CVE-2019-11653

Remote Access Control Bypass in Micro Focus Content Manager. versions 9.1, 9.2, 9.3. The vulnerability could be exploited to manipulate data stored during another user’s CheckIn request...

CVE-2025-11653 UTT HiPER 2620G fNTP strcpy buffer overflow

A vulnerability was determined in UTT HiPER 2620G up to 3.1.4. Impacted is the function strcpy of the file /goform/fNTP. This manipulation of the argument NTPServerIP causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilize...

CVE-2024-11653

A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/network/diagtraceroute. The manipulation of the argument diagtraceroute leads to command injection. The...

CVE-2024-11653

creationtimestamp| type| source ---|---|--- 2024-11-25 03:42:05+00:00| seen| https://infosec.exchange/users/cve/statuses/113541521386914061...

USN-5474-2 varnish regression

USN-5474-1 fixed vulnerabilities in Varnish Cache. Unfortunately the fix for CVE-2020-11653 was incomplete. This update fixes the problem. Original advisory details: It was discovered that Varnish Cache could have an assertion failure when a TLS termination proxy uses PROXY version 2. A remote...

Design/Logic Flaw

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers. Although authentication is required to exploit...

CentOS 8 : varnish:6 (CESA-2020:4756)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4756 advisory. - varnish: denial of service handling certain crafted HTTP/1 requests CVE-2019-15892 - varnish: not clearing pointer between two client requests leads ...

Moderate: Red Hat Security Advisory: varnish:6 security, bug fix, and enhancement update

An update for the varnish:6 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Moderate: varnish:6 security, bug fix, and enhancement update

Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. The following packages have been upgraded to a later upstream version: varnish 6.0.6. BZ1795673...

openSUSE Security Update : varnish (openSUSE-2020-808)

This update for varnish fixes the following issues : - CVE-2019-20637: Fixed an information leak when handling one client request and the next on the same connection boo1169040 - CVE-2020-11653: Fixed a performance loss due to an assertion failure and daemon restart when communicating with TLS...

openSUSE: Security Advisory for varnish (openSUSE-SU-2020:0808-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2020-11653

An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There can be an assertion failure and daemon restart, which causes a performance loss...

CVE-2020-11653

CVE-2020-11653 affects Varnish Cache prior to 6.0.6 LTS, 6.1.x prior to 6.2.3, and 6.3.x prior to 6.3.2. When a TLS termination proxy uses PROXY v2, an assertion failure can occur, causing the varnishd daemon to restart and leading to performance loss. Connected advisories (Debian/Ubuntu/Rocky) r...

CVE-2019-11653

Remote Access Control Bypass in Micro Focus Content Manager. versions 9.1, 9.2, 9.3. The vulnerability could be exploited to manipulate data stored during another user’s CheckIn request...

CVE-2019-11653

Remote Access Control Bypass in Micro Focus Content Manager. versions 9.1, 9.2, 9.3. The vulnerability could be exploited to manipulate data stored during another user’s CheckIn request...

CVE-2019-11653

The CVE-2019-11653 entry affects Micro Focus Content Manager versions 9.1, 9.2, and 9.3 and is described as a Remote Access Control Bypass that could allow manipulation of data stored during another user’s CheckIn request. The connected records (RH, NVD, NVD duplicates) confirm the affected produ...

Netwave IP Camera Information Disclosure Vulnerability

Netwave IP cameras are prone to multiple Information Disclosure Vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

CVE-2018-11653

CVE-2018-11653 affects Netwave IP cameras. The root cause is an information-disclosure in the //etc/RT2870STA.dat file accessible via HTTP on port 8000, enabling an unauthenticated attacker to exfiltrate sensitive network configuration data (SSID and passwords). Public sources in the connected do...

CVE-2017-11653

CVE-2017-11653 affects Razer Synapse 2.20.15.1104 and earlier. The vulnerability arises from weak permissions on the Devices directory, enabling local privilege escalation via a trojan horse using one of two DLLs: RazerConfigNative.dll or RazerConfigNativeLOC.dll. The impact is local privilege es...

SuSE9 Security Update : findutils-locate (YOU Patch Number 11653)

The cronjob that deletes old core files can be tricked to delete arbitrary files if DELETEOLDCORE is set to yes in /etc/sysconfig/cron. By default, the variable is set to no. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...