SEC Consult Vulnerability Lab Security Advisory < 20250611-0 >
===
title: Undocumented Root Shell Access
product: SIMCom - SIM7600G Modem
vulnerable version: Firmware Revision: LE20B03SIM7600M21-A
SEC Consult Vulnerability Lab Security Advisory < 20250521-0 >
===
title: Multiple Vulnerabilities
product: eCharge Hardy Barth cPH2 and cPP2 charging stations
vulnerable version: 2.2.0
fixed versi
SEC Consult Vulnerability Lab Security Advisory < 20250507-0 >
===
title: Authenticated Command Injection
product: Honeywell MB-Secure
vulnerable version: MB-Secure versions from V11.04 and prior to V12.5
SEC Consult Vulnerability Lab Security Advisory < 20250422-0 >
===
title: Local Privilege Escalation via DLL Search Order Hijacking
product: Ivanti Endpoint Manager Security Scan (Vulscan) Self
Update
vu
SEC Consult Vulnerability Lab Security Advisory < publishing date 20250429-0 >
Combined Security Advisory for Sure Access Enterprise and Sure Click Enterprise
===
title: Multiple Vulnerabilities
product:
SEC Consult Vulnerability Lab Security Advisory < 20250226-0 >
===
title: Multiple Vulnerabilities
product: Siemens A8000 CP-8050 PLC
Siemens A8000 CP-8031 PLC
vulnerable version: <0
SEC Consult Vulnerability Lab Security Advisory < 20250127-0 >
===
title: Weak Password Hashing Algorithms
product: Wind River Software VxWorks RTOS
vulnerable version: >= VxWorks 6.9
fixed ver
SEC Consult Vulnerability Lab Security Advisory < 20240418-0 >
===
title: Broken authorization
product: Dreamehome app
vulnerable version: <=2.1.5 (iOS)
fixed version: none, see solution
SEC Consult Vulnerability Lab Security Advisory < 20240411-0 >
===
title: Database Passwords in Server Response
product: Amazon AWS Glue
vulnerable version: until 2024-02-23
fixed version: as of
