Aggregator

A vulnerability classified as critical was found in Siemens TeleControl Server Basic 3.1.2.1. Affected by this vulnerability is the function UnlockUser. The manipulation leads to sql injection. This vulnerability is known as CVE-2025-32844. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Siemens TeleControl Server Basic up to 3.1.2.2. Affected is the function GetUsers. The manipulation leads to sql injection. This vulnerability is traded as CVE-2025-32842. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Siemens TeleControl Server Basic 3.1.2.1. It has been rated as critical. This issue affects the function UnlockGateway. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2025-32841. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Siemens TeleControl Server Basic 3.1.2.1. It has been declared as critical. This vulnerability affects the function LockGateway. The manipulation leads to sql injection. This vulnerability was named CVE-2025-32840. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Siemens TeleControl Server Basic 3.1.2.1. It has been classified as critical. This affects the function GetGateways. The manipulation leads to sql injection. This vulnerability is uniquely identified as CVE-2025-32839. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Siemens TeleControl Server Basic 3.1.2.1 and classified as critical. Affected by this issue is the function ImportConnectionVariables. The manipulation leads to sql injection. This vulnerability is handled as CVE-2025-32838. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

Нейробиологи наконец разгадали секрет самых чувствительных зон человеческого тела.

A vulnerability has been found in Siemens TeleControl Server Basic 3.1.2.1 and classified as critical. Affected by this vulnerability is the function GetActiveConnectionVariables. The manipulation leads to sql injection. This vulnerability is known as CVE-2025-32837. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Siemens TeleControl Server Basic 3.1.2.1. Affected is the function GetConnectionVariables. The manipulation leads to sql injection. This vulnerability is traded as CVE-2025-32836. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Siemens TeleControl Server Basic 3.1.2.1. This issue affects the function UpdateConnectionVariableArchivingBuffering. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2025-32835. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Siemens TeleControl Server Basic 3.1.2.1. This vulnerability affects the function UpdateConnectionVariablesWithImport. The manipulation leads to sql injection. This vulnerability was named CVE-2025-32834. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Siemens TeleControl Server Basic 3.1.2.1. This affects the function UnlockProjectUserRights. The manipulation leads to sql injection. This vulnerability is uniquely identified as CVE-2025-32833. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Siemens TeleControl Server Basic 3.1.2.1. It has been rated as critical. Affected by this issue is the function LockProjectUserRights. The manipulation leads to sql injection. This vulnerability is handled as CVE-2025-32832. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Siemens TeleControl Server Basic 3.1.2.1. It has been declared as critical. Affected by this vulnerability is the function UpdateProjectUserRights. The manipulation leads to sql injection. This vulnerability is known as CVE-2025-32831. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Siemens TeleControl Server Basic 3.1.2.1. It has been classified as critical. Affected is the function UnlockProject. The manipulation leads to sql injection. This vulnerability is traded as CVE-2025-32830. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Siemens TeleControl Server Basic 3.1.2.1 and classified as critical. This issue affects the function LockProjectCrossCommunications. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2025-32829. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in LRQA Nettitude PoshC2 and classified as critical. This vulnerability affects the function upload_file of the component POST Request Handler. The manipulation leads to privilege escalation. This vulnerability was named CVE-2024-53303. The attack can be initiated remotely. There is no exploit available.

Apple released emergency security updates to patch two zero-day vulnerabilities that were used in an "extremely sophisticated attack" against specific targets' iPhones. [...]

A vulnerability, which was classified as problematic, was found in net-html up to 0.37.x on Go. This affects the function Parse of the component Tokenizer. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-22872. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.