2025-013

CVE-2025-54765

Xorux XorMon-NG Web Application Privilege Escalation to Administrator

Jim Becher

Xorux • XorMon-NG

View

CWE-648

Incorrect Use of Privileged APIs

Jul 27, 2025 KL-001-2025-012

CVE-2025-54766

Xorux XorMon-NG Read Only User Export Device Configuration Exposing Sensitive Information

Jim Becher

Xorux • XorMon-NG

View

CWE-918

Server-Side Request Forgery (SSRF)

Jul 8, 2025 KL-001-2025-011

CVE-2025-50125

Schneider Electric EcoStruxure IT Data Center Expert Unauthenticated Server-Side Request Forgery

Jaggar Henry, Jim Becher

Schneider Electric • EcoStruxure IT Data Center Expert

View

CWE-266

Incorrect Privilege Assignment

Jul 8, 2025 KL-001-2025-010

CVE-2025-50124

Schneider Electric EcoStruxure IT Data Center Expert Privilege Escalation

Jaggar Henry, Jim Becher

Schneider Electric • EcoStruxure IT Data Center Expert

View

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Jul 8, 2025 KL-001-2025-009

CVE-2025-50123

Schneider Electric EcoStruxure IT Data Center Expert Remote Command Execution

Jaggar Henry, Jim Becher

Schneider Electric • EcoStruxure IT Data Center Expert

View

CWE-331

Insufficient Entropy

Jul 8, 2025 KL-001-2025-008

CVE-2025-50122

Schneider Electric EcoStruxure IT Data Center Expert Root Password Discovery

Jaggar Henry, Jim Becher

Schneider Electric • EcoStruxure IT Data Center Expert

View

CWE-23

Relative Path Traversal

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Jul 8, 2025 KL-001-2025-007

CVE-2025-50121

Schneider Electric EcoStruxure IT Data Center Expert Unauthenticated Remote Code Execution

Jaggar Henry, Jim Becher

Schneider Electric • EcoStruxure IT Data Center Expert

View

CWE-611

Improper Restriction of XML External Entity Reference

Jul 8, 2025 KL-001-2025-006

CVE-2025-6438

Schneider Electric EcoStruxure IT Data Center Expert XML External Entities Injection

Jaggar Henry, Jim Becher

Schneider Electric • EcoStruxure IT Data Center Expert

View

CWE-415

Double Free

CWE-416

Use After Free

May 21, 2025 KL-001-2025-005

CVE-2025-5100

Mobile Dynamix PrinterShare Mobile Print Double-Free Memory Write

Felix Segoviano

Mobile Dynamix • PrinterShare Mobile Print

View

CWE-787

Out-of-bounds Write

May 21, 2025 KL-001-2025-004

CVE-2025-5099

Mobile Dynamix PrinterShare Mobile Print Out-of-bounds Write

Felix Segoviano

Mobile Dynamix • PrinterShare Mobile Print

View

CWE-359

Exposure of Private Personal Information to an Unauthorized Actor

CWE-313

Cleartext Storage in a File or on Disk

May 21, 2025 KL-001-2025-003

CVE-2025-5098

Mobile Dynamix PrinterShare Mobile Print Gmail Oauth Token Disclosure

Felix Segoviano

Mobile Dynamix • PrinterShare Mobile Print

View

CWE-434

Unrestricted Upload of File with Dangerous Type

Feb 3, 2025 KL-001-2025-002

CVE-2024-13723

Checkmk NagVis Remote Code Execution

Jaggar Henry, Jim Becher

Checkmk • Checkmk/NagVis

View

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Feb 3, 2025 KL-001-2025-001

CVE-2024-13722

Checkmk NagVis Reflected Cross-site Scripting

Jaggar Henry, Jim Becher

Checkmk • Checkmk/NagVis

View

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Sep 9, 2024 KL-001-2024-012

CVE-2024-8504

VICIdial Authenticated Remote Code Execution

Jaggar Henry

VICIdial

View

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Sep 9, 2024 KL-001-2024-011

CVE-2024-8503

VICIdial Unauthenticated SQL Injection

Jaggar Henry

VICIdial

View

CWE-611

Improper Restriction of XML External Entity Reference

Aug 6, 2024 KL-001-2024-010

CVE-2024-6893

Journyx Unauthenticated XML External Entities Injection

Jaggar Henry

Journyx • Journyx (jtime)

