CVE-2024-32384

Kerlink gateways running KerOS prior to version 5.10 expose their web interface exclusively over HTTP, without HTTPS support. This lack of transport layer security allows a man-in-the-middle attacker to intercept and modify traffic between the client and the device...

CVE-2024-32384

Kerlink KerOS gateways before version 5.10 expose the web interface only over HTTP, with no HTTPS support. This transport security gap enables a man‑in‑the‑middle attacker to intercept/modify traffic between clients and devices. Affected product: Kerlink gateways running KerOS pre‑5.10. Root caus...

Raspberry Pi Os安全漏洞

Raspberry Pi Os is a minimized image from the UK Raspberry Pi Foundation based on the latest version of Debian. Raspberry Pi Os suffers from a security vulnerability that stems from the fact that operating systems prior to Raspberry Pi 5.10 have default passwords for Raspberry Pi accounts, which...

PT-2021-19536 · Mcafee · Mcafee Epolicy Orchestrator

Name of the Vulnerable Software and Affected Versions: McAfee ePolicy Orchestrator ePO versions prior to 5.10 Update 11 Description: The issue allows ePO administrators to inject arbitrary web script or HTML via multiple parameters where the administrator's entries were not correctly sanitized...