CVE-2026-5308

Mattermost versions 11.6.x = 11.6.0, 11.5.x = 11.5.3, 11.4.x = 11.4.4, 10.11.x = 10.11.14 fail to enforce request body size limits on plugin HTTP endpoints which allows an attacker to cause a denial of service via crafted oversized HTTP requests.. Mattermost Advisory ID: MMSA-2026-00646...

EUVD-2015-6485

Malware in sbrugna...

EUVD-2023-31095

Malicious code in bioql PyPI...

Security Bulletin: IBM App Connect Enterprise Certified Container operator, IntegrationServer and IntegrationRuntime operands are vulnerable to denial of service [CVE-2024-24783]

Summary Golang Go is used by the operator, and the IntegrationServer and IntegrationRuntime operands in IBM App Connect Enterprise Certified Container. IBM App Connect Enterprise Certified Container operator, and IntegrationServer and IntegrationRuntime operands are vulnerable to denial of servic...

CVE-2023-27318

StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service DoS vulnerability. A successful exploit could lead to a crash of the Local Distribution Router LDR service...

CVE-2023-27318

StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service DoS vulnerability. A successful exploit could lead to a crash of the Local Distribution Router LDR service...

Denial of service

StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service DoS vulnerability. A successful exploit could lead to a crash of the Local Distribution Router LDR service...

NetApp StorageGRID Security Vulnerability

NetApp StorageGRID is a suite of object storage solutions from Network Appliance NetApp. A security vulnerability exists in StorageGRID versions 11.6.0 through 11.6.0.13, which stems from susceptibility to a denial-of-service vulnerability that can be exploited by an attacker to cause a program...

CVE-2022-23233

StorageGRID formerly StorageGRID Webscale versions prior to 11.6.0 are susceptible to a vulnerability which when successfully exploited could lead to Denial of Service DoS of the Local Distribution Router LDR service...

Netapp StorageGRID 安全漏洞

Netapp StorageGRID is a suite of object storage solutions from U.S.-based NetApp Netapp. A security vulnerability exists in StorageGRID formerly known as StorageGRID Webscale versions prior to 11.6.0 that could lead to a denial of service DoS of the Local Distribution Router LDR service...

CVE-2020-27146 TIBCO iProcess Workspace Browser CSRF

The Core component of TIBCO Software Inc.'s TIBCO iProcess Workspace Browser contains a vulnerability that theoretically allows an unauthenticated attacker with network access to execute a Cross Site Request Forgery CSRF attack on the affected system. A successful attack using this vulnerability...

PT-2020-18758 · F5 · Big-Ip

Name of the Vulnerable Software and Affected Versions: BIG-IP versions 11.6.0 through 11.6.5.1 BIG-IP versions 12.1.0 through 12.1.5 BIG-IP versions 13.1.0 through 13.1.3.1 BIG-IP versions 14.0.0 through 14.0.1 BIG-IP versions 14.1.0 through 14.1.2.2 BIG-IP versions 15.0.0 through 15.0.1.1...

Default configuration

F5 BIG-IP ASM 15.0.0, 14.1.0-14.1.0.6, 14.0.0-14.0.0.5, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, 11.6.0-11.6.4, and 11.5.1-11.5.9 may expose sensitive information and allow the system configuration to be modified when using non-default settings...

PT-2019-18232 · F5 · F5 Big-Ip Apm

Name of the Vulnerable Software and Affected Versions: F5 BIG-IP ASM versions 11.5.1 through 11.5.9 F5 BIG-IP ASM versions 11.6.0 through 11.6.4 F5 BIG-IP ASM versions 12.1.0 through 12.1.4.1 F5 BIG-IP ASM versions 13.0.0 through 13.1.1.5 F5 BIG-IP ASM versions 14.0.0 through 14.0.0.5 F5 BIG-IP A...

F5 BIG-IP APM Information Disclosure Vulnerability (CNVD-2019-07130)

F5 BIG-IP Access Policy Manager APM is a suite of access and security solutions from F5 America. The solution provides unified access to business-critical applications and networks. portal access is one of the portal access components. A security vulnerability exists in portal access in F5 BIG-IP...

Stack overflow

F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, or 11.6.0-11.6.3.1 virtual servers with HTTP/2 profiles enabled are vulnerable to "HPACK Bomb"...

Design/Logic Flaw

In versions 13.0.0, 12.0.0-12.1.3, or 11.6.0-11.6.2, an F5 BIG-IP virtual server using the URL categorization feature may cause the Traffic Management Microkernel TMM to produce a core file when it receives malformed URLs during categorization...

Design/Logic Flaw

In F5 BIG-IP AAM and PEM software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.4.1 to 11.5.4, a remote attacker may create maliciously crafted HTTP request to cause Traffic Management Microkernel TMM to restart and temporarily fail to process traffic. This issue is exposed on virtual servers...

F5 iControl iCall::Script Root Command Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'nokogiri' class Metasploit3 "http://schemas.xmlsoap.org/soap/encoding/" STRINGATTRS = 'xsi:type' = 'urn:Common.StringSequence',...

F5 Networks BIG-IP : ASM < 11.6.0 Response Body XSS

The F5 Networks Application Security Manager ASM running on the remote device is prior to version 11.6.0. It is, therefore, affected by a cross-site scripting vulnerability due to improper validation of user-supplied input to the 'Response Body' field when a new user account is being created. A...