CVE-2025-34037 Linksys Routers E/WAG/WAP/WES/WET/WRT-Series

An OS command injection vulnerability exists in various models of E-Series Linksys routers via the /tmUnblock.cgi and /hndUnblock.cgi endpoints over HTTP on port 8080. The CGI scripts improperly process user-supplied input passed to the ttcpip parameter without sanitization, allowing...

CVE-2025-34037

CVE-2025-34037 is an OS command injection in Linksys E-Series routers, exploitable via unauthenticated HTTP POSTs to /tmUnblock.cgi or /hndUnblock.cgi on port 8080. The issue stems from improper sanitization of the ttcp_ip parameter, enabling shell command injection and arbitrary code execution. ...

openSUSE: Security Advisory for caddy (openSUSE-SU-2022:10080-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-34037

creationtimestamp| type| source ---|---|--- 2023-08-04 17:25:08+00:00| seen| https://t.me/cibsecurity/67759...

CVE-2023-34037

VMware Horizon Server contains a HTTP request smuggling vulnerability. A malicious actor with network access may be able to perform HTTP smuggle requests...

CVE-2023-34037

VMware Horizon Server is affected by CVE-2023-34037: an HTTP request smuggling vulnerability that an attacker with network access can potentially exploit to smuggle HTTP requests. The issue is associated with VMware Horizon Server and is described in VMSA-2023-0017, with a CVSSv3.1 base score of ...

VMware Horizon Server updates address multiple security vulnerabilities (CVE-2023-34037, CVE-2023-34038)

3a. Request smuggling vulnerability CVE-2023-34037 VMware Horizon Server contains a HTTP request smuggling vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.3. 3b. Information disclosure vulnerability...

CVE-2022-34037

creationtimestamp| type| source ---|---|--- 2022-08-17 17:32:02+00:00| seen| https://t.me/cibsecurity/46797...

openSUSE 15 Security Update : caddy (openSUSE-SU-2022:10080-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2022:10080-1 advisory. - An out-of-bounds read in the rewrite function at /modules/caddyhttp/rewrite/rewrite.go in Caddy v2.5.1 allows attackers to cause a Denial of...

CVE-2022-34037

CVE-2022-34037 describes an out-of-bounds read in the rewrite function at /modules/caddyhttp/rewrite/rewrite.go of Caddy v2.5.1 , enabling a potential Denial of Service via a crafted URI. The OpenSUSE and OSV entries in the connected documents confirm the issue and indicate that an update to a fi...