View

CWE-81

Improper Neutralization of Script in an Error Message Web Page

Aug 6, 2024 KL-001-2024-009

CVE-2024-6892

Journyx Reflected Cross Site Scripting

Jaggar Henry

Journyx • Journyx (jtime)

View

CWE-94

Improper Control of Generation of Code ('Code Injection')

CWE-95

Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')

Aug 6, 2024 KL-001-2024-008

CVE-2024-6891

Journyx Authenticated Remote Code Execution

Jaggar Henry

Journyx • Journyx (jtime)

View

CWE-321

Use of Hard-coded Cryptographic Key

CWE-334

Small Space of Random Values

Aug 6, 2024 KL-001-2024-007

CVE-2024-6890

Journyx Unauthenticated Password Reset Bruteforce

Jaggar Henry

Journyx • Journyx (jtime)

View

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-434

Unrestricted Upload of File with Dangerous Type

Aug 6, 2024 KL-001-2024-006

CVE-2024-6707

Open WebUI Arbitrary File Upload + Path Traversal

Jaggar Henry, Sean Segreti

Open WebUI

View

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Aug 6, 2024 KL-001-2024-005

CVE-2024-6706

Open WebUI Stored Cross-Site Scripting

Jaggar Henry, Sean Segreti

Open WebUI

View

CWE-288

Authentication Bypass Using an Alternate Path or Channel

CWE-552

Files or Directories Accessible to External Parties

Mar 4, 2024 KL-001-2024-004

CVE-2024-2056

Artica Proxy Loopback Services Remotely Accessible Unauthenticated

Jim Becher, Jaggar Henry

Artica • Artica Proxy

View

CWE-288

Authentication Bypass Using an Alternate Path or Channel

CWE-552

Files or Directories Accessible to External Parties

Mar 4, 2024 KL-001-2024-003

CVE-2024-2055

Artica Proxy Unauthenticated File Manager Vulnerability

Jim Becher

Artica • Artica Proxy

View

CWE-502

Deserialization of Untrusted Data

Mar 4, 2024 KL-001-2024-002

CVE-2024-2054

Artica Proxy Unauthenticated PHP Deserialization Vulnerability

Jaggar Henry

Artica • Artica Proxy

View

CWE-23

Relative Path Traversal

Mar 4, 2024 KL-001-2024-001

CVE-2024-2053

Artica Proxy Unauthenticated LFI Protection Bypass Vulnerability

Jaggar Henry

Artica • Artica Proxy

View

CWE-1395

Dependency on Vulnerable Third-Party Component

Aug 16, 2023 KL-001-2023-003

CVE-2023-22809

Cisco ThousandEyes Enterprise Agent Virtual Appliance Arbitrary File Modification via sudoedit

Jim Becher

Cisco • ThousandEyes Enterprise Agent Virtual Appliance

View

CWE-1395

Dependency on Vulnerable Third-Party Component

Aug 16, 2023 KL-001-2023-002

CVE-2023-20224

Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation via tcpdump

Jim Becher

Cisco • ThousandEyes Enterprise Agent Virtual Appliance

View

CWE-250

Execution with Unnecessary Privileges

CWE-1220

Insufficient Granularity of Access Control

Aug 16, 2023 KL-001-2023-001

CVE-2023-20217

Cisco ThousandEyes Enterprise Agent Virtual Appliance Arbitrary File Read via sudo dig

Jim Becher, Hank Leininger

Cisco • ThousandEyes Enterprise Agent Virtual Appliance

View

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Jan 27, 2022 KL-001-2022-002

CVE-2021-46560

Moxa TN-5900 Post Authentication Command Injection Vulnerability

Matt Bergin, Josh Hardin

Moxa • TN-5900

View

CWE-354

Improper Validation of Integrity Check Value

Jan 27, 2022 KL-001-2022-001

CVE-2021-46559

Moxa TN-5900 Firmware Upgrade Checksum Validation Vulnerability

Matt Bergin, Josh Hardin

Moxa • TN-5900

View

CWE-326

Inadequate Encryption Strength

Aug 31, 2021 KL-001-2021-010

CVE-2021-31798

CyberArk Credential Provider Local Cache Can Be Decrypted

Klayton Monroe

CyberArk • Application Access Manager/Credential Provider

View

CWE-326

Inadequate Encryption Strength

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CWE-940

Improper Verification of Source of a Communication Channel

Aug 31, 2021 KL-001-2021-009

CVE-2021-31797

CyberArk Credential Provider Race Condition And Authorization Bypass

Klayton Monroe

CyberArk • Application Access Manager/Credential Provider

View

CWE-326

Inadequate Encryption Strength

Aug 31, 2021 KL-001-2021-008

CVE-2021-31796

CyberArk Credential File Insufficient Effective Key Space

Klayton Monroe

CyberArk • Application Access Manager/Credential Provider

View

CWE-798

Use of Hard-coded Credentials

CWE-912

Hidden Functionality

May 25, 2021 KL-001-2021-007

CVE-2021-33216

CommScope Ruckus IoT Controller Undocumented Account

Jim Becher

CommScope • Ruckus IoT Controller

View

CWE-250

Execution with Unnecessary Privileges

May 25, 2021 KL-001-2021-006

CVE-2021-33217

CommScope Ruckus IoT Controller Web Application Arbitrary Read/Write

Jim Becher

CommScope • Ruckus IoT Controller

View

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-250

Execution with Unnecessary Privileges

May 25, 2021 KL-001-2021-005

CVE-2021-33215

CommScope Ruckus IoT Controller Web Application Directory Traversal

Jim Becher

CommScope • Ruckus IoT Controller

View

CWE-259

Use of Hard-coded Password

May 25, 2021 KL-001-2021-004

CVE-2021-33219

CommScope Ruckus IoT Controller Hard-coded Web Application Administrator Password

