Lucene search
K

5128 matches found

Tenable Nessus
Tenable Nessus
added 2023/01/19 12:0 a.m.50 views

Wireshark 4.0.x < 4.0.3 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 4.0.3. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.0.3 advisory. - Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service vi...

7.1CVSS6.8AI score0.00887EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2023/01/19 12:0 a.m.35 views

Wireshark 3.6.x < 3.6.11 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.6.11. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.6.11 advisory. - Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of...

7.1CVSS6.8AI score0.00887EPSS
Exploits0References19
Kitploit
Kitploit
added 2023/01/18 11:30 a.m.97 views

Kscan - Simple Asset Mapping Tool

0 Disclaimer The author did not participate in the XX action, don't trace it This tool is only for legally authorized enterprise security construction behaviors and personal learning behaviors. If you need to test the usability of this tool, please build a target drone environment by yourself. Wh...

6.9AI score
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2023/01/13 12:0 a.m.75 views

SAP NetWeaver AS ABAP Capture-Replay (3089413)

SAP NetWeaver ABAP Server and ABAP Platform creates information about system identity in an ambiguous format. This could lead to capture-replay vulnerability and may be exploited by malicious users to obtain illegitimate access to the system. Note that Nessus has not tested for this issue but has...

9.8CVSS8.2AI score0.00693EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/01/12 4:15 a.m.37 views

CVE-2022-4345

Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file...

6.5CVSS6.8AI score0.00675EPSS
Exploits0References3
NVD
NVD
added 2023/01/12 12:15 a.m.27 views

CVE-2022-4344

Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file...

6.3CVSS6.6AI score0.00569EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2023/01/12 12:15 a.m.47 views

CVE-2022-4344

Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file...

6.3CVSS6.7AI score0.00569EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/01/12 12:0 a.m.32 views

CVE-2022-4345

Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file...

6.3CVSS6.9AI score0.00675EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2023/01/11 9:32 a.m.2 views

Dark Pink APT Group Targets Governments and Military in APAC Region

Government and military organizations in the Asia-Pacific region are being targeted by a previously unknown advanced persistent threat APT actor, per latest research conducted by Albert Priego of Group-IB The Singapore-headquartered company, in a report shared with The Hacker News, said it's...

6.9AI score
Exploits0
Cvelist
Cvelist
added 2023/01/11 12:0 a.m.26 views

CVE-2022-4344

Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file...

6.3CVSS6.8AI score0.00569EPSS
Exploits0References4
OSV
OSV
added 2023/01/11 12:0 a.m.30 views

CVE-2022-4344

Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file...

6.3CVSS5.2AI score0.00569EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2023/01/11 12:0 a.m.32 views

CVE-2022-4344

Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file...

6.3CVSS6AI score0.00569EPSS
Exploits0
OSV
OSV
added 2023/01/10 4:15 a.m.4 views

CVE-2023-0014

SAP NetWeaver ABAP Server and ABAP Platform - versions SAPBASIS 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, KERNEL 7.22, 7.53, 7.77, 7.81, 7.85, 7.89, KRNL64UC 7.22, 7.22EXT, 7.53, KRNL64NUC 7.22, 7.22EXT, creates information about system identity in an ambiguo...

9.8CVSS7.3AI score0.00693EPSS
Exploits0References2
Prion
Prion
added 2023/01/10 4:15 a.m.26 views

Design/Logic Flaw

SAP NetWeaver ABAP Server and ABAP Platform - versions SAPBASIS 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, KERNEL 7.22, 7.53, 7.77, 7.81, 7.85, 7.89, KRNL64UC 7.22, 7.22EXT, 7.53, KRNL64NUC 7.22, 7.22EXT, creates information about system identity in an ambiguo...

7.5CVSS9AI score0.00693EPSS
Exploits0References2Affected Software4
Vulnrichment
Vulnrichment
added 2023/01/10 3:2 a.m.6 views

CVE-2023-0014 Capture-replay vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform

SAP NetWeaver ABAP Server and ABAP Platform - versions SAPBASIS 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, KERNEL 7.22, 7.53, 7.77, 7.81, 7.85, 7.89, KRNL64UC 7.22, 7.22EXT, 7.53, KRNL64NUC 7.22, 7.22EXT, creates information about system identity in an ambiguo...

9CVSS8.8AI score0.00693EPSS
Exploits0References2
CVE
CVE
added 2023/01/10 3:2 a.m.114 views

CVE-2023-0014

CVE-2023-0014 affects SAP NetWeaver ABAP Server and ABAP Platform on multiple SAP_BASIS versions (700…757) and kernel/CR components (e.g., 7.22, 7.53, 7.77, 7.81, 7.85, 7.89; KRNL64UC/NUC) where the system identity is created in an ambiguous format. This behavior can enable a capture-replay vulne...

9.8CVSS9.1AI score0.00693EPSS
Exploits0References2Affected Software4
Cvelist
Cvelist
added 2023/01/10 3:2 a.m.44 views

CVE-2023-0014 Capture-replay vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform

SAP NetWeaver ABAP Server and ABAP Platform - versions SAPBASIS 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, KERNEL 7.22, 7.53, 7.77, 7.81, 7.85, 7.89, KRNL64UC 7.22, 7.22EXT, 7.53, KRNL64NUC 7.22, 7.22EXT, creates information about system identity in an ambiguo...

9CVSS9.3AI score0.00693EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/01/10 12:0 a.m.3 views

PT-2023-1236 · Schneider Electric · Ecostruxure Process Expert +4

Name of the Vulnerable Software and Affected Versions: EcoStruxure Control Expert versions prior to V2020 EcoStruxure Process Expert versions prior to V2020 Modicon M340 CPU versions prior to the latest version Modicon M580 CPU versions prior to the latest version Modicon M580 CPU Safety versions...

9.8CVSS9.3AI score0.01443EPSS
Exploits0References10
ICS
ICS
added 2023/01/10 12:0 a.m.72 views

Schneider Electric EcoStruxure Control Expert, Process Expert, Modicon M340, M580 and M580 CPU (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely Vendor: Schneider Electric Equipment: EcoStruxure Control Expert, EcoStruxure Process Expert, Modicon M340 CPU, Modicon M580 CPU, Modicon Momentum Unity M1E Processor, Modicon MC80 Vulnerability: Authentication Bypass by...

9.8CVSS7.5AI score0.01443EPSS
Exploits0References11
BDU FSTEC
BDU FSTEC
added 2023/01/10 12:0 a.m.5 views

The vulnerability of TP-Link Archer AX10 router’s microprogramming software allows for an attack where the attacker bypasses authentication by using capture-replay techniques to intercept and replay captured parameters. This enables the attacker to carry out a “man-in-the-middle” type attack and gain unauthorized access to protected information.

The vulnerability of TP-Link Archer AX10 router’s microprogramming software lies in the ability to bypass the authentication process by exploiting the capture-replay technique for manipulating processed HTTP packets. Exploiting this vulnerability allows an attacker to carry out a...

8.1CVSS7.4AI score0.01118EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder