AMSS++ 4
Description
AMSS++ 4
AI Analyst Comment
Remediation
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Search and filter 17282 vulnerabilities with AI analyst insights
AMSS++ 4
AMSS++ 4
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
UltraVNC Viewer 1
UltraVNC Viewer 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
UltraVNC Launcher 1
UltraVNC Launcher 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Nsauditor 3
Nsauditor 3
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
MEmu Play 7.1.3 contains an insecure folder permissions vulnerability allowing low-privileged users to replace the MemuService.exe file and gain SYSTE...
MEmu Play 7.1.3 contains an insecure folder permissions vulnerability allowing low-privileged users to replace the MemuService.exe file and gain SYSTEM-level privileges upon system restart.
---METADATA---
VENDOR: MEmu
PRODUCT: MEmu Play
AFFECTED_VERSIONS: 7.1.3
---END_METADATA---
Description Summary:
MEmu Play 7.1.3 contains an insecure folder permissions vulnerability allowing low-privileged users to replace the MemuService.exe file and gain SYSTEM-level privileges upon system restart.
Executive Summary:
MEmu Play 7.1.3 contains an insecure folder permissions flaw allowing low-privileged users to gain full SYSTEM-level access by replacing a critical service executable.
Vulnerability Details
CVE-ID: CVE-2020-37129
Affected Software: MEmu MEmu Play
Affected Versions: 7.1.3
Vulnerability: The application utilizes insecure file system permissions on its installation directory, specifically allowing low-privileged authenticated users to modify the MemuService.exe file. By replacing this executable with a malicious binary, an attacker can achieve local privilege escalation to SYSTEM level when the service restarts.
Business Impact
This vulnerability represents a significant internal threat, as it allows any user with basic access to the machine to gain total control over the operating system. Such an escalation can be used to disable security software, steal sensitive local data, or pivot further into the corporate network. The CVSS score of 9.8 underscores the critical impact of a local user gaining full administrative control.
Remediation Plan
Immediate Action: Update MEmu Play to the latest version, which addresses the directory permission issues, and verify that the "Everyone" or "Users" groups do not have write access to the installation folder.
Proactive Monitoring: Review system logs for unauthorized modifications to service executables and monitor for unexpected service restarts or new SYSTEM-level processes.
Compensating Controls: Utilize Endpoint Detection and Response (EDR) tools to block unauthorized file modifications in the Program Files directory and enforce the principle of least privilege.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 5, 2026, there is no public information indicating active exploitation of this vulnerability. However, local privilege escalation vulnerabilities are frequently used by attackers after gaining an initial foothold in a network.
Analyst Recommendation
Organizations using MEmu Play must address this vulnerability immediately to prevent internal privilege escalation. We recommend auditing all third-party software installation directories for similar permission flaws. Applying the latest vendor patch is the most effective method to secure the service executable and maintain system integrity.
Update Memu Play Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Free Desktop Clock 3.0 contains a stack overflow vulnerability in the Time Zones display name input that allows unauthenticated attackers to overwrite...
Free Desktop Clock 3.0 contains a stack overflow vulnerability in the Time Zones display name input that allows unauthenticated attackers to overwrite SEH registers and execute arbitrary code.
---METADATA---
VENDOR: Free Desktop Clock
PRODUCT: Desktop Clock
AFFECTED_VERSIONS: 3.0
---END_METADATA---
Description Summary:
Free Desktop Clock 3.0 contains a stack overflow vulnerability in the Time Zones display name input that allows unauthenticated attackers to overwrite SEH registers and execute arbitrary code.
Executive Summary:
Free Desktop Clock 3.0 is vulnerable to a critical stack overflow that allows unauthenticated attackers to execute arbitrary code via malicious Unicode input.
Vulnerability Details
CVE-ID: CVE-2020-37126
Affected Software: Free Desktop Clock Desktop Clock
Affected Versions: 3.0
Vulnerability: This vulnerability is a stack-based buffer overflow occurring within the Time Zones display name input field. An unauthenticated attacker can trigger this flaw by providing crafted Unicode input, leading to the overwriting of Structured Exception Handler (SEH) registers and subsequent arbitrary code execution.
Business Impact
A successful exploit allows for complete system compromise, as the attacker can gain the same execution privileges as the application. This could result in unauthorized data access, installation of malware, or total loss of system integrity. The CVSS score of 9.8 reflects the critical nature of this flaw due to the lack of required authentication and the potential for remote code execution.
Remediation Plan
Immediate Action: Administrators should immediately update Free Desktop Clock to the latest available version or decommission the software if it is no longer required for business operations.
Proactive Monitoring: Security teams should monitor for unusual application crashes or anomalous process behavior originating from the Desktop Clock executable.
Compensating Controls: Implement strict application whitelisting and ensure that users do not have administrative privileges, which can limit the scope of a successful code execution exploit.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 5, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw and the ease of triggering stack overflows via input fields, the potential for exploitation is high.
Analyst Recommendation
The severity of this vulnerability cannot be overstated, as it allows for unauthenticated remote code execution. Organizations should prioritize the removal or update of Free Desktop Clock 3.0 immediately. Given the age of the software and the critical CVSS score, immediate remediation is the only effective way to mitigate the risk of full system takeover.
Update the Time Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
An unauthenticated remote code execution vulnerability in the Edimax EW-7438RPn-v3 Mini allows attackers to execute arbitrary commands via the /goform...
An unauthenticated remote code execution vulnerability in the Edimax EW-7438RPn-v3 Mini allows attackers to execute arbitrary commands via the /goform/mp endpoint.
---METADATA---
VENDOR: Edimax
PRODUCT: EW-7438RPn-v3 Mini
AFFECTED_VERSIONS: 1.27
---END_METADATA---
Description Summary:
An unauthenticated remote code execution vulnerability in the Edimax EW-7438RPn-v3 Mini allows attackers to execute arbitrary commands via the /goform/mp endpoint.
Executive Summary:
A critical unauthenticated remote code execution vulnerability in Edimax Wi-Fi extenders allows attackers to take full control of the device by sending crafted POST requests.
Vulnerability Details
CVE-ID: CVE-2020-37125
Affected Software: Edimax EW-7438RPn-v3 Mini
Affected Versions: 1.27
Vulnerability: The vulnerability is located in the /goform/mp web endpoint. It allows an unauthenticated attacker to perform command injection by sending a crafted POST request. This enables the attacker to download and execute malicious scripts directly on the device hardware.
Business Impact
Compromised Wi-Fi extenders can be used as persistent entry points into a corporate or home network. Attackers can perform man-in-the-middle attacks, sniff network traffic, or use the device as part of a botnet for DDoS attacks. The CVSS score of 9.8 reflects the ease of exploitation and the total compromise of the affected hardware.
Remediation Plan
Immediate Action: Update the firmware of the Edimax EW-7438RPn-v3 Mini to the latest version immediately. If the device is end-of-life, it should be replaced.
Proactive Monitoring: Monitor network traffic for unusual POST requests to the /goform/mp endpoint and watch for unauthorized outbound connections from IoT devices.
Compensating Controls: Place IoT devices like Wi-Fi extenders on a segregated VLAN with no access to sensitive internal resources or the management interfaces of other devices.
Exploitation Status
Public Exploit Available: No
Analyst Notes: This is a late disclosure of a 2020 vulnerability. Command injection in IoT devices is frequently targeted by automated malware like Mirai or its variants.
Analyst Recommendation
The ability for an unauthenticated attacker to execute commands remotely makes this a critical security risk. We recommend that organizations and individuals using these Edimax devices verify their firmware versions immediately. If a patch is not available from the vendor, the device should be decommissioned to prevent it from becoming a liability.
Update Edimax Multiple Products to the latest version. Check vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
A buffer overflow in the B64dec utility allows attackers to execute arbitrary code by overwriting the Structured Exception Handler (SEH) during the ba...
A buffer overflow in the B64dec utility allows attackers to execute arbitrary code by overwriting the Structured Exception Handler (SEH) during the base64 decoding process.
---METADATA---
VENDOR: B64dec
PRODUCT: B64dec Utility
AFFECTED_VERSIONS: 1.1.2
---END_METADATA---
Description Summary:
A buffer overflow in the B64dec utility allows attackers to execute arbitrary code by overwriting the Structured Exception Handler (SEH) during the base64 decoding process.
Executive Summary:
A critical buffer overflow in the B64dec utility allows attackers to execute arbitrary code on a system by providing crafted input during base64 decoding operations.
Vulnerability Details
CVE-ID: CVE-2020-37124
Affected Software: B64dec Utility
Affected Versions: 1.1.2
Vulnerability: The vulnerability occurs during the base64 decoding process when the utility handles malformed or overly long input. An attacker can use an "egg hunter" technique and a crafted payload to overwrite the Structured Exception Handler (SEH), leading to arbitrary code execution when the exception is triggered.
Business Impact
If this utility is used as part of an automated pipeline or by system administrators, its compromise can lead to the execution of malicious code with the privileges of the executing user. This could result in data theft, malware installation, or persistent access to the host system. The CVSS score of 9.8 reflects the high risk of code execution.
Remediation Plan
Immediate Action: Discontinue use of B64dec version 1.1.2 and update to a patched version or switch to a standard, well-maintained decoding library (e.g., those built into modern operating systems).
Proactive Monitoring: Scan for the presence of the B64dec binary on systems and monitor for unexpected crashes or shells spawned by the utility.
Compensating Controls: Use sandboxing or containerization when running small utilities that process untrusted input to limit the potential impact of a compromise.
Exploitation Status
Public Exploit Available: No
Analyst Notes: This 2020 vulnerability was disclosed in 2026. The mention of an "egg hunter" technique suggests that the exploit is designed to work even in memory-constrained environments.
