unauthenticated access

A cluster of India‑deployed CCTV cameras from three vendors has been flagged in a CISA industrial‑control‑systems advisory for a missing authentication defect that can disclose configuration data and account credentials — a vulnerability tracked as CVE‑2025‑13607 and scored in the high‑severity...

The Survision License Plate Recognition (LPR) camera vulnerability disclosed in a recent ICS advisory is a stark reminder that even highly specialized, edge-deployed devices can present critical attack surfaces when basic authentication controls are missing by default. The flaw — tracked as...

Original release date: April 13, 2015 Systems Affected Misconfigured Domain Name System (DNS) servers that respond to global Asynchronous Transfer Full Range (AXFR) requests. Overview A remote unauthenticated user may request a DNS zone transfer from a public-facing DNS server. If...

Since we last highlighted this project in December 2013, Xbox Music API, it's been pretty quite. Until now. The week before last the Xbox Music team jump started the Xbox Music API with a number of new features, capabilities and samples. Link Removed - Link Removed Welcome to the new Xbox...

Original release date: April 10, 2013 Systems Affected Microsoft Windows Microsoft Remote Desktop Client Microsoft Antimalware Client Microsoft Sharepoint Overview Select Microsoft software products contain multiple vulnerabilities. Microsoft has released updates to address these...