Jim Becher

CommScope • Ruckus IoT Controller

View

CWE-259

Use of Hard-coded Password

May 25, 2021 KL-001-2021-003

CVE-2021-33218

CommScope Ruckus IoT Controller Hard-coded System Passwords

Jim Becher

CommScope • Ruckus IoT Controller

View

CWE-798

Use of Hard-coded Credentials

May 25, 2021 KL-001-2021-002

CVE-2021-33220

CommScope Ruckus IoT Controller Hard-coded API Keys Exposed

Jim Becher

CommScope • Ruckus IoT Controller

View

CWE-306

Missing Authentication for Critical Function

May 25, 2021 KL-001-2021-001

CVE-2021-33221

CommScope Ruckus IoT Controller Unauthenticated API Endpoints

Jim Becher

CommScope • Ruckus IoT Controller

View

CWE-494

Download of Code Without Integrity Check

Nov 19, 2020 KL-001-2020-009

CVE-2020-28332

Barco wePresent Insecure Firmware Image

Jim Becher, Matt Bergin

Barco • wePresent WiPG-1600W

View

CWE-798

Use of Hard-coded Credentials

Nov 19, 2020 KL-001-2020-008

CVE-2020-28334

Barco wePresent Global Hardcoded Root SSH Password

Jim Becher

Barco • wePresent WiPG-1600W

View

CWE-266

Incorrect Privilege Assignment

Nov 19, 2020 KL-001-2020-007

CVE-2020-28331

Barco wePresent Undocumented SSH Interface Accessible Via Web UI

Jim Becher

Barco • wePresent WiPG-1600W

View

CWE-288

Authentication Bypass Using an Alternate Path or Channel

Nov 19, 2020 KL-001-2020-006

CVE-2020-28333

Barco wePresent Authentication Bypass

Jim Becher

Barco • wePresent WiPG-1600W

View

CWE-523

Unprotected Transport of Credentials

Nov 19, 2020 KL-001-2020-005

CVE-2020-28330

Barco wePresent Admin Credentials Exposed In Plain-text

Jim Becher

Barco • wePresent WiPG-1600W

View

CWE-798

Use of Hard-coded Credentials

Nov 19, 2020 KL-001-2020-004

CVE-2020-28329

Barco wePresent Hardcoded API Credentials

Jim Becher

Barco • wePresent WiPG-1600W

View

CWE-321

Use of Hard-coded Cryptographic Key

Jun 28, 2020 KL-001-2020-003

CVE-2020-14474

Cellebrite EPR Decryption Relies on Hardcoded AES Key Material

Matt Bergin

Cellebrite • UFED

View

CWE-269

Improper Privilege Management

CWE-20

Improper Input Validation

May 13, 2020 KL-001-2020-002

CVE-2020-12798

Cellebrite Restricted Desktop Escape and Escalation of User Privilege

Matt Bergin

Cellebrite • UFED

View

CWE-321

Use of Hard-coded Cryptographic Key

Apr 12, 2020 KL-001-2020-001

CVE-2020-11723

Cellebrite Hardcoded ADB Authentication Keys

Matt Bergin

Cellebrite • UFED

View

CWE-1392

Use of Default Credentials

CWE-250

Execution with Unnecessary Privileges

Nov 4, 2018 KL-001-2018-009

CVE-2018-15767 CVE-2018-15768

Dell OpenManage Network Manager Multiple Vulnerabilities

Matt Bergin

Dell • OpenManage Network Manager

View

CWE-798

Use of Hard-coded Credentials

CWE-20

Improper Input Validation

Jun 24, 2018 KL-001-2018-008

HPE VAN SDN Unauthenticated Remote Root Vulnerability

Matt Bergin

HP Enterprise • VAN SDN Controller

View

CWE-306

Missing Authentication for Critical Function

Mar 1, 2018 KL-001-2018-007

Sophos UTM 9 loginuser Privilege Escalation via confd Service

Matt Bergin

Sophos • UTM 9

View

CWE-522

Insufficiently Protected Credentials

CWE-219

Storage of File with Sensitive Data Under Web Root

Feb 7, 2018 KL-001-2018-006

Trend Micro IMSVA Management Portal Authentication Bypass

Matt Bergin

Trend Micro • InterScan Mail Security Virtual Apppliance

View

CWE-73

External Control of File Name or Path

Feb 7, 2018 KL-001-2018-005

NetEx HyperIP Local File Inclusion Vulnerability

Matt Bergin

NetEx • HyperIP

View

CWE-306

Missing Authentication for Critical Function

Feb 7, 2018 KL-001-2018-004

NetEx HyperIP Privilege Escalation Vulnerability

Matt Bergin

NetEx • HyperIP

View

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CWE-250

Execution with Unnecessary Privileges

Feb 7, 2018 KL-001-2018-003

NetEx HyperIP Post-Auth Command Execution

Matt Bergin

NetEx • HyperIP

View

CWE-592

Authentication Bypass Issues

Feb 7, 2018 KL-001-2018-002

NetEx HyperIP Authentication Bypass

Matt Bergin

NetEx • HyperIP

View

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-80

