Lucene search
K

87 matches found

GitLab Advisory Database
GitLab Advisory Database
added 2026/03/12 12:0 a.m.7 views

AdGuard Home: HTTP/2 Cleartext (h2c) Upgrade Authentication Bypass

An unauthenticated remote attacker can bypass all authentication in AdGuardHome by sending an HTTP/1.1 request that requests an upgrade to HTTP/2 cleartext h2c. Once the upgrade is accepted, the resulting HTTP/2 connection is handled by the inner mux, which has no authentication middleware...

9.8CVSS5.9AI score0.00735EPSS
Exploits2References4Affected Software1
NVD
NVD
added 2026/03/11 10:16 p.m.8 views

CVE-2026-32136

AdGuard Home is a network-wide software for blocking ads and tracking. Prior to 0.107.73, an unauthenticated remote attacker can bypass all authentication in AdGuardHome by sending an HTTP/1.1 request that requests an upgrade to HTTP/2 cleartext h2c. Once the upgrade is accepted, the resulting...

9.8CVSS0.00735EPSS
Exploits2References1
Cvelist
Cvelist
added 2026/03/11 9:42 p.m.26 views

CVE-2026-32136 AdGuard Home: HTTP/2 Cleartext (h2c) Upgrade Authentication Bypass

AdGuard Home is a network-wide software for blocking ads and tracking. Prior to 0.107.73, an unauthenticated remote attacker can bypass all authentication in AdGuardHome by sending an HTTP/1.1 request that requests an upgrade to HTTP/2 cleartext h2c. Once the upgrade is accepted, the resulting...

9.8CVSS0.00735EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2026/03/11 9:42 p.m.3 views

CVE-2026-32136

AdGuard Home is a network-wide software for blocking ads and tracking. Prior to 0.107.73, an unauthenticated remote attacker can bypass all authentication in AdGuardHome by sending an HTTP/1.1 request that requests an upgrade to HTTP/2 cleartext h2c. Once the upgrade is accepted, the resulting...

9.8CVSS5.8AI score0.00735EPSS
Exploits2References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/11 9:42 p.m.0 views

CVE-2026-32136 AdGuard Home: HTTP/2 Cleartext (h2c) Upgrade Authentication Bypass

AdGuard Home is a network-wide software for blocking ads and tracking. Prior to 0.107.73, an unauthenticated remote attacker can bypass all authentication in AdGuardHome by sending an HTTP/1.1 request that requests an upgrade to HTTP/2 cleartext h2c. Once the upgrade is accepted, the resulting...

9.8CVSS5.8AI score0.00735EPSS
Exploits2References1
CVE
CVE
added 2026/03/11 9:42 p.m.22 views

CVE-2026-32136

AdGuard Home (network-wide ad/blocking software) contains a authentication bypass vulnerability CVE-2026-32136. Before 0.107.73, an unauthenticated remote attacker can trigger an HTTP/1.1 upgrade to h2c; after the upgrade is accepted, the inner mux handles subsequent HTTP/2 requests without authe...

9.8CVSS5.8AI score0.00735EPSS
Exploits2References1Affected Software1
OSV
OSV
added 2026/03/11 9:42 p.m.5 views

CVE-2026-32136 AdGuard Home: HTTP/2 Cleartext (h2c) Upgrade Authentication Bypass

AdGuard Home is a network-wide software for blocking ads and tracking. Prior to 0.107.73, an unauthenticated remote attacker can bypass all authentication in AdGuardHome by sending an HTTP/1.1 request that requests an upgrade to HTTP/2 cleartext h2c. Once the upgrade is accepted, the resulting...

9.8CVSS5.9AI score0.00735EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.6 views

PT-2026-24857

AdGuard Home and Affected Versions AdGuard Home versions prior to 0.107.73 Description AdGuard Home is a network-wide software for blocking ads and tracking. A critical issue exists where an unauthenticated remote attacker can bypass all authentication mechanisms. This is achieved by sending an...

9.9CVSS7.2AI score0.22162EPSS
Exploits70References141
CNNVD
CNNVD
added 2026/03/11 12:0 a.m.6 views

Eugene AdGuard Home 授权问题漏洞

Eugene AdGuard Home is an open-source application developed by Eugene. It provides a full-network software solution for blocking advertisements and tracking. Versions of Eugene AdGuard Home prior to 0.107.73 had an authorization issue vulnerability. This vulnerability stemmed from an unverified...

9.8CVSS7.3AI score0.00735EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-14655

Malware in sbrugna...

7.5CVSS7.5AI score0.04123EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-48628

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00611EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-45690

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00615EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.13 views

EUVD-2025-21788

Malicious code in bioql PyPI...

5.5CVSS6.6AI score0.00135EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/09/02 12:0 a.m.4 views

Performance Analysis of Common Browser Extensions for Cryptojacking Detection

This paper considers five extensions for Chromium-based browsers in order to determine how effective can browser-based defenses against cryptojacking available to regular users be. We've examined most popular extensions - MinerBlock, AdGuard AdBlocker, Easy Redirect && Prevent Cryptojacking,...

6.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/19 12:1 a.m.11 views

CVE-2025-51497

An issue was discovered in AdGuard plugin before 1.11.22 for Safari on MacOS. AdGaurd verbosely logged each url that Safari accessed when the plugin was active. These logs went into the MacOS general logs for any unsandboxed process to read. This may be disabled in version 1.11.22...

5.5CVSS7.1AI score0.00135EPSS
Exploits0References1
NVD
NVD
added 2025/07/17 6:15 p.m.30 views

CVE-2025-51497

An issue was discovered in AdGuard plugin before 1.11.22 for Safari on MacOS. AdGaurd verbosely logged each url that Safari accessed when the plugin was active. These logs went into the MacOS general logs for any unsandboxed process to read. This may be disabled in version 1.11.22...

5.5CVSS0.00135EPSS
Exploits0References3
OSV
OSV
added 2025/07/17 6:15 p.m.2 views

CVE-2025-51497

An issue was discovered in AdGuard plugin before 1.11.22 for Safari on MacOS. AdGaurd verbosely logged each url that Safari accessed when the plugin was active. These logs went into the MacOS general logs for any unsandboxed process to read. This may be disabled in version 1.11.22...

5.5CVSS5.7AI score0.00135EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/17 12:0 a.m.20 views

CVE-2025-51497

An issue was discovered in AdGuard plugin before 1.11.22 for Safari on MacOS. AdGaurd verbosely logged each url that Safari accessed when the plugin was active. These logs went into the MacOS general logs for any unsandboxed process to read. This may be disabled in version 1.11.22...

0.00135EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/07/17 12:0 a.m.5 views

AdGuard for Safari 安全漏洞

AdGuard for Safari is a Safari application extension for the AdGuard open source. A security vulnerability exists in AdGuard for Safari versions prior to 1.11.22 that originates from logging URLs accessed by Safari, which could lead to information disclosure...

5.5CVSS6.2AI score0.00135EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/07/17 12:0 a.m.5 views

CVE-2025-51497

An issue was discovered in AdGuard plugin before 1.11.22 for Safari on MacOS. AdGaurd verbosely logged each url that Safari accessed when the plugin was active. These logs went into the MacOS general logs for any unsandboxed process to read. This may be disabled in version 1.11.22...

6.3AI score0.00135EPSS
Exploits0References3
Rows per page
Query Builder