CVE-2025-5160 – H3C SecCenter SMP-E1114P02 Remote Path Traversal Vulnerability

May 25, 2025

CVE ID : CVE-2025-5160

Published : May 26, 2025, 12:15 a.m. | 54 minutes ago

Description : A vulnerability classified as problematic has been found in H3C SecCenter SMP-E1114P02 up to 20250513. Affected is the function Download of the file /packetCaptureStrategy/download. The manipulation of the argument Name leads to path traversal. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleGuide to Using Plugins in Obsidian

Next Article CVE-2025-5159 – H3C SecCenter SMP-E1114P02 Remote Path Traversal Vulnerability

Highlights

CVE-2025-5279 – Amazon Redshift Python Connector AzureOAuth2CredentialsProvider SSL Certificate Validation Bypass

May 27, 2025

CVE ID : CVE-2025-5279

Published : May 27, 2025, 9:15 p.m. | 3 hours, 44 minutes ago

Description : When the Amazon Redshift Python Connector is configured with the BrowserAzureOAuth2CredentialsProvider plugin, the driver skips the SSL certificate validation step for the Identity Provider. An insecure connection could allow an actor to intercept the token exchange process and retrieve an access token.

This issue has been addressed in driver version 2.1.7. Users should upgrade to address this issue and ensure any forked or derivative code is patched to incorporate the new fixes.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Ex-Security Engineer Jailed 3 Years for $12.3 Million Crypto Exchange Thefts

April 13, 2024

Bill Gates says the late Steve Jobs recommended taking LSD to make Microsoft products more appealing — matching Apple’s flair: “Look, I got the wrong batch”

February 10, 2025

Microsoft is killing off Windows 11â€™s Win + C shortcut as Copilot becomes a web app

June 22, 2024

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

All the WWE 2K25 locker codes that are currently active

PSA: You don’t need to spend $400+ to upgrade your Xbox Series X|S storage

UK civil servants saved 24 minutes per day using Microsoft Copilot, saving two weeks each per year according to a new report

These solid-state fans will revolutionize cooling in our PCs and laptops

Community News: Latest PECL Releases (06.03.2025)

Community News: Latest PECL Releases (06.03.2025)

A Comprehensive Guide to Azure Firewall

Test Job Failures Precisely with Laravel’s assertFailedWith Method

All the WWE 2K25 locker codes that are currently active

All the WWE 2K25 locker codes that are currently active

PSA: You don’t need to spend $400+ to upgrade your Xbox Series X|S storage

UK civil servants saved 24 minutes per day using Microsoft Copilot, saving two weeks each per year according to a new report

CVE-2025-5160 – H3C SecCenter SMP-E1114P02 Remote Path Traversal Vulnerability

BitoPro Silent on $11.5M Hack: Investigator Uncovers Massive Crypto Theft

New Linux Vulnerabilities

Development Release: deepin 25 Alpha

One-time Password Manager for Laravel

CVE-2025-46575 – GoldenDB Information Disclosure Vulnerability

HelloYou unveils Skanna, a barcode scanner with a twist

CVE-2025-5279 – Amazon Redshift Python Connector AzureOAuth2CredentialsProvider SSL Certificate Validation Bypass

Ex-Security Engineer Jailed 3 Years for $12.3 Million Crypto Exchange Thefts

Bill Gates says the late Steve Jobs recommended taking LSD to make Microsoft products more appealing — matching Apple’s flair: “Look, I got the wrong batch”

Microsoft is killing off Windows 11â€™s Win + C shortcut as Copilot becomes a web app

CVE-2025-5160 – H3C SecCenter SMP-E1114P02 Remote Path Traversal Vulnerability

Related Posts