Analyst Recommendation
Small utilities like B64dec are often overlooked in security audits but can provide a critical foothold for attackers. We recommend replacing this utility with a more secure alternative immediately. If its use is mandatory, ensure it is updated and that it never processes data from untrusted sources without strict input validation.
Update B64dec Multiple Products to the latest version. Check vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
Pinger 1.0 contains a remote code execution vulnerability where unauthenticated attackers can inject shell commands into the ping and socket parameter...
Pinger 1.0 contains a remote code execution vulnerability where unauthenticated attackers can inject shell commands into the ping and socket parameters of ping.php to execute system commands.
---METADATA---
VENDOR: Pinger
PRODUCT: Pinger
AFFECTED_VERSIONS: 1.0
---END_METADATA---
Description Summary:
Pinger 1.0 contains a remote code execution vulnerability where unauthenticated attackers can inject shell commands into the ping and socket parameters of ping.php to execute system commands.
Executive Summary:
Pinger 1.0 is susceptible to a critical remote code execution vulnerability through unsanitized input in the ping and socket parameters, allowing full server takeover.
Vulnerability Details
CVE-ID: CVE-2020-37123
Affected Software: Pinger Pinger
Affected Versions: 1.0
Vulnerability: This is a command injection vulnerability located in the ping.php file. An unauthenticated remote attacker can exploit unsanitized input in the 'ping' and 'socket' parameters by appending shell metacharacters, allowing them to write arbitrary PHP files to the server and execute OS-level commands.
Business Impact
A successful exploit grants the attacker the ability to execute arbitrary commands on the web server, leading to a total compromise of the application and underlying data. This could result in the theft of sensitive information, website defacement, or the use of the server as a botnet node. The CVSS score of 9.8 highlights the extreme risk posed by unauthenticated remote code execution.
Remediation Plan
Immediate Action: Update the Pinger software to the latest version immediately or disable the ping.php script if it is not essential for business operations.
Proactive Monitoring: Inspect web server access logs for requests to ping.php containing suspicious characters such as semicolons, pipes, or backticks (e.g., ;, |, `).
Compensating Controls: Deploy a Web Application Firewall (WAF) with rules configured to detect and block common shell command injection patterns in HTTP GET and POST parameters.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 5, 2026, there is no public information indicating active exploitation of this vulnerability. However, command injection flaws in web-facing scripts are highly attractive targets for automated exploitation scripts.
Analyst Recommendation
This vulnerability represents a critical risk to any organization hosting the affected software. Immediate patching or removal of the vulnerable script is required. Developers should ensure that all user-supplied input is strictly validated against an allow-list and that system calls are made using secure APIs rather than direct shell execution.
Update HP to write to the latest version. Monitor for exploitation attempts and review access logs.
SpotFTP-FTP Password Recover 2
SpotFTP-FTP Password Recover 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
A buffer overflow in the Rubo DICOM Viewer server name input field allows attackers to overwrite the Structured Exception Handler (SEH) and execute ar...
A buffer overflow in the Rubo DICOM Viewer server name input field allows attackers to overwrite the Structured Exception Handler (SEH) and execute arbitrary code.
---METADATA---
VENDOR: Rubo Medical Imaging
PRODUCT: Rubo DICOM Viewer
AFFECTED_VERSIONS: 2.0
---END_METADATA---
Description Summary:
A buffer overflow in the Rubo DICOM Viewer server name input field allows attackers to overwrite the Structured Exception Handler (SEH) and execute arbitrary code.
Executive Summary:
A critical buffer overflow in Rubo DICOM Viewer allows attackers to execute arbitrary code remotely by exploiting an improperly handled input field in the DICOM server configuration.
Vulnerability Details
CVE-ID: CVE-2020-37120
Affected Software: Rubo DICOM Viewer
Affected Versions: 2.0
Vulnerability: The vulnerability exists in the DICOM server name input field. An attacker can provide a specially crafted string—potentially via a malicious configuration file or direct input—that overflows the buffer, overwrites the Structured Exception Handler (SEH), and redirects execution to an attacker-controlled payload.
Business Impact
In a medical environment, the compromise of a DICOM viewer can lead to the theft of Protected Health Information (PHI) or the manipulation of medical records. A successful exploit grants the attacker the same privileges as the user running the viewer, often leading to full workstation compromise. The CVSS score of 9.8 highlights the critical nature of this flaw.
Remediation Plan
Immediate Action: Update Rubo DICOM Viewer to the latest version. If the software is no longer supported, migrate to a secure, modern DICOM viewing solution.
Proactive Monitoring: Review system logs for application crashes related to the DICOM viewer and monitor for unauthorized network connections originating from medical imaging workstations.
Compensating Controls: Implement strict application whitelisting and restrict the ability of the viewer to process files from untrusted or external sources.
Exploitation Status
Public Exploit Available: No
Analyst Notes: This 2020 vulnerability was disclosed late in 2026. The use of SEH overwrite is a classic exploitation technique, suggesting that a functional exploit could be developed easily by motivated actors.
Analyst Recommendation
Healthcare organizations must prioritize the security of medical imaging software. We recommend an immediate audit of all workstations running Rubo DICOM Viewer 2.0. Given the sensitivity of medical data, the software should be updated or replaced immediately to prevent remote code execution and potential HIPAA violations.
Update the DICOM Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
A buffer overflow in the Nsauditor DNS Lookup tool allows attackers to bypass ASLR and execute arbitrary shellcode via a crafted DNS query payload.
A buffer overflow in the Nsauditor DNS Lookup tool allows attackers to bypass ASLR and execute arbitrary shellcode via a crafted DNS query payload.
---METADATA---
VENDOR: Nsauditor
PRODUCT: Nsauditor (Network Security Auditor)
AFFECTED_VERSIONS: 3.0.28, 3.2.1.0
---END_METADATA---
Description Summary:
A buffer overflow in the Nsauditor DNS Lookup tool allows attackers to bypass ASLR and execute arbitrary shellcode via a crafted DNS query payload.
Executive Summary:
A critical buffer overflow vulnerability in Nsauditor allows remote attackers to execute arbitrary code and gain full control of the host system by exploiting the DNS Lookup tool.
Vulnerability Details
CVE-ID: CVE-2020-37119
Affected Software: Nsauditor
Affected Versions: 3.0.28, 3.2.1.0
Vulnerability: The DNS Lookup tool within Nsauditor fails to properly validate the size of incoming DNS query responses. This allows an attacker to send a malicious payload that triggers a three-byte overwrite, enabling them to bypass Address Space Layout Randomization (ASLR) and execute arbitrary shellcode.
Business Impact
Successful exploitation results in complete system compromise. Since Nsauditor is a security auditing tool often run with elevated privileges, an attacker gaining code execution could potentially compromise the entire network being audited. The CVSS score of 9.8 reflects the high probability of successful remote exploitation and total impact on confidentiality and integrity.
Remediation Plan
Immediate Action: Update Nsauditor to the latest available version. If a patch is unavailable, discontinue use of the DNS Lookup tool within the application.
Proactive Monitoring: Monitor for unusual outbound DNS traffic or crashes of the Nsauditor process, which may indicate failed exploitation attempts.
Compensating Controls: Use network-level DNS filtering and ensure that the host running Nsauditor is isolated from untrusted networks.
Exploitation Status
Public Exploit Available: No
Analyst Notes: This is a late-disclosure vulnerability from 2020, published in 2026. While no active exploitation is currently reported, the technical details provided make the creation of an exploit highly feasible.
Analyst Recommendation
The delay in disclosure increases the risk that legacy systems remain vulnerable. We recommend that security teams immediately identify any installations of Nsauditor and apply updates. Because this tool is used for security auditing, its compromise would be particularly damaging to the organization's overall security posture.
Update the DNS Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
jizhiCMS 1
jizhiCMS 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
GUnet OpenEclass 1
GUnet OpenEclass 1
---METADATA---
VENDOR: GUnet
PRODUCT: OpenEclass
AFFECTED_VERSIONS: See vendor advisory for affected versions
---END_METADATA---
Description Summary:
GUnet OpenEclass 1 is affected by a critical security vulnerability that could lead to a complete system compromise or unauthorized data access.
Executive Summary:
A critical vulnerability in GUnet OpenEclass 1 poses a severe risk to the platform, potentially allowing unauthenticated attackers to gain full administrative control.
Vulnerability Details
CVE-ID: CVE-2020-37116
Affected Software: GUnet OpenEclass
Affected Versions: See vendor advisory for affected versions
Vulnerability: This vulnerability affects GUnet OpenEclass version 1. Similar to CVE-2020-37113, the CVSS score of 8.8 suggests a critical failure in input validation or access control, potentially allowing for remote code execution (RCE) by an unauthenticated user.
Business Impact
The impact of an 8.8 CVSS score vulnerability is catastrophic, potentially resulting in a total loss of confidentiality, integrity, and availability. Attackers could gain access to sensitive academic records, disrupt online learning, or use the server for malicious activities, leading to significant legal and reputational consequences.
Remediation Plan
Immediate Action: Update GUnet OpenEclass to the latest patched version immediately to remediate this critical security hole.
Proactive Monitoring: Implement robust logging and alerting for any attempts to access sensitive system files or execute shell commands through the web interface.
Compensating Controls: Ensure the web server is running with the least privilege necessary and that all software dependencies are up to date.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. The high severity indicates that if a technique is discovered, exploitation would likely be highly effective and damaging.
Analyst Recommendation
This vulnerability represents a critical risk to the organization. Immediate application of the vendor's security patch is mandatory to mitigate the threat of a full system takeover and to ensure the continued safety of user data.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
GUnet OpenEclass 1
GUnet OpenEclass 1
---METADATA---
VENDOR: GUnet
PRODUCT: OpenEclass
AFFECTED_VERSIONS: See vendor advisory for affected versions
---END_METADATA---
Description Summary:
GUnet OpenEclass 1 is affected by a critical security vulnerability that could allow for unauthorized file access or remote code execution.
