Tloc100-100 CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-59461	1 Sick	1 Tloc100-100	2025-10-27	7.6 High
A remote unauthenticated attacker may use the unauthenticated C++ API to access or modify sensitive data and disrupt services.
CVE-2025-59460	1 Sick	1 Tloc100-100	2025-10-27	7.5 High
The system is deployed in its default state, with configuration settings that do not comply with the latest best practices for restricting access. This increases the risk of unauthorised connections.
CVE-2025-10561	1 Sick	1 Tloc100-100	2025-10-27	9.3 Critical
The device is running an outdated operating system, which may be susceptible to known vulnerabilities.
CVE-2025-59459	1 Sick	1 Tloc100-100	2025-10-27	5.5 Medium
An attacker that gains SSH access to an unprivileged account may be able to disrupt services (including SSH), causing persistent loss of availability.
CVE-2025-59463	1 Sick	1 Tloc100-100	2025-10-27	4.3 Medium
An attacker may cause chunk-size mismatches that block file transfers and prevent subsequent transfers.
CVE-2025-59462	1 Sick	1 Tloc100-100	2025-10-27	6.5 Medium
An attacker who tampers with the C++ CLI client may crash the UpdateService during file transfers, disrupting updates and availability.

Page 1 of 1.