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

Jan 25, 2018 KL-001-2018-001

Sophos Web Gateway Persistent Cross Site Scripting Vulnerability

Matt Bergin

Sophos • Web Gateway

View

CWE-280

Improper Handling of Insufficient Permissions or Privileges

Nov 2, 2017 KL-001-2017-022

Splunk Local Privilege Escalation

Hank Leininger

Splunk • Splunk Enterprise

View

CWE-538

Insertion of Sensitive Information into Externally-Accessible File or Directory

CWE-732

Incorrect Permission Assignment for Critical Resource

CWE-532

Insertion of Sensitive Information into Log File

Oct 23, 2017 KL-001-2017-021

Sophos UTM 9 Management Application Local File Inclusion

Matt Bergin

Sophos • UTM 9

View

CWE-280

Improper Handling of Insufficient Permissions or Privileges

Oct 23, 2017 KL-001-2017-020

Sophos UTM 9 loginuser Privilege Escalation via Insecure Directory Permissions

Matt Bergin

Sophos • UTM 9

View

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Oct 23, 2017 KL-001-2017-019

Sonicwall WXA5000 Console Jail Escape and Privilege Escalation

Matt Bergin

Sonicwall • WXA5000 WAN Optimization Appliance

View

CWE-485

Insufficient Encapsulation

Oct 23, 2017 KL-001-2017-018

Infoblox NetMRI Administration Shell Factory Reset Persistence

Matt Bergin

Infoblox • NetMRI

View

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CWE-272

Least Privilege Violation

Oct 23, 2017 KL-001-2017-017

Infoblox NetMRI Administration Shell Escape and Privilege Escalation

Matt Bergin, Hank Leininger

Infoblox • NetMRI

View

CWE-284

Improper Access Control

CWE-346

Origin Validation Error

Sep 24, 2017 KL-001-2017-016

Solarwinds LEM Insecure Update Process

Hank Leininger

Solarwinds • Multiple

View

CWE-798

Use of Hard-coded Credentials

Jul 5, 2017 KL-001-2017-015

Solarwinds LEM Hardcoded Credentials

Matt Bergin

Solarwinds • Log and Event Manager Virtual Appliance

View

CWE-304

Missing Critical Step In Authentication

Jul 5, 2017 KL-001-2017-014

Barracuda WAF Support Tunnel Hijack

Matt Bergin

Barracuda • Web Application Firewall V360

View

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Jul 5, 2017 KL-001-2017-013

Barracuda WAF Management Application Username and Session ID Leak

Matt Bergin

Barracuda • Web Application Firewall V360

View

CWE-259

Use of Hard-coded Password

Jul 5, 2017 KL-001-2017-012

Barracuda WAF Grub Password Complexity

Matt Bergin

Barracuda • Web Application Firewall V360

View

CWE-489

Active Debug Code

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Jul 5, 2017 KL-001-2017-011

Barracuda WAF Internal Development Credential Disclosure

Matt Bergin

Barracuda • Web Application Firewall V360

View

CWE-489

Active Debug Code

Jul 5, 2017 KL-001-2017-010

Barracuda WAF Early Boot Root Shell

Matt Bergin

Barracuda • Web Application Firewall V360

View

CWE-798

Use of Hard-coded Credentials

Apr 23, 2017 KL-001-2017-009

Solarwinds LEM Database Listener with Hardcoded Credentials

Matt Bergin

Solarwinds • Log and Event Manager Virtual Appliance

View

CWE-36

Absolute Path Traversal

Apr 23, 2017 KL-001-2017-008

Solarwinds LEM Management Shell Arbitrary File Read

Matt Bergin, Hank Leininger

Solarwinds • Log and Event Manager Virtual Appliance

View

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Apr 23, 2017 KL-001-2017-007

Solarwinds LEM Management Shell Escape via Command Injection

Matt Bergin, Hank Leininger

Solarwinds • Log and Event Manager Virtual Appliance

View

CWE-267

Privilege Defined With Unsafe Actions

Apr 23, 2017 KL-001-2017-006

Solarwinds LEM Privilege Escalation via Sudo Script Abuse

Hank Leininger, Matt Bergin

Solarwinds • Log and Event Manager Virtual Appliance

View

CWE-281

Improper Preservation of Permissions

CWE-708

Incorrect Ownership Assignment

Apr 23, 2017 KL-001-2017-005

Solarwinds LEM Privilege Escalation via Controlled Sudo Path

Hank Leininger, Matt Bergin

Solarwinds • Log and Event Manager Virtual Appliance

View

CWE-352

Cross-Site Request Forgery (CSRF)

