302 matches found
Evertz SDVN 3080ipx-10G - Unauthenticated Arbitrary Command Injection
The Evertz SDVN 3080ipx-10G is a High Bandwidth Ethernet Switching Fabric for Video Application. This device exposes a web management interface on port 80. This web management interface can be used by administrators to control product features, setup network switching, and register license among...
EUVD-2004-1366
Malware in sbrugna...
EUVD-2004-1367
Malware in sbrugna...
EUVD-2005-0298
Malware in sbrugna...
EUVD-2005-1499
Malware in sbrugna...
EUVD-2004-1365
Malware in sbrugna...
EUVD-2006-7049
Malware in sbrugna...
EUVD-2004-1768
Malware in sbrugna...
CVE-2025-10364
The Evertz SDVN 3080ipx-10G is a High Bandwidth Ethernet Switching Fabric for Video Application. This device exposes a web management interface on port 80. This web management interface can be used by administrators to control product features, setup network switching, and register license among...
CVE-2025-10365 Authentication Bypass in Evertz SDVN
The Evertz SDVN 3080ipx-10G is a High Bandwidth Ethernet Switching Fabric for Video Application. This device exposes a web management interface on port 80. This web management interface can be used by administrators to control product features, setup network switching, and register license among...
PT-2025-37317
Name of the Vulnerable Software and Affected Versions: Evertz SDVN 3080ipx-10G affected versions not specified Description: The Evertz SDVN 3080ipx-10G is a High Bandwidth Ethernet Switching Fabric for Video Application. The device exposes a web management interface on port 80, which is susceptib...
PT-2025-37318
Name of the Vulnerable Software and Affected Versions: Evertz SDVN 3080ipx-10G affected versions not specified Description: The Evertz SDVN 3080ipx-10G is a High Bandwidth Ethernet Switching Fabric for Video Application. The device exposes a web management interface on port 80. This web managemen...
CVE-2025-4009
The CVE-2025-4009 family concerns Evertz SDVN 3080ipx-10G devices (web management on port 80, PHP/webEASY SDK). Two endpoints are affected: feature-transfer-import.php and feature-transfer-export.php, both allowing arbitrary command injection. Remote, unauthenticated attackers can gain arbitrary ...
Evertz SDVN 3080ipx-10G 安全漏洞
The Evertz SDVN 3080ipx-10G is a high-bandwidth Ethernet switching fabric for video applications from Evertz. A security vulnerability exists in the Evertz SDVN 3080ipx-10G that stems from a command injection and authentication bypass in the web management interface, which could lead to the...
Oracle DB SQL Injection Via SYS.DBMS_CDC_SUBSCRIBE.ACTIVATE_SUBSCRIPTION
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB SQL Injection via SYS.DBMSCDCSUBSCRIBE.ACTIVATESUBSCRIPTION', 'Description' = %q This module will escalate an Oracle DB user to DBA by...
Oracle DB SQL Injection Via SYS.LT.FINDRICSET Evil Cursor Method
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB SQL Injection via SYS.LT.FINDRICSET Evil Cursor Method', 'Description' = %q This module will escalate an Oracle DB user to DBA by...
Oracle Auditing Part 1: Standard Auditing
This is the first of three articles on the topic of Oracle auditing. It is relevant to Oracle 10g, 11g, and 12c, although Unified Auditing in 12c makes some of this content irrelevant if you choose to use Pure Unified Auditing. Unified Auditing will be covered in the third part of this series...
Security Bulletin: IBM Security Proventia Network Active Bypass is affected by openssl vulnerabilities (CVE-2017-3735)
Summary IBM Security Proventia Network Active Bypass has addressed the following vulnerabilities. CVE-2017-3735 Vulnerability Details CVEID: CVE-2017-3735 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error while parsing an IPAdressFamily extensi...
Security Bulletin: Vulnerability in Diffie-Hellman ciphers affects IBM Security Proventia Network Active Bypass (CVE-2015-4000)
Summary The Logjam Attack on TLS connections using the Diffie-Hellman DH key exchange protocol affect IBM Security Proventia Network Active Bypass Vulnerability Details CVEID: CVE-2015-4000 DESCRIPTION: The TLS protocol could allow a remote attacker to obtain sensitive information, caused by the...
Security Bulletin: Vulnerabilities in OpenSSL affect IBM Security Network Active Bypass (CVE-2015-5229, CVE-2015-8776)
Summary OpenSSL vulnerabilities were found in IBM Security Network Active Bypass. IBM Security Network Active Bypass has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2015-5229 DESCRIPTION: GNU C Library glibc is vulnerable to a denial of service, caused by the return of memory...