Executive Summary:
GUnet OpenEclass 1 contains a critical vulnerability that may allow an attacker to fully compromise the e-learning platform and its associated data.
Vulnerability Details
CVE-ID: CVE-2020-37113
Affected Software: GUnet OpenEclass
Affected Versions: See vendor advisory for affected versions
Vulnerability: This vulnerability exists in GUnet OpenEclass version 1. The CVSS score of 8.8 indicates a critical flaw, likely involving an unauthenticated attacker's ability to perform arbitrary file operations or execute code on the server.
Business Impact
Successful exploitation could lead to the theft of student and educator data, the modification of educational content, and the use of the platform to distribute malware. A CVSS score of 8.8 justifies an extremely high severity rating, as it implies the attacker can achieve significant control over the system with minimal effort.
Remediation Plan
Immediate Action: Apply the latest security updates provided by GUnet for the OpenEclass platform immediately.
Proactive Monitoring: Monitor for suspicious file uploads or modifications within the web root and review system logs for unauthorized user creation.
Compensating Controls: Use a Web Application Firewall (WAF) to inspect all incoming traffic for malicious payloads and restrict file upload directories to prevent execution.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. However, the high CVSS score and the educational nature of the software make it an attractive target for data theft.
Analyst Recommendation
Given the critical CVSS score of 8.8, this vulnerability must be addressed with the highest priority. Immediate patching is the only reliable way to protect the platform from potential remote exploitation and data exfiltration.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
GUnet OpenEclass 1
GUnet OpenEclass 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
60CycleCMS 2
60CycleCMS 2
---METADATA---
VENDOR: 60CycleCMS
PRODUCT: 60CycleCMS
AFFECTED_VERSIONS: Version 2; See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A high-severity vulnerability exists in 60CycleCMS version 2 that could allow for unauthorized system compromise. Technical details suggest a significant flaw in the application's core logic.
Executive Summary:
60CycleCMS version 2 is affected by a high-severity vulnerability that poses a significant risk of unauthorized access and data compromise.
Vulnerability Details
CVE-ID: CVE-2020-37110
Affected Software: 60CycleCMS 60CycleCMS
Affected Versions: Version 2
Vulnerability: This vulnerability affects version 2 of the 60CycleCMS platform. While specific technical vectors are limited in initial disclosures, the high severity indicates a flaw likely accessible by an unauthenticated or low-privileged attacker targeting the CMS framework.
Business Impact
A successful exploit of this vulnerability could lead to a total compromise of the CMS environment, including the theft of sensitive data, unauthorized content modification, and potential lateral movement within the hosting infrastructure. The CVSS score of 8.2 reflects a High severity rating, highlighting the substantial risk to organizational integrity and availability of web services.
Remediation Plan
Immediate Action: Administrators should immediately apply the latest security patches provided by 60CycleCMS or upgrade to a supported, non-vulnerable version of the software.
Proactive Monitoring: Security teams should monitor web server access logs for unusual POST requests or directory traversal attempts targeting the CMS installation directory.
Compensating Controls: Implementing a Web Application Firewall (WAF) with generic CMS protection rules can help mitigate exploitation attempts until the primary patch is applied.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation of this vulnerability. However, this is a late disclosure of a 2020 flaw; the potential for exploitation remains high as technical details become more widely known.
Analyst Recommendation
The high CVSS score of 8.2 necessitates immediate attention from security administrators. We strongly recommend prioritizing the patching of all 60CycleCMS v2 instances to prevent unauthorized access and potential data exfiltration.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
aSc TimeTables 2020
aSc TimeTables 2020
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
PhpIX 2012 Professional contains a SQL injection vulnerability in the 'id' parameter of product_detail
PhpIX 2012 Professional contains a SQL injection vulnerability in the 'id' parameter of product_detail
Apply vendor patches immediately. Review database access controls and enable query logging.
Core FTP LE 2
Core FTP LE 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
PMB 5
PMB 5
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
ASTPP 4
ASTPP 4
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Adaware Web Companion 4
Adaware Web Companion 4
---METADATA---
VENDOR: Adaware
PRODUCT: Web Companion
AFFECTED_VERSIONS: 4; See vendor advisory for affected versions
---END_METADATA---
Description Summary:
A high-severity vulnerability in Adaware Web Companion 4 could allow for unauthorized privilege escalation or system interference on the local machine.
Executive Summary:
Adaware Web Companion 4 is affected by a high-severity vulnerability that could allow an attacker to compromise the security of the host system.
Vulnerability Details
CVE-ID: CVE-2020-37102
Affected Software: Adaware Web Companion
Affected Versions: 4
Vulnerability: This vulnerability exists in Adaware Web Companion 4. Given the CVSS score of 7.8, it likely involves a flaw in the software's service or update mechanism that could be exploited by a local attacker to escalate privileges or bypass security features.
Business Impact
A successful exploit could allow an attacker to disable security protections on an endpoint or gain administrative control over the local system. This increases the risk of malware infection and data theft on employee workstations.
Remediation Plan
Immediate Action: Uninstall Adaware Web Companion 4 or update it to the latest version provided by the vendor.
Proactive Monitoring: Use endpoint detection and response (EDR) tools to monitor for unusual process behavior originating from security software components.
Compensating Controls: Implement the principle of least privilege on all workstations to limit the potential for local privilege escalation attacks.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. Security software vulnerabilities are often targeted to blind other security controls on a system.
Analyst Recommendation
We recommend that IT administrators identify and update or remove Adaware Web Companion 4 from all managed endpoints. Ensuring that endpoint security tools are themselves secure is a fundamental requirement for a robust defense-in-depth strategy.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
VPN Unlimited 6
VPN Unlimited 6
---METADATA---
VENDOR: KeepSolid
PRODUCT: VPN Unlimited 6
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
VPN Unlimited 6 is affected by a high-severity vulnerability that could compromise the security of encrypted tunnels or lead to local privilege escalation.
Executive Summary:
VPN Unlimited 6 contains a high-severity vulnerability that threatens the privacy and security of the user's encrypted communications.
Vulnerability Details
CVE-ID: CVE-2020-37101
Affected Software: KeepSolid VPN Unlimited 6
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability in VPN Unlimited 6 likely involves a flaw in how the application handles system-level privileges or manages secure connections. With a CVSS score of 7.8, it represents a significant risk where an attacker could potentially intercept traffic or gain unauthorized access on the local machine.
Business Impact
For organizations relying on VPNs to secure remote work, this flaw is critical. A compromise could lead to the exposure of sensitive corporate data being transmitted over the VPN or allow an attacker to bypass internal security perimeters. The 7.8 CVSS score indicates a high impact on the confidentiality of business communications.
Remediation Plan
Immediate Action: Update VPN Unlimited to the latest available version to ensure all security patches are applied.
Proactive Monitoring: Review endpoint security logs for any unauthorized attempts to modify VPN configuration files or unexpected behavior from the VPN client service.
Compensating Controls: Ensure that all remote access requires Multi-Factor Authentication (MFA) and that endpoints are protected by updated EDR/AV solutions.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation of this vulnerability. As a late-disclosure vulnerability, it is essential to ensure no legacy clients remain in use within the organization.
Analyst Recommendation
The security of the VPN tunnel is the cornerstone of remote work safety. Given the 7.8 CVSS score, administrators must ensure all users have updated their VPN Unlimited software to a supported version immediately to prevent potential data interception or privilege escalation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Sync Breeze Enterprise 12
Sync Breeze Enterprise 12
---METADATA---
VENDOR: Flexense
PRODUCT: Sync Breeze Enterprise
AFFECTED_VERSIONS: 12; See vendor advisory for affected versions
---END_METADATA---
Description Summary:
A high-severity vulnerability in Sync Breeze Enterprise 12 could allow for unauthorized file synchronization or system access.
Executive Summary:
Sync Breeze Enterprise 12 contains a high-severity vulnerability that could allow an attacker to manipulate file synchronization tasks and compromise data.
Vulnerability Details
CVE-ID: CVE-2020-37100
Affected Software: Sync Breeze Enterprise
Affected Versions: 12
Vulnerability: This vulnerability is present in Sync Breeze Enterprise 12. With a CVSS score of 7.8, the flaw likely permits an attacker to interfere with synchronization processes or gain unauthorized access to the management server, potentially through the web-based interface.
Business Impact
Exploitation of this vulnerability could result in the unauthorized copying of sensitive data to external locations or the corruption of synchronized files. This poses a direct threat to data integrity and confidentiality across the enterprise.
Remediation Plan
Immediate Action: Update Sync Breeze Enterprise 12 to the latest patched version provided by the vendor immediately.
Proactive Monitoring: Monitor synchronization logs for any new or modified tasks that were not initiated by authorized administrators.
Compensating Controls: Disable the web management interface if it is not required, or restrict its access to a dedicated management network.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. The nature of synchronization software makes it a high-value target for data exfiltration.
Analyst Recommendation
It is critical to apply the available patches for Sync Breeze Enterprise 12 immediately. Organizations should ensure that all file synchronization tools are properly secured to prevent unauthorized data movement and maintain system integrity.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Disk Savvy Enterprise 12
Disk Savvy Enterprise 12
---METADATA---
VENDOR: Flexense
PRODUCT: Disk Savvy Enterprise
AFFECTED_VERSIONS: 12; See vendor advisory for affected versions
---END_METADATA---
Description Summary:
A high-severity vulnerability in Disk Savvy Enterprise 12 could allow attackers to gain unauthorized access to disk space analysis data or the host system.
Executive Summary:
Disk Savvy Enterprise 12 is vulnerable to a high-severity security flaw that could lead to unauthorized access and system compromise.