Mar 9, 2017 KL-001-2017-004

WatchGuard XTMv User Management Cross-Site Request Forgery

Matt Bergin

WatchGuard • XTMv

View

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-434

Unrestricted Upload of File with Dangerous Type

Feb 14, 2017 KL-001-2017-003

Trendmicro InterScan Remote Root Access Vulnerability

Matt Bergin

Trendmicro • InterScan Web Security Virtual Appliance

View

CWE-267

Privilege Defined With Unsafe Actions

Feb 14, 2017 KL-001-2017-002

CVE-2016-9315

Trendmicro InterScan Privilege Escalation Vulnerability

Matt Bergin

Trendmicro • InterScan Web Security Virtual Appliance

View

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-434

Unrestricted Upload of File with Dangerous Type

Feb 14, 2017 KL-001-2017-001

Trendmicro InterScan Arbitrary File Write

Matt Bergin

Trendmicro • InterScan Web Security Virtual Appliance

View

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CWE-88

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

Nov 2, 2016 KL-001-2016-009

Sophos Web Appliance Remote Code Execution

Matt Bergin

Sophos • Web Apppliance

View

CWE-261

Weak Encoding for Password

CWE-522

Insufficiently Protected Credentials

Nov 2, 2016 KL-001-2016-008

Sophos Web Appliance Privilege Escalation

Matt Bergin

Sophos • Web Apppliance

View

CWE-434

Unrestricted Upload of File with Dangerous Type

CWE-94

Improper Control of Generation of Code ('Code Injection')

Oct 4, 2016 KL-001-2016-007

CVE-2016-6433

Cisco Firepower Threat Management Console Remote Command Execution Leading to Root Access

Matt Bergin

Cisco • Firepower Threat Management Console

View

CWE-73

External Control of File Name or Path

Oct 4, 2016 KL-001-2016-006

CVE-2016-6435

Cisco Firepower Threat Management Console Local File Inclusion

Matt Bergin

Cisco • Firepower Threat Management Console

View

CWE-798

Use of Hard-coded Credentials

Oct 4, 2016 KL-001-2016-005

CVE-2016-6434

Cisco Firepower Threat Management Console Hard-coded MySQL Credentials

Matt Bergin

Cisco • Firepower Threat Management Console

View

CWE-404

Improper Resource Shutdown or Release

Oct 4, 2016 KL-001-2016-004

Cisco Firepower Threat Management Console Authenticated Denial of Service

Matt Bergin

Cisco • Firepower Threat Management Console

View

CWE-379

Creation of Temporary File in Directory with Insecure Permissions

Jun 30, 2016 KL-001-2016-003

SQLite Tempdir Selection Vulnerability

Hank Leininger

SQLite/Hwaci • SQLite

View

CWE-352

Cross-Site Request Forgery (CSRF)

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Jun 27, 2016 KL-001-2016-002

Ubiquiti Administration Portal CSRF to Remote Command Execution

Matt Bergin

Ubiquiti • AirGateway, AirFiber, mFi

View

CWE-73

External Control of File Name or Path

CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')

