CVE Vulnerabilities - 24 February 2026

Authenticated users can access entries they shouldn't be able to, potentially exposing sensitive data. This issue affects Devolutions Server versions before 2025.3.15. To protect your data, update to ...

An attacker can trick authorized administrators into making unintended changes to the switch's configuration. This happens because the switch's administrative interface doesn't properly protect agains...

An attacker with valid login credentials may be able to access restricted information in SAP S/4HANA's Payment Media module, potentially revealing sensitive data. This issue affects confidentiality, b...

An authorized administrator can access sensitive information on the Genetec Update Service configuration web page. This could lead to unauthorized access to sensitive data. To mitigate this, ensure on...

A flaw in Firefox and Thunderbird versions before 148 allows attackers to inject malicious code. This could lead to unauthorized actions being taken on your computer. Update to the latest version to f...

A weakness in the Time Provider 4100 allows an attacker to download and install malicious software updates, which can compromise the security and integrity of the system. This is a serious issue becau...

Prior versions of Dell Wyse Management Suite (before WMS 5.5) allow a skilled attacker with remote access to bypass security checks, potentially allowing them to take control of the system. This is a ...