Vulnerability Details
CVE-ID: CVE-2020-37099
Affected Software: Disk Savvy Enterprise
Affected Versions: 12
Vulnerability: This vulnerability affects Disk Savvy Enterprise 12. The CVSS score of 7.8 suggests a significant flaw in the application's handling of requests or permissions, potentially allowing an attacker to bypass security controls in the management console.
Business Impact
An attacker could exploit this flaw to view sensitive file system information or disrupt disk management operations. This could lead to the exposure of confidential data locations and facilitate further attacks against the organization's storage infrastructure.
Remediation Plan
Immediate Action: Apply the vendor's security update for Disk Savvy Enterprise 12 immediately.
Proactive Monitoring: Audit the system for any unauthorized changes to disk analysis reports or configuration settings within the Disk Savvy environment.
Compensating Controls: Use network segmentation to isolate the disk management server and ensure that all administrative traffic is encrypted and authenticated.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. Like other Flexense products in this batch, the late disclosure warrants a thorough review of existing installations.
Analyst Recommendation
Immediate patching is advised to mitigate the risks associated with this high-severity vulnerability. Protecting disk management tools is essential for maintaining the overall security and confidentiality of the enterprise file system.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Disk Sorter Enterprise 12
Disk Sorter Enterprise 12
---METADATA---
VENDOR: Flexense
PRODUCT: Disk Sorter Enterprise
AFFECTED_VERSIONS: 12; See vendor advisory for affected versions
---END_METADATA---
Description Summary:
A high-severity vulnerability in Disk Sorter Enterprise 12 could allow for unauthorized administrative actions or system compromise.
Executive Summary:
Disk Sorter Enterprise 12 contains a high-severity security flaw that could allow an attacker to compromise the host system's data integrity.
Vulnerability Details
CVE-ID: CVE-2020-37098
Affected Software: Disk Sorter Enterprise
Affected Versions: 12
Vulnerability: This vulnerability resides in the Disk Sorter Enterprise 12 management interface or core service. With a CVSS score of 7.8, it likely involves a flaw that allows an authenticated or unauthenticated attacker to execute unauthorized commands or access sensitive file system metadata.
Business Impact
Successful exploitation could lead to unauthorized file manipulation, data loss, or the exposure of file system structures across the enterprise. This poses a significant risk to organizational data management and could be used as a stepping stone for further network infiltration.
Remediation Plan
Immediate Action: Upgrade Disk Sorter Enterprise to the latest version immediately to address this vulnerability.
Proactive Monitoring: Monitor for unusual service restarts or administrative logins to the Disk Sorter web interface from unrecognized IP addresses.
Compensating Controls: Restrict access to the Disk Sorter management ports (typically TCP 8080) to authorized administrative workstations only via host-based firewalls.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. This late disclosure highlights the need to audit legacy enterprise software for unpatched vulnerabilities.
Analyst Recommendation
We recommend an immediate update of Disk Sorter Enterprise 12. Maintaining up-to-date enterprise management software is critical for preventing unauthorized access to the underlying storage infrastructure.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Edimax EW-7438RPn 1
Edimax EW-7438RPn 1
---METADATA---
VENDOR: Edimax
PRODUCT: EW-7438RPn
AFFECTED_VERSIONS: See vendor advisory for affected versions
---END_METADATA---
Description Summary:
A security vulnerability exists in the Edimax EW-7438RPn range extender that could allow for unauthorized access or system compromise.
Executive Summary:
The Edimax EW-7438RPn range extender contains a high-severity vulnerability that could allow an attacker to compromise the device and intercept network traffic.
Vulnerability Details
CVE-ID: CVE-2020-37097
Affected Software: Edimax EW-7438RPn
Affected Versions: See vendor advisory for affected versions
Vulnerability: This vulnerability affects the Edimax EW-7438RPn hardware. While technical specifics are limited in the late disclosure, the high CVSS score suggests a critical failure in the device's management interface or network stack, likely exploitable by an unauthenticated attacker on the local network.
Business Impact
A successful exploit of this range extender could lead to a complete compromise of the local network infrastructure. Attackers could perform man-in-the-middle (MitM) attacks, redirecting or capturing sensitive data transmitted by connected users. With a CVSS score of 7.5, the risk to confidentiality and integrity is significant, potentially leading to the exposure of corporate credentials or internal communications.
Remediation Plan
Immediate Action: Administrators should immediately check for and apply the latest firmware updates from the Edimax support portal to mitigate this flaw.
Proactive Monitoring: Monitor network traffic originating from IoT and networking hardware for unusual outbound connections or unauthorized configuration changes.
Compensating Controls: Isolate range extenders and similar networking hardware on a dedicated management VLAN with strict access control lists (ACLs) to prevent lateral movement.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw and its late disclosure, the potential for exploitation remains a high priority for organizations using legacy networking hardware.
Analyst Recommendation
The high severity of this vulnerability necessitates immediate remediation. Organizations should prioritize updating the firmware on all Edimax EW-7438RPn devices or consider replacing end-of-life hardware that no longer receives security patches to maintain a robust security posture.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Buffer overflow in Cyberoam Authentication Client 2.1.2.7 allows remote attackers to execute arbitrary code by overwriting SEH memory via a crafted se...
Buffer overflow in Cyberoam Authentication Client 2.1.2.7 allows remote attackers to execute arbitrary code by overwriting SEH memory via a crafted server address.
---METADATA---
VENDOR: Cyberoam
PRODUCT: Authentication Client
AFFECTED_VERSIONS: 2.1.2.7
---END_METADATA---
Description Summary:
Buffer overflow in Cyberoam Authentication Client 2.1.2.7 allows remote attackers to execute arbitrary code by overwriting SEH memory via a crafted server address.
Executive Summary:
A critical buffer overflow in the Cyberoam Authentication Client enables remote attackers to gain system-level access by overwriting memory via a crafted server address.
Vulnerability Details
CVE-ID: CVE-2020-37095
Affected Software: Cyberoam Authentication Client
Affected Versions: 2.1.2.7
Vulnerability: This is a stack-based buffer overflow vulnerability triggered by malicious input in the "Cyberoam Server Address" field. An unauthenticated remote attacker can provide a specially crafted string that overwrites the Structured Exception Handler (SEH), leading to the execution of arbitrary code and the establishment of a bind TCP shell on port 1337.
Business Impact
The impact of this vulnerability is severe, as it allows for complete system takeover with system-level privileges. With a CVSS score of 9.8, the flaw poses a significant risk of data exfiltration and persistent unauthorized access to corporate endpoints.
Remediation Plan
Immediate Action: Update all Cyberoam Authentication Client installations to the latest available version provided by the vendor.
Proactive Monitoring: Monitor network traffic for unauthorized connections on TCP port 1337 and audit endpoint logs for suspicious memory corruption events.
Compensating Controls: Restrict access to the authentication client's input fields through group policies and deploy Endpoint Detection and Response (EDR) solutions to block shellcode execution.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 7, 2026, there is no public information indicating active exploitation of this vulnerability. This is a late disclosure of a legacy issue, but the high CVSS score necessitates immediate remediation for any remaining legacy deployments.
Analyst Recommendation
Given the ability to achieve a system-level bind shell, this vulnerability represents a maximum-severity risk. Organizations must prioritize the removal or update of version 2.1.2.7 across all workstations to prevent remote exploitation.
Update Cyberoam Authentication Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
EspoCRM 5.8.5 contains an authentication vulnerability that allows attackers to access other user accounts by manipulating authorization headers. Atta...
EspoCRM 5.8.5 contains an authentication vulnerability that allows attackers to access other user accounts by manipulating authorization headers. Attackers can decode and modify Basic Authorization and Espo-Authorization tokens to gain unauthorized access to administrative user information and privileges.
---METADATA---
VENDOR: EspoCRM
PRODUCT: EspoCRM
AFFECTED_VERSIONS: 5.8.5
CONFIDENCE: high
MISSING: patch
---END_METADATA---
Description Summary:
EspoCRM 5.8.5 is vulnerable to an authentication bypass via manipulation of authorization headers, allowing unauthorized access to administrative user information and privileges.
Executive Summary:
A critical authentication vulnerability in EspoCRM 5.8.5 allows unauthenticated attackers to hijack user accounts and escalate privileges to administrative levels.
Vulnerability Details
CVE-ID: CVE-2020-37094
Affected Software: EspoCRM
Affected Versions: 5.8.5
Vulnerability: This vulnerability involves the improper handling of Basic Authorization and Espo-Authorization tokens. Attackers can decode and modify these headers to bypass authentication mechanisms and impersonate other users, including administrators.
Business Impact
The ability for an attacker to gain unauthorized administrative access poses a severe threat to data integrity, confidentiality, and system availability. Given the CVSS score of 9.8, this vulnerability could lead to total system compromise, theft of sensitive customer data, and unauthorized modification of business records.
Remediation Plan
Immediate Action: Upgrade to the latest available version of EspoCRM provided by the vendor to remediate the header manipulation flaw.
Proactive Monitoring: Review application access logs for anomalous authorization header patterns or unauthorized access attempts to administrative endpoints.
Compensating Controls: Deploy a Web Application Firewall (WAF) with rules configured to inspect and validate authorization headers for malformed or suspicious token strings.
Exploitation Status
Public Exploit Available: Unknown
Analyst Notes: As of Feb 3, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
This vulnerability represents a critical security risk that requires immediate attention. Organizations utilizing EspoCRM 5.8.5 should prioritize patching to the latest version to prevent unauthorized administrative access and potential data exfiltration.
Update Infor Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Netis E1+ 1
Netis E1+ 1
---METADATA---
VENDOR: Netis
PRODUCT: E1+ Range Extender
AFFECTED_VERSIONS: See vendor advisory
---END_METADATA---
Description Summary:
A vulnerability in the Netis E1+ 1 range extender could allow for unauthorized device manipulation. This flaw is distinct from other reported issues for the same product line and affects core firmware components.