CWE-522

Insufficiently Protected Credentials

Feb 11, 2016 KL-001-2016-001

Arris DG1670A Cable Modem Remote Command Execution

Matt Bergin, Hank Leininger

Arris • Cable Modem

View

CWE-20

Improper input validation

Dec 17, 2015 KL-001-2015-008

CVE-2015-6856

Dell Pre-Boot Authentication Driver Uncontrolled Write to Arbitrary Address

Matt Bergin

Dell • Pre-Boot Authentication Driver

View

CWE-288

Authentication Bypass Using an Alternate Path or Channel

CWE-798

Use of Hard-coded Credentials

Dec 17, 2015 KL-001-2015-007

CVE-2015-2874

Seagate GoFlex Satellite Remote Telnet Default Password

Matt Bergin

Seagate • GoFlex Satellite

View

CWE-288

Authentication Bypass Using an Alternate Path or Channel

Dec 3, 2015 KL-001-2015-006

Linksys EA6100 Wireless Router Authentication Bypass

Matt Bergin

Linksys • EA6100 - EA6300 Wireless Router

View

CWE-123

Write-what-where condition

Sep 15, 2015 KL-001-2015-005

CVE-2015-6923

VBox Satellite Express Arbitrary Write Privilege Escalation

Matt Bergin

VBox Communications • Satellite Express Protocol

View

CWE-123

Write-what-where condition

Aug 31, 2015 KL-001-2015-004

CVE-2015-5466

XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation

Matt Bergin

Silicon Integrated Systems Corporation • XGI VGA Display Manager

View

CWE-123

Write-what-where condition

Aug 31, 2015 KL-001-2015-003

CVE-2015-5465

SiS Windows VGA Display Manager Multiple Privilege Escalation

Matt Bergin

Silicon Integrated Systems Corporation • Windows VGA Display Manager

View

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

May 17, 2015 KL-001-2015-002

CVE-2015-3999

Piriform CCleaner Wiped Filename Recovery

Don Allison

Piriform • CCleaner

View

CWE-269

Improper Privilege Management

Jan 28, 2015 KL-001-2015-001

CVE-2014-4076

Microsoft Windows Server 2003 SP2 Arbitrary Write Privilege Escalation

Matt Bergin

Microsoft • TCP/IP Protocol Driver

View

CWE-20

Improper Input Validation

Nov 3, 2014 KL-001-2014-004

VMWare vmx86.sys Arbitrary Kernel Read

Matt Bergin

VMWare • Workstation

View

CWE-123

Write-what-where Condition

Jul 17, 2014 KL-001-2014-003

CVE-2014-4971

Microsoft XP SP3 MQAC.sys Arbitrary Write Privilege Escalation

Matt Bergin

Microsoft • MQ Access Control

View

CWE-123

Write-what-where Condition

Jul 17, 2014 KL-001-2014-002

CVE-2014-4971

Microsoft XP SP3 BthPan.sys Arbitrary Write Privilege Escalation

Matt Bergin

Microsoft • Bluetooth Personal Area Networking

View

CWE-123

Write-what-where Condition

Jul 15, 2014 KL-001-2014-001

CVE-2014-2477

Oracle VirtualBox Guest Additions Arbitrary Write Privilege Escalation

Matt Bergin

Oracle • VirtualBox Guest Additions

View

Security Advisories

Public Vulnerability Disclosure Policy

Latest Security Advisory

yintibao Fun Print Mobile Unauthorized Access via Context Hijacking

yintibao Fun Print Mobile Unauthorized Access via Context Hijacking

Xorux LPAR2RRD File Upload Directory Traversal

Xorux LPAR2RRD Read Only User Log Download Exposing Sensitive Information

Xorux LPAR2RRD Read Only User Denial of Service

Xorux XorMon-NG Web Application Privilege Escalation to Administrator

Xorux XorMon-NG Read Only User Export Device Configuration Exposing Sensitive Information

Schneider Electric EcoStruxure IT Data Center Expert Unauthenticated Server-Side Request Forgery

Schneider Electric EcoStruxure IT Data Center Expert Privilege Escalation

Schneider Electric EcoStruxure IT Data Center Expert Remote Command Execution

Schneider Electric EcoStruxure IT Data Center Expert Root Password Discovery

Schneider Electric EcoStruxure IT Data Center Expert Unauthenticated Remote Code Execution

Schneider Electric EcoStruxure IT Data Center Expert XML External Entities Injection

