902 matches found
Cherokee HTTPD <=0.5 - Cross-Site Scripting
Cherokee HTTPD 0.5 and earlier contains a cross-site scripting vulnerability which allows remote attackers to inject arbitrary web script or HTML via a malformed request that generates an HTTP 400 error, which is not properly handled when the error message is generated. id: CVE-2006-1681 info:...
HP LaserJet Printers Multiple Vulnerabilities (CVE-2012-3273)
Multiple unspecified vulnerabilities on the HP LaserJet Pro 400 MFP M425 with firmware before 20120625 and LaserJet 400 M401 with firmware before 20120621 allow remote attackers to obtain sensitive information via unknown vectors. This plugin only works with Tenable.ot. Please visit...
JLSEC-2026-397
When curl is used to retrieve and parse cookies from a HTTPS server, itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses. Effectively allowing a"sister site" to deny service to all siblings...
UBUNTU-CVE-2026-33065
Free5GC is an open-source Linux Foundation project for 5th generation 5G mobile core networks. In versions prior to 1.4.2, the UDM incorrectly converts a downstream 400 Bad Request from UDR into a 500 Internal Server Error when handling DELETE requests with an empty supi path parameter. This leak...
PT-2026-26187
Impact This is an Improper Error Handling vulnerability with Information Exposure implications. - Security Impact: The UDM incorrectly converts a downstream 400 Bad Request from UDR into a 500 Internal Server Error when handling DELETE requests with an empty supi path parameter. This leaks intern...
CVE-2026-26937
Uncontrolled Resource Consumption CWE-400 in the Timelion component in Kibana can lead Denial of Service via Input Data Manipulation CAPEC-153...
CVE-2026-0400
creationtimestamp| type| source ---|---|--- 2026-02-24 14:35:14+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mfmf7tw25a2z 2026-03-01 00:25:14+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3mfxi2hu2ac2x 2026-05-21 16:06:56+00:00| seen|...
MiracleLinux 9 : openssl-3.0.1-47.el9 (AXSA:2023-5192:01)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5192:01 advisory. openssl: read buffer overflow in X.509 certificate verification CVE-2022-4203 openssl: timing attack in RSA Decryption implementation CVE-2022-4304...
MiracleLinux 8 : openssl-1.1.1k-9.el8 (AXSA:2023-5236:03)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5236:03 advisory. openssl: X.400 address type confusion in X.509 GeneralName CVE-2023-0286 openssl: timing attack in RSA Decryption implementation CVE-2022-4304...
CVE-2021-41322
Poly VVX 400/410 5.3.1 allows low-privileged users to change the Admin password by modifying a POST parameter to 120 during the password reset process...
CVE-2021-31346
A vulnerability has been identified in Capital Embedded AR Classic 431-422 All versions, Capital Embedded AR Classic R20-11 All versions V2303, PLUSCONTROL 1st Gen All versions, SIMOTICS CONNECT 400 All versions V0.5.0.0, SIMOTICS CONNECT 400 All versions V1.0.0.0. The total length of an ICMP...
EUVD-2018-0197
Malware in sbrugna...
EUVD-2016-9976
Malware in sbrugna...
EUVD-2012-2994
Malware in sbrugna...
EUVD-2002-1801
Malware in sbrugna...
EUVD-2020-20852
Malware in sbrugna...
EUVD-2019-0610
Malware in sbrugna...
EUVD-2007-0442
Malware in sbrugna...
EUVD-2009-2026
Malware in sbrugna...
EUVD-2018-8363
Malware in sbrugna...