Executive Summary:
A high-severity vulnerability in the Netis E1+ 1 device could permit an attacker to take control of the networking hardware, leading to a compromise of the local network environment.
Vulnerability Details
CVE-ID: CVE-2020-37093
Affected Software: Netis E1+
Affected Versions: See vendor advisory
Vulnerability: This vulnerability affects the Netis E1+ 1. Similar to other flaws in this product line, it likely stems from improper input validation or insecure default configurations in the firmware, which could be exploited by an unauthenticated attacker with network access to the device.
Business Impact
The impact of a compromised network extender includes the potential for man-in-the-middle (MitM) attacks, data theft, and the loss of network availability. A CVSS score of 7.5 highlights the High severity of this risk, as it directly undermines the security perimeter of the organization's physical network infrastructure.
Remediation Plan
Immediate Action: Immediately update the Netis E1+ firmware to the most recent version provided by the manufacturer.
Proactive Monitoring: Perform regular audits of network device logs and monitor for unexpected firmware modifications or configuration changes.
Compensating Controls: Isolate IoT and network infrastructure devices on a separate VLAN to limit the potential impact of a device compromise on the primary corporate network.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. This late-disclosed vulnerability (originally from 2020) emphasizes the ongoing risk posed by legacy networking hardware that may not be regularly audited for security.
Analyst Recommendation
It is critical to apply the necessary firmware updates immediately. Given the High CVSS score, any delay in remediation could leave the network vulnerable to attackers seeking to exploit unpatched infrastructure for data exfiltration or as a platform for further attacks.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Netis E1+ version 1
Netis E1+ version 1
---METADATA---
VENDOR: Netis
PRODUCT: E1+ Range Extender
AFFECTED_VERSIONS: Version 1
---END_METADATA---
Description Summary:
A security vulnerability has been identified in the Netis E1+ version 1 range extender. This flaw resides in the device's firmware and could allow for unauthorized access to the network device.
Executive Summary:
The Netis E1+ range extender (Version 1) contains a high-severity vulnerability that could allow an attacker to compromise the device and gain unauthorized access to the local network.
Vulnerability Details
CVE-ID: CVE-2020-37092
Affected Software: Netis E1+
Affected Versions: Version 1
Vulnerability: This vulnerability affects the firmware of the Netis E1+ version 1. It likely involves a flaw in the web management interface or the device's handling of network requests, potentially allowing an unauthenticated attacker to gain administrative control over the range extender.
Business Impact
A compromised range extender can serve as a persistent foothold for an attacker within a network, allowing for traffic interception and lateral movement. With a CVSS score of 7.5, this High severity vulnerability poses a significant risk to network privacy and the security of all devices connected through the extender.
Remediation Plan
Immediate Action: Apply the latest firmware updates from Netis for the E1+ device. If the device has reached end-of-life (EOL), it should be replaced with a currently supported model.
Proactive Monitoring: Check for unauthorized changes to the device's configuration, such as modified DNS settings or unknown administrative accounts.
Compensating Controls: Disable remote management of the device from the WAN side and ensure the local management interface is protected by a strong, unique password.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. However, networking equipment is frequently targeted by botnets and state-sponsored actors for long-term surveillance and network disruption.
Analyst Recommendation
The High CVSS score and the potential for network-wide impact make this a critical issue. Administrators must ensure that all Netis E1+ devices are updated or decommissioned if patches are unavailable to prevent them from being used as entry points for attackers.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
School ERP Pro 1.0 contains a file upload vulnerability that allows students to upload arbitrary PHP files to the messaging system. Attackers can uplo...
School ERP Pro 1.0 contains a file upload vulnerability that allows students to upload arbitrary PHP files to the messaging system. Attackers can upload malicious PHP scripts through the message attachment feature, enabling remote code execution on the server.
---METADATA---
VENDOR: School ERP Pro
PRODUCT: School ERP Pro
AFFECTED_VERSIONS: 1.0
CONFIDENCE: high
MISSING: patch
---END_METADATA---
Description Summary:
School ERP Pro 1.0 contains an unrestricted file upload vulnerability in its messaging system, allowing attackers to execute arbitrary PHP code on the server.
Executive Summary:
An arbitrary file upload vulnerability in School ERP Pro 1.0 enables remote attackers to achieve remote code execution (RCE) by uploading malicious PHP scripts.
Vulnerability Details
CVE-ID: CVE-2020-37090
Affected Software: School ERP Pro
Affected Versions: 1.0
Vulnerability: The application fails to properly sanitize or restrict file types uploaded via the messaging system's attachment feature. This allows an attacker to upload executable PHP files, which can then be triggered to execute arbitrary code within the server environment.
Business Impact
With a CVSS score of 9.8, this flaw allows for complete server compromise. Successful exploitation grants attackers the ability to execute commands with the privileges of the web server, leading to potential ransomware deployment, data theft, and full control over the application's underlying infrastructure.
Remediation Plan
Immediate Action: Update to the latest version of School ERP Pro to ensure that file upload validation mechanisms are correctly implemented.
Proactive Monitoring: Monitor server directories where uploads are stored for suspicious files or unexpected script execution attempts.
Compensating Controls: Implement strict server-side file type validation and restrict the execution of scripts within the upload directory via web server configuration settings (e.g., .htaccess or Nginx location blocks).
Exploitation Status
Public Exploit Available: Unknown
Analyst Notes: As of Feb 3, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Remote Code Execution (RCE) vulnerabilities are of the highest severity. Administrators must update School ERP Pro immediately and audit the system for any signs of existing unauthorized file uploads or persistent backdoors.
Update HP files to to the latest version. Monitor for exploitation attempts and review access logs.
School ERP Pro 1
School ERP Pro 1
---METADATA---
VENDOR: School ERP Pro
PRODUCT: School ERP Pro
AFFECTED_VERSIONS: 1; See vendor advisory for affected versions
---END_METADATA---
Description Summary:
A high-severity vulnerability in School ERP Pro 1 could allow unauthorized access to sensitive educational and personal data.
Executive Summary:
School ERP Pro version 1 is affected by a high-severity vulnerability that poses a significant risk to the confidentiality of student and staff records.
Vulnerability Details
CVE-ID: CVE-2020-37089
Affected Software: School ERP Pro
Affected Versions: 1
Vulnerability: This vulnerability affects the School ERP Pro 1 platform. Given the CVSS score of 8.2, it likely involves a flaw that allows an attacker to bypass authentication or escalate privileges to access sensitive database records containing personal identifiable information (PII).
Business Impact
The impact of this vulnerability is severe, potentially leading to the exposure of student records, financial data, and staff information. Such a breach could result in legal liabilities, regulatory fines (e.g., GDPR or FERPA), and irreparable reputational damage to the educational institution.
Remediation Plan
Immediate Action: Apply the latest security patches provided by the vendor for School ERP Pro 1 immediately.
Proactive Monitoring: Review database access logs for any unauthorized queries or bulk exports of student and personnel data.
Compensating Controls: Ensure the ERP system is not directly exposed to the public internet and require Multi-Factor Authentication (MFA) for all user accounts.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. This is a late-disclosure vulnerability, meaning legacy systems are at heightened risk if they have not been maintained.
Analyst Recommendation
Educational institutions using School ERP Pro 1 must act urgently to secure their systems. Applying the vendor's patch is the only definitive way to protect sensitive data from unauthorized access and potential exploitation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
School ERP Pro 1
School ERP Pro 1
---METADATA---
VENDOR: School ERP Pro
PRODUCT: School ERP Pro 1
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
School ERP Pro 1 is vulnerable to a high-severity security flaw that could lead to unauthorized access to sensitive educational and administrative data.
Executive Summary:
School ERP Pro 1 is affected by a high-severity vulnerability that risks the exposure of sensitive student and administrative information.
Vulnerability Details
CVE-ID: CVE-2020-37088
Affected Software: School ERP Pro School ERP Pro 1
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability in School ERP Pro 1 represents a significant security gap in the application’s logic or data handling. With a CVSS score of 7.5, it likely permits an attacker—potentially unauthenticated depending on the deployment—to access or manipulate sensitive records within the ERP system.
Business Impact
The impact of a successful exploit is severe, involving the potential leak of Personally Identifiable Information (PII) of students and staff. Such a breach could result in regulatory non-compliance, legal liabilities, and irreparable damage to the institution's reputation. The 7.5 CVSS score highlights a high risk to data confidentiality and integrity.
Remediation Plan
Immediate Action: Apply all available security patches for School ERP Pro 1 or migrate to a more recent, supported version of the software.
Proactive Monitoring: Audit database access logs for unusual queries and monitor for bulk data exports that could indicate an active breach.
Compensating Controls: Deploy a Web Application Firewall (WAF) to filter malicious traffic and restrict access to the ERP interface to internal networks or via a secure VPN.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation of this vulnerability. This is a late disclosure, but the sensitivity of the data managed by ERP systems makes this a high-priority fix for educational institutions.
Analyst Recommendation
The protection of student data is paramount, and the 7.5 CVSS score indicates a serious flaw that must be addressed. Administrators should apply vendor patches immediately and ensure that the application is not exposed directly to the public internet without robust security layers.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
VirtualTablet Server 3
VirtualTablet Server 3
---METADATA---
VENDOR: VirtualTablet
PRODUCT: VirtualTablet Server
AFFECTED_VERSIONS: Version 3
---END_METADATA---
Description Summary:
VirtualTablet Server 3 contains a security vulnerability that could be exploited to perform unauthorized actions on the host system. This affects the server component responsible for receiving input from remote devices.
Executive Summary:
A high-severity vulnerability in VirtualTablet Server 3 could allow an attacker to compromise the host system by exploiting the communication channel between the server and remote tablet devices.