Mobile Dynamix PrinterShare Mobile Print Double-Free Memory Write

Mobile Dynamix PrinterShare Mobile Print Out-of-bounds Write

Mobile Dynamix PrinterShare Mobile Print Gmail Oauth Token Disclosure

Checkmk NagVis Remote Code Execution

Checkmk NagVis Reflected Cross-site Scripting

VICIdial Authenticated Remote Code Execution

VICIdial Unauthenticated SQL Injection

Journyx Unauthenticated XML External Entities Injection

Journyx Reflected Cross Site Scripting

Journyx Authenticated Remote Code Execution

Journyx Unauthenticated Password Reset Bruteforce

Open WebUI Arbitrary File Upload + Path Traversal

Open WebUI Stored Cross-Site Scripting

Artica Proxy Loopback Services Remotely Accessible Unauthenticated

Artica Proxy Unauthenticated File Manager Vulnerability

Artica Proxy Unauthenticated PHP Deserialization Vulnerability

Artica Proxy Unauthenticated LFI Protection Bypass Vulnerability

Cisco ThousandEyes Enterprise Agent Virtual Appliance Arbitrary File Modification via sudoedit

Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation via tcpdump

Cisco ThousandEyes Enterprise Agent Virtual Appliance Arbitrary File Read via sudo dig

Moxa TN-5900 Post Authentication Command Injection Vulnerability

Moxa TN-5900 Firmware Upgrade Checksum Validation Vulnerability

CyberArk Credential Provider Local Cache Can Be Decrypted

CyberArk Credential Provider Race Condition And Authorization Bypass

CyberArk Credential File Insufficient Effective Key Space

CommScope Ruckus IoT Controller Undocumented Account

CommScope Ruckus IoT Controller Web Application Arbitrary Read/Write

CommScope Ruckus IoT Controller Web Application Directory Traversal

CommScope Ruckus IoT Controller Hard-coded Web Application Administrator Password

CommScope Ruckus IoT Controller Hard-coded System Passwords

CommScope Ruckus IoT Controller Hard-coded API Keys Exposed

CommScope Ruckus IoT Controller Unauthenticated API Endpoints

Barco wePresent Insecure Firmware Image

Barco wePresent Global Hardcoded Root SSH Password

Barco wePresent Undocumented SSH Interface Accessible Via Web UI

Barco wePresent Authentication Bypass

Barco wePresent Admin Credentials Exposed In Plain-text

Barco wePresent Hardcoded API Credentials

Cellebrite EPR Decryption Relies on Hardcoded AES Key Material

Cellebrite Restricted Desktop Escape and Escalation of User Privilege

Cellebrite Hardcoded ADB Authentication Keys

Dell OpenManage Network Manager Multiple Vulnerabilities

HPE VAN SDN Unauthenticated Remote Root Vulnerability

Sophos UTM 9 loginuser Privilege Escalation via confd Service

Trend Micro IMSVA Management Portal Authentication Bypass

NetEx HyperIP Local File Inclusion Vulnerability

NetEx HyperIP Privilege Escalation Vulnerability

NetEx HyperIP Post-Auth Command Execution

NetEx HyperIP Authentication Bypass

Sophos Web Gateway Persistent Cross Site Scripting Vulnerability

Splunk Local Privilege Escalation

Sophos UTM 9 Management Application Local File Inclusion

Sophos UTM 9 loginuser Privilege Escalation via Insecure Directory Permissions

Sonicwall WXA5000 Console Jail Escape and Privilege Escalation

Infoblox NetMRI Administration Shell Factory Reset Persistence

Infoblox NetMRI Administration Shell Escape and Privilege Escalation

Solarwinds LEM Insecure Update Process

Solarwinds LEM Hardcoded Credentials

Barracuda WAF Support Tunnel Hijack

Barracuda WAF Management Application Username and Session ID Leak

Barracuda WAF Grub Password Complexity

Barracuda WAF Internal Development Credential Disclosure

Barracuda WAF Early Boot Root Shell

Solarwinds LEM Database Listener with Hardcoded Credentials

Security
Advisories

Get Started
Today