Vulnerability Details
CVE-ID: CVE-2020-37085
Affected Software: VirtualTablet VirtualTablet Server
Affected Versions: Version 3
Vulnerability: This vulnerability affects the VirtualTablet Server 3 application. Given its function as a network-based input server, the flaw likely involves improper validation of data received from unauthenticated remote clients, potentially leading to unauthorized command execution or service disruption.
Business Impact
A successful exploit could allow an attacker to gain control over the host machine or disrupt the input services required for creative work. The CVSS score of 7.5 reflects a High severity risk, particularly in environments where these servers are exposed to the network, potentially leading to broader lateral movement within the organization.
Remediation Plan
Immediate Action: Update VirtualTablet Server to the latest version immediately. If the software is no longer supported, consider migrating to a secure alternative.
Proactive Monitoring: Monitor for unexpected network traffic on the ports used by VirtualTablet Server and check for unauthorized processes running with the server's privileges.
Compensating Controls: Use a host-based firewall to restrict access to the VirtualTablet Server port to only known, authorized client IP addresses.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. This is a late disclosure for a 2020 vulnerability, which may indicate that researchers have recently found a way to weaponize the flaw in legacy environments.
Analyst Recommendation
Organizations using VirtualTablet Server 3 should treat this as a high-priority patch. The potential for unauthorized network-based access to a host system via an input driver is a significant security risk that must be addressed through immediate updates and network isolation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
PHP AddressBook 9
PHP AddressBook 9
---METADATA---
VENDOR: PHP AddressBook
PRODUCT: PHP AddressBook
AFFECTED_VERSIONS: See vendor advisory for affected versions
---END_METADATA---
Description Summary:
PHP AddressBook 9 is vulnerable to a high-severity security flaw that could allow for unauthorized data access or system manipulation.
Executive Summary:
PHP AddressBook 9 contains a high-severity vulnerability that could lead to the exposure of sensitive contact information and compromise of the application server.
Vulnerability Details
CVE-ID: CVE-2020-37083
Affected Software: PHP AddressBook PHP AddressBook
Affected Versions: See vendor advisory for affected versions
Vulnerability: This vulnerability affects PHP AddressBook version 9. With a CVSS score of 8.2, it likely involves a critical flaw such as SQL injection or a broken authentication mechanism that allows an unauthenticated attacker to access or modify the address book database.
Business Impact
The compromise of an address book application leads directly to the loss of Confidentiality, Integrity, and Availability (CIA) for contact data. This information is often used for phishing or social engineering attacks against employees. The high CVSS score reflects the significant risk of data exfiltration and potential administrative takeover.
Remediation Plan
Immediate Action: Immediately update PHP AddressBook to the latest secure version or disable the application if it is no longer required for business operations.
Proactive Monitoring: Review database logs for unusual query patterns and monitor for unauthorized administrative logins.
Compensating Controls: Place the application behind a VPN or use strict IP-based access controls to limit exposure to the public internet.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. This late disclosure highlights a long-standing risk that should be remediated before public exploit code is developed.
Analyst Recommendation
The CVSS score of 8.2 indicates a high level of urgency. Security administrators must prioritize patching this application or migrating to a more modern, secure contact management solution to prevent data loss.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
An unauthenticated file access vulnerability in webERP 4.15.1 allows remote attackers to download database backup files directly from the web director...
An unauthenticated file access vulnerability in webERP 4.15.1 allows remote attackers to download database backup files directly from the web directory.
---METADATA---
VENDOR: webERP
PRODUCT: webERP
AFFECTED_VERSIONS: 4.15.1
---END_METADATA---
Description Summary:
An unauthenticated file access vulnerability in webERP 4.15.1 allows remote attackers to download database backup files directly from the web directory.
Executive Summary:
webERP 4.15.1 is vulnerable to a critical data exposure flaw that allows unauthenticated attackers to download entire database backups, compromising all corporate financial and operational data.
Vulnerability Details
CVE-ID: CVE-2020-37082
Affected Software: webERP
Affected Versions: 4.15.1
Vulnerability: The application stores database backups in a predictable web-accessible directory (companies/weberp/) without proper access controls. An unauthenticated attacker can download these files by guessing or discovering the timestamp-based filename.
Business Impact
With a CVSS score of 9.8, this vulnerability represents a total loss of confidentiality. Since webERP manages sensitive business data, including financials, customer lists, and inventory, the exposure of a full SQL backup allows an attacker to replicate the entire business database offline for malicious use.
Remediation Plan
Immediate Action: Update webERP to the latest version and move all backup directories outside of the web server's document root immediately.
Proactive Monitoring: Check web server access logs for requests to the companies/weberp/ directory and any files ending in .sql.gz.
Compensating Controls: Use .htaccess or server configuration files to deny all web access to the backup directories and implement strong authentication for any directory containing sensitive exports.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 3, 2026, there is no public information indicating active exploitation. However, the predictable nature of the backup filenames makes this a trivial vulnerability to exploit once the directory structure is known.
Analyst Recommendation
Immediate isolation of backup files is required. Administrators must ensure that no sensitive data, especially database backups, is ever stored in a location reachable by a web browser without robust authentication and authorization checks.
Update webERP Multiple Products to the latest version. Check vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
Fishing Reservation System 7
Fishing Reservation System 7
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
webTareas 2.0.p8 contains a file deletion vulnerability in the print_layout.php administration component that allows authenticated attackers to delete...
webTareas 2.0.p8 contains a file deletion vulnerability in the print_layout.php administration component that allows authenticated attackers to delete arbitrary files. Attackers can exploit the vulnerability by manipulating the 'atttmp1' parameter to specify and delete files on the server through an unauthenticated file deletion mechanism.
---METADATA---
VENDOR: webTareas
PRODUCT: webTareas
AFFECTED_VERSIONS: 2.0.p8
CONFIDENCE: high
MISSING: patch
---END_METADATA---
Description Summary:
webTareas 2.0.p8 contains a file deletion vulnerability in the print_layout.php component, allowing attackers to delete arbitrary files on the server.
Executive Summary:
A file deletion vulnerability in the webTareas 2.0.p8 administration component allows attackers to delete critical system files, potentially leading to denial-of-service or system instability.
Vulnerability Details
CVE-ID: CVE-2020-37080
Affected Software: webTareas
Affected Versions: 2.0.p8
Vulnerability: The 'print_layout.php' component fails to properly validate the 'atttmp1' parameter, allowing an attacker to traverse directories and delete arbitrary files. While the description notes the requirement for authentication, it also highlights an unauthenticated file deletion mechanism, indicating a severe flaw in access control.
Business Impact
The ability to delete arbitrary files on the server can result in a complete Denial of Service (DoS) by removing critical configuration or system files. With a CVSS score of 9.8, the potential for catastrophic system failure and data loss is extreme, necessitating urgent remediation.
Remediation Plan
Immediate Action: Update webTareas to the latest version to patch the file deletion logic in the administration component.
Proactive Monitoring: Monitor filesystem integrity and log file deletion events, specifically looking for unauthorized access to the 'print_layout.php' component.
Compensating Controls: Restrict access to the administration interface to trusted IP addresses and ensure the application runs with the minimum necessary filesystem permissions to limit the impact of potential deletions.
Exploitation Status
Public Exploit Available: Unknown
Analyst Notes: As of Feb 3, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
This vulnerability poses a severe risk to system stability. Administrators should apply the vendor-provided patch immediately and review access control configurations to ensure that only authorized personnel can interact with administrative components.
Update HP administration component to the latest version. Monitor for exploitation attempts and review access logs.
i-doit Open Source CMDB 1
i-doit Open Source CMDB 1
---METADATA---
VENDOR: i-doit
PRODUCT: Open Source CMDB
AFFECTED_VERSIONS: 1.x; See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A high-severity vulnerability in i-doit Open Source CMDB 1 allows for potential unauthorized access or manipulation of configuration management data within the application environment.
Executive Summary:
i-doit Open Source CMDB version 1 contains a high-severity vulnerability that could allow an attacker to compromise sensitive IT infrastructure data.
Vulnerability Details
CVE-ID: CVE-2020-37078
Affected Software: i-doit Open Source CMDB
Affected Versions: See vendor advisory for affected versions
Vulnerability: This vulnerability involves a flaw in the i-doit Open Source CMDB 1 platform. While the description is concise, the CVSS score indicates a significant risk, likely involving an unauthenticated or low-privileged attacker gaining unauthorized access to the configuration management database.
Business Impact
A successful exploit could lead to the total exposure of an organization's IT asset landscape, including server configurations, network topologies, and sensitive credentials. Given the CVSS score of 8.8, this vulnerability poses a high risk to data confidentiality and integrity, potentially enabling further lateral movement within the corporate network.
Remediation Plan
Immediate Action: Administrators should immediately upgrade i-doit instances to the latest patched version provided by the vendor to mitigate unauthorized access risks.
Proactive Monitoring: Security teams should review application access logs for unusual administrative activity or bulk data exports originating from unexpected IP addresses.
Compensating Controls: Deploy a Web Application Firewall (WAF) with rules configured to block common exploit patterns targeting CMDB software and restrict access to the management interface via VPN or IP whitelisting.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the high CVSS score and the late disclosure nature of this entry, the potential for exploitation remains a significant concern for legacy installations.
Analyst Recommendation
The high severity of this flaw necessitates immediate attention from IT infrastructure teams. We recommend applying the vendor's security updates without delay to prevent the exposure of critical asset management data.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Victor CMS version 1
Victor CMS version 1
---METADATA---
VENDOR: Victor CMS
PRODUCT: Victor CMS
AFFECTED_VERSIONS: Version 1; See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
Victor CMS version 1 is susceptible to a high-severity security flaw that could allow an attacker to gain unauthorized control over the application.
Executive Summary:
Victor CMS version 1 is vulnerable to a high-risk exploit that could lead to full system compromise and unauthorized data access.
Vulnerability Details
CVE-ID: CVE-2020-37076
Affected Software: Victor CMS Victor CMS
Affected Versions: Version 1
Vulnerability: This vulnerability affects the initial version of Victor CMS. While the specific function is not detailed, the High severity CVSS score suggests an unauthenticated attacker could potentially exploit the application’s request handling to perform unauthorized actions or access restricted data.
Business Impact
Successful exploitation could result in the total loss of confidentiality and integrity for the hosted website. This includes the potential for site defacement, administrative account takeover, and the exposure of sensitive user databases. The CVSS score of 8.2 justifies a high-priority response from IT security teams.
Remediation Plan
Immediate Action: Apply all available security updates for Victor CMS version 1 or migrate to a more modern, secured content management framework.
Proactive Monitoring: Monitor for unexpected changes to core application files and audit user account creation logs for unauthorized administrative entries.
Compensating Controls: Ensure the web server is running with least-privilege permissions and implement robust input filtering via a WAF.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation of this vulnerability. As a late-disclosed 2020 vulnerability, users should assume that scanning for this flaw may increase following the formal advisory.
Analyst Recommendation
We recommend an immediate assessment of all Victor CMS installations. Given the High severity rating, the primary remediation—updating the software—should be completed during the next available maintenance window to ensure the security of the environment.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
LanSend 3.2 contains a buffer overflow in its file import functionality, allowing remote attackers to execute arbitrary code through a crafted payload...
LanSend 3.2 contains a buffer overflow in its file import functionality, allowing remote attackers to execute arbitrary code through a crafted payload file that triggers an SEH overwrite.
---METADATA---
VENDOR: LanSend
PRODUCT: LanSend
AFFECTED_VERSIONS: 3.2
---END_METADATA---
Description Summary:
LanSend 3.2 contains a buffer overflow in its file import functionality, allowing remote attackers to execute arbitrary code through a crafted payload file that triggers an SEH overwrite.
Executive Summary:
LanSend 3.2 is susceptible to a critical buffer overflow vulnerability that enables Remote Code Execution (RCE) when a malicious file is processed during a computer import operation.
Vulnerability Details
CVE-ID: CVE-2020-37075
Affected Software: LanSend
Affected Versions: 3.2
Vulnerability: The vulnerability is located in the "Add Computers Wizard" file import feature. An attacker can craft a malicious file that, when imported by a user, overwrites the Structured Exception Handler (SEH) and executes arbitrary shellcode on the system.
Business Impact
The CVSS score of 9.8 indicates a critical risk level. Successful exploitation allows an attacker to take complete control of the local system. In a corporate environment, this could lead to the compromise of administrative accounts and subsequent lateral movement across the network, as LanSend is typically used for network administration.
Remediation Plan
Immediate Action: Update LanSend to the latest version immediately. Discontinue the use of the file import feature until the software has been patched.
Proactive Monitoring: Review endpoint security logs for any suspicious activity triggered by the LanSend process, particularly during administrative tasks.
Compensating Controls: Utilize application whitelisting and ensure that administrative tools are run in a restricted environment with limited privileges whenever possible.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 3, 2026, there is no public information indicating active exploitation. Like CVE-2020-37074, this is a client-side vulnerability that relies on user interaction with a malicious file.
Analyst Recommendation
The most effective mitigation is applying the vendor's patch. Organizations should also enforce strict policies regarding the source of administrative data files and consider using sandboxed environments for performing bulk import operations to contain potential exploits.
Update the Add Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Remote Desktop Audit 2.3.0.157 is vulnerable to a buffer overflow during the file import process, allowing attackers to execute arbitrary code via a m...
Remote Desktop Audit 2.3.0.157 is vulnerable to a buffer overflow during the file import process, allowing attackers to execute arbitrary code via a malicious payload file.
---METADATA---
VENDOR: Remote Desktop Software
PRODUCT: Remote Desktop Audit
AFFECTED_VERSIONS: 2.3.0.157
---END_METADATA---
Description Summary:
Remote Desktop Audit 2.3.0.157 is vulnerable to a buffer overflow during the file import process, allowing attackers to execute arbitrary code via a malicious payload file.
Executive Summary:
A critical buffer overflow in Remote Desktop Audit allows attackers to achieve Remote Code Execution (RCE) by tricking a user into importing a malicious computer list file.
Vulnerability Details
CVE-ID: CVE-2020-37074
Affected Software: Remote Desktop Audit
Affected Versions: 2.3.0.157
Vulnerability: The "Add Computers Wizard" fails to properly handle large or malformed inputs when importing files. By crafting a malicious file, an attacker can trigger a buffer overflow and bypass Structured Exception Handling (SEH) to execute arbitrary shellcode.
Business Impact
With a CVSS score of 9.8, this flaw represents a significant threat to administrative workstations. An attacker can gain full control over the machine used to manage remote desktop connections, potentially compromising the credentials and access to the entire server fleet managed through the software.
Remediation Plan
Immediate Action: Update Remote Desktop Audit to the latest available version and refrain from importing computer lists from untrusted or unknown sources.
Proactive Monitoring: Monitor administrative workstations for unusual process spawning (e.g., cmd.exe or powershell.exe) originating from the Remote Desktop Audit application.
Compensating Controls: Enable advanced exploit protection features like Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) at the OS level to mitigate buffer overflow impacts.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 3, 2026, there is no public information indicating active exploitation. This vulnerability requires a user to perform an action (importing a file), which categorizes it as a client-side attack vector.
Analyst Recommendation
Apply the software update immediately to resolve the underlying memory handling issue. Furthermore, security awareness training should emphasize the danger of importing configuration files from untrusted sources, as this is a common vector for targeting IT administrators.
Update Remote Desktop Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Victor CMS 1
Victor CMS 1
---METADATA---
VENDOR: Victor
PRODUCT: Victor CMS
AFFECTED_VERSIONS: See vendor advisory for affected versions
---END_METADATA---
Description Summary:
Victor CMS 1 is affected by a critical vulnerability that could allow for unauthorized file manipulation or system takeover.
Executive Summary:
Victor CMS 1 contains a critical vulnerability that could allow an unauthenticated attacker to compromise the integrity of the server and its hosted content.
Vulnerability Details
CVE-ID: CVE-2020-37073
Affected Software: Victor Victor CMS
Affected Versions: See vendor advisory for affected versions
Vulnerability: This critical vulnerability affects Victor CMS version 1. The CVSS score of 8.8 indicates a high-impact flaw, likely involving the ability to upload or modify files on the server without proper authentication or authorization.
Business Impact
A successful exploit could lead to the complete takeover of the CMS, allowing an attacker to steal data, host malicious content, or destroy the site's database. The 8.8 CVSS score highlights the extreme risk to the business, as it suggests the vulnerability is easily exploitable and results in total system compromise.
Remediation Plan
Immediate Action: Administrators must immediately apply any available security updates or migrate away from Victor CMS 1 to a more secure and actively maintained platform.
Proactive Monitoring: Monitor for unauthorized file changes and audit all administrative account activity for signs of compromise.
Compensating Controls: Use a WAF to block malicious traffic and implement file integrity monitoring (FIM) to alert on any unauthorized changes to the web root.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation. This late disclosure suggests that organizations may have been at risk for years, making immediate remediation vital.
Analyst Recommendation
This vulnerability poses a critical threat to your web infrastructure. You must apply the primary remediation steps immediately to prevent a full system compromise and protect the organization's digital assets.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Victor CMS 1
Victor CMS 1
---METADATA---
VENDOR: Victor
PRODUCT: Victor CMS
AFFECTED_VERSIONS: See vendor advisory for affected versions
---END_METADATA---
Description Summary:
Victor CMS 1 is vulnerable to a security flaw that could allow for unauthorized content manipulation or system access.
Executive Summary:
Victor CMS 1 contains a high-severity vulnerability that could allow an attacker to gain unauthorized access to the content management system and its hosted data.
Vulnerability Details
CVE-ID: CVE-2020-37072
Affected Software: Victor Victor CMS
Affected Versions: See vendor advisory for affected versions
Vulnerability: This vulnerability affects Victor CMS version 1. The CVSS score of 7.2 suggests a high-impact flaw, likely involving an unauthenticated attacker's ability to bypass access controls or execute unauthorized code within the CMS environment.
Business Impact
A successful exploit could result in the total defacement of the website, the theft of user data, or the use of the server as a pivot point for further attacks. This poses a significant risk to the organization's public reputation and the integrity of the information presented on its web platforms.
Remediation Plan
Immediate Action: Organizations using Victor CMS 1 should immediately apply any available security patches or migrate to a supported, secure version of the software.
Proactive Monitoring: Monitor web server logs for suspicious POST requests or attempts to access administrative directories (e.g., /admin).
Compensating Controls: Implement a Web Application Firewall (WAF) to block common CMS attack patterns, such as SQL injection or cross-site scripting, which may be leveraged here.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 5, 2026, there is no public information indicating active exploitation of this vulnerability. This is a late disclosure, meaning the vulnerability has existed for some time, increasing the likelihood that automated scanners may already be looking for it.
Analyst Recommendation
The immediate application of vendor-provided patches is essential. Given the high severity and the potential for website compromise, security teams should prioritize this update to protect their external-facing web infrastructure.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
CraftCMS 3 vCard Plugin 1.0.0 contains a deserialization vulnerability that allows unauthenticated attackers to execute arbitrary PHP code through a c...
CraftCMS 3 vCard Plugin 1.0.0 contains a deserialization vulnerability that allows unauthenticated attackers to execute arbitrary PHP code through a crafted payload. Attackers can generate a malicious serialized payload that triggers remote code execution by exploiting the plugin's vCard download functionality with a specially crafted request.
---METADATA---
VENDOR: CraftCMS
PRODUCT: vCard Plugin
AFFECTED_VERSIONS: 1.0.0
CONFIDENCE: high
MISSING: patch, exploit_status
---END_METADATA---
Description Summary:
The vCard Plugin for CraftCMS 3 is vulnerable to an unauthenticated PHP object deserialization flaw, enabling remote code execution via malicious payloads.
Executive Summary:
A critical deserialization vulnerability in the CraftCMS vCard Plugin allows unauthenticated remote attackers to execute arbitrary code on the host system.
Vulnerability Details
CVE-ID: CVE-2020-37071
Affected Software: CraftCMS vCard Plugin
Affected Versions: 1.0.0
Vulnerability: The plugin fails to properly validate serialized data processed during vCard downloads. An unauthenticated attacker can supply a crafted serialized payload to trigger remote code execution within the application context.
Business Impact
Successful exploitation of this vulnerability grants an attacker full control over the affected web server, leading to potential data exfiltration, system compromise, and unauthorized access to internal resources. Given the CVSS score of 9.8, this represents a critical risk that could result in total service disruption and significant reputational damage.
Remediation Plan
Immediate Action: Identify and disable the vCard plugin immediately if an update is not yet available from the vendor.
Proactive Monitoring: Inspect web server access logs for unusual POST requests or patterns containing serialized PHP objects directed at vCard download endpoints.
Compensating Controls: Deploy a Web Application Firewall (WAF) with rules configured to detect and block malicious serialized PHP payloads in incoming HTTP requests.
Exploitation Status
Public Exploit Available: Not specified
Analyst Notes: As of Feb 3, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
The severity of this vulnerability necessitates immediate attention. Organizations utilizing the CraftCMS vCard Plugin should verify their version and apply vendor-provided patches as soon as they are released to prevent potential remote code execution.
Update HP code through to the latest version. Monitor for exploitation attempts and review access logs.
A buffer overflow vulnerability in CloudMe 1.11.2 allows unauthenticated remote attackers to execute arbitrary code by sending crafted packets to port...
A buffer overflow vulnerability in CloudMe 1.11.2 allows unauthenticated remote attackers to execute arbitrary code by sending crafted packets to port 8888.
---METADATA---
VENDOR: CloudMe
PRODUCT: CloudMe
AFFECTED_VERSIONS: 1.11.2
---END_METADATA---
Description Summary:
A buffer overflow vulnerability in CloudMe 1.11.2 allows unauthenticated remote attackers to execute arbitrary code by sending crafted packets to port 8888.
Executive Summary:
CloudMe 1.11.2 contains a critical buffer overflow vulnerability that allows unauthenticated remote code execution, posing a severe risk of complete system takeover.
Vulnerability Details
CVE-ID: CVE-2020-37070
Affected Software: CloudMe
Affected Versions: 1.11.2
Vulnerability: A buffer overflow exists in the way the CloudMe service processes incoming network packets on port 8888. An unauthenticated attacker can send a specially crafted payload to overflow the buffer and gain control of the execution flow.
Business Impact
The CVSS score of 9.8 highlights the extreme risk of Remote Code Execution (RCE). Successful exploitation allows an attacker to run arbitrary commands on the host system with the privileges of the CloudMe service, leading to data theft, ransomware deployment, or use of the system as a pivot point for further network attacks.
Remediation Plan
Immediate Action: Update CloudMe to the latest version that includes the fix for this buffer overflow and close port 8888 to the public internet.
Proactive Monitoring: Monitor network traffic for unusual or oversized packets directed at port 8888 and audit system processes for unauthorized activity.
Compensating Controls: Implement an Intrusion Prevention System (IPS) to detect and block buffer overflow signatures and use host-based security tools to monitor for suspicious execution patterns.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 3, 2026, there is no public information indicating active exploitation. However, buffer overflows in network-facing services are classic targets for high-impact exploits.
Analyst Recommendation
The primary remediation is to apply the vendor's security patch immediately. If an update is not possible, the CloudMe service should be disabled or strictly firewalled to prevent any untrusted network communication with the vulnerable port.
Update CloudMe Multiple Products to the latest version. Check vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the NLST command that allows attackers to overwrite system registers. Attac...
Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the NLST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized code.
---METADATA---
VENDOR: Konica Minolta
PRODUCT: FTP Utility
AFFECTED_VERSIONS: 1.0
CONFIDENCE: high
MISSING: patch, exploit_status
---END_METADATA---
Description Summary:
Konica Minolta FTP Utility 1.0 is susceptible to a buffer overflow in the NLST command, allowing attackers to overwrite registers and potentially execute arbitrary code.
Executive Summary:
A critical buffer overflow vulnerability in Konica Minolta FTP Utility allows unauthenticated attackers to crash the service or achieve remote code execution.
Vulnerability Details
CVE-ID: CVE-2020-37069
Affected Software: Konica Minolta FTP Utility
Affected Versions: 1.0
Vulnerability: The application fails to perform adequate bounds checking on input provided to the NLST command. An unauthenticated attacker can send an oversized string to trigger a buffer overflow, enabling register manipulation and potential code execution.
Business Impact
This vulnerability poses a severe risk to the availability and integrity of the FTP server. A CVSS score of 9.8 underscores the potential for full system compromise, which could allow an attacker to pivot into the internal network or access sensitive data stored on the utility.
Remediation Plan
Immediate Action: Update the Konica Minolta FTP Utility to the latest patched version provided by the manufacturer.
Proactive Monitoring: Monitor server logs for unexpected service crashes or repeated connection attempts containing abnormally long character strings.
Compensating Controls: Restrict network access to the FTP service to authorized IP addresses only via firewall rules to limit the attack surface.
Exploitation Status
Public Exploit Available: Not specified
Analyst Notes: As of Feb 3, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the critical nature of this buffer overflow, immediate remediation is required. Administrators should prioritize updating or isolating the affected FTP service to mitigate the risk of unauthorized system access.
Update Konica Minolta FTP Utility to the latest version. Monitor for exploitation attempts and review access logs.
Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the LIST command that allows attackers to overwrite system registers. Attac...
Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the LIST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized code.
---METADATA---
VENDOR: Konica Minolta
PRODUCT: FTP Utility
AFFECTED_VERSIONS: 1.0
CONFIDENCE: high
MISSING: patch, exploit_status
---END_METADATA---
Description Summary:
Konica Minolta FTP Utility 1.0 contains a buffer overflow in the LIST command that permits register overwriting and potential remote code execution.
Executive Summary:
A critical buffer overflow in the LIST command of Konica Minolta FTP Utility enables unauthenticated attackers to compromise system integrity.
Vulnerability Details
CVE-ID: CVE-2020-37068
Affected Software: Konica Minolta FTP Utility
Affected Versions: 1.0
Vulnerability: The LIST command lacks sufficient input validation, allowing an attacker to submit an oversized buffer. This overflow can overwrite system registers, providing a vector for arbitrary code execution.
Business Impact
A CVSS score of 9.8 highlights the critical risk of this vulnerability. Successful exploitation could lead to complete system takeover, unauthorized access to data transmitted via the FTP utility, and persistent disruption of business operations.
Remediation Plan
Immediate Action: Apply the latest security update released by Konica Minolta for the FTP Utility.
Proactive Monitoring: Review system and application logs for signs of memory corruption or service instability associated with the LIST command.
Compensating Controls: Implement network-level segmentation to ensure the FTP utility is not exposed to untrusted networks or the public internet.
Exploitation Status
Public Exploit Available: Not specified
Analyst Notes: As of Feb 3, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
This vulnerability represents a significant security risk. Administrators must ensure the application is updated immediately to the most recent version to mitigate the threat of remote exploitation and ensure system stability.
Update Konica Minolta FTP Utility to the latest version. Monitor for exploitation attempts and review access logs.
---METADATA---
VENDOR: AMSS++
PRODUCT: AMSS++
AFFECTED_VERSIONS: Version 4; See vendor advisory for additional details
---END_METADATA---
Description Summary:
AMSS++ version 4 is affected by a high-severity vulnerability. This late-disclosure entry indicates a significant security flaw within the application's core logic.
Executive Summary:
AMSS++ version 4 contains a high-severity security vulnerability that poses a significant risk to the integrity and availability of the affected system.
Vulnerability Details
CVE-ID: CVE-2020-37135
Affected Software: AMSS++
Affected Versions: AMSS++ 4
Vulnerability: This vulnerability affects AMSS++ version 4 and is characterized as a high-severity security flaw. Based on the late disclosure and CVSS score, the vulnerability likely permits an attacker to bypass security controls or execute unauthorized actions within the application environment.
Business Impact
The impact of this vulnerability is substantial, as evidenced by the CVSS score of 7.5. Successful exploitation could lead to unauthorized data access, system instability, or the compromise of administrative functions. For organizations utilizing this legacy software, the risk includes potential data loss and non-compliance with security standards due to the age and nature of the software.
Remediation Plan
Immediate Action: Users should immediately upgrade to a supported version of the software or apply specific vendor-provided patches for version 4.
Proactive Monitoring: Review system access logs for any historical signs of unauthorized logins or unusual administrative changes that may have occurred prior to this disclosure.
Compensating Controls: If patching is not immediately feasible, isolate the AMSS++ server from the public internet and restrict access to trusted internal IP addresses only.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 8, 2026, there is no public information indicating active exploitation of this vulnerability. However, this is a late disclosure of a 2020 vulnerability, which may mean exploitation techniques are already known in specialized circles.
Analyst Recommendation
Given the late disclosure and the high severity of the flaw, organizations must prioritize the remediation of AMSS++ installations. The most effective course of action is to migrate to a modern, supported platform or apply the necessary security updates to version 4 without delay.