Lucene search
K

5122 matches found

Tenable Nessus
Tenable Nessus
added 2022/09/13 12:0 a.m.33 views

openSUSE 15 Security Update : chromium (openSUSE-SU-2022:10119-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:10119-1 advisory. - Use after free in Network Service. CVE-2022-3038 - Use after free in WebSQL. CVE-2022-3039, CVE-2022-3041 - Use after free in Layout...

9.6CVSS7.9AI score0.24738EPSS
Exploits1References50
Debian CVE
Debian CVE
added 2022/09/13 12:0 a.m.42 views

CVE-2022-3190

Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file...

6.3CVSS6.2AI score0.01739EPSS
Exploits1
Fedora
Fedora
added 2022/09/12 5:52 p.m.34 views

[SECURITY] Fedora 37 Update: tcpreplay-4.4.2-1.fc37

Tcpreplay is a tool to replay captured network traffic. Currently, tcpreplay supports pcap tcpdump and snoop capture formats. Also included, is tcpprep a tool to pre-process capture files to allow increased performance under certain conditions as well as capinfo which provides basic information...

7.8CVSS0.7AI score0.01918EPSS
Exploits8
Cvelist
Cvelist
added 2022/09/07 11:0 p.m.20 views

CVE-2022-36089 VelaUX APIServer vulnerable to Authentication Bypass by Capture-replay

KubeVela is an application delivery platform Users using KubeVela's VelaUX APIServer could be affected by an authentication bypass vulnerability. In KubeVela prior to versions 1.4.11 and 1.5.4, VelaUX APIServer uses the PlatformID as the signed key to generate the JWT tokens for users. Another AP...

8.2CVSS9.7AI score0.00698EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/09/05 12:0 a.m.17 views

Fedora: Security Advisory for tcpreplay (FEDORA-2022-47484afa15)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.7AI score0.01918EPSS
Exploits8References2
Tenable Nessus
Tenable Nessus
added 2022/09/02 12:0 a.m.49 views

Debian DSA-5223-1 : chromium - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5223 advisory. Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. For the...

8.8CVSS7.8AI score0.24738EPSS
Exploits1References48
BDU FSTEC
BDU FSTEC
added 2022/09/02 12:0 a.m.4 views

The vulnerability of the Screen Capture function in Google Chrome browser allows a hacker to execute arbitrary code.

The vulnerability of the Screen Capture function in Google Chrome browser is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

10CVSS8.3AI score0.00653EPSS
Exploits0References4Affected Software3
CNVD
CNVD
added 2022/09/01 12:0 a.m.19 views

Google Chrome Screen Capture Buffer Overflow Vulnerability

Google Chrome is a web browser from Google, an American company. A buffer overflow vulnerability previously existed in Google Chrome 105.0.5195.52, which stemmed from a boundary error when handling untrusted input in Screen Capture. An attacker could exploit this vulnerability to cause the buffer...

8.8CVSS7.9AI score0.00653EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2022/08/31 10:0 a.m.507 views

Exploit for Authentication Bypass by Capture-replay in Sinilink Xy-Wft1_Firmware

CVE-2022-43704 - Channel Accessible by Non-Endpoint/Authentica...

5.9CVSS6AI score0.01868EPSS
Exploits2
Veracode
Veracode
added 2022/08/31 2:58 a.m.11 views

Authentication Bypass

strapi-plugin-ezforms is vulnerable to authentication bypass. The vulnerability exists due to improper capture validation which allows a malicious user to login into the system using unauthorized capture...

3.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/08/31 12:0 a.m.44 views

FreeBSD : chromium -- multiple vulnerabilities (f2043ff6-2916-11ed-a1ef-3065ec8fd3ec)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the f2043ff6-2916-11ed-a1ef-3065ec8fd3ec advisory. - Use after free in Network Service. CVE-2022-3038 - Use after free in WebSQL. CVE-2022-3039,...

8.8CVSS7.8AI score0.24738EPSS
Exploits1References23
CNNVD
CNNVD
added 2022/08/30 12:0 a.m.1 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser from Google, an American company. A buffer overflow vulnerability previously existed in Google Chrome 105.0.5195.52, which stemmed from a boundary error when handling untrusted input in Screen Capture. An attacker could exploit this vulnerability to cause the buffer...

8.8CVSS7.8AI score0.00653EPSS
Exploits0References8
Kaspersky
Kaspersky
added 2022/08/30 12:0 a.m.514 views

KLA15732 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Layout can be exploited to caus...

8.8CVSS9.7AI score0.24738EPSS
Exploits3References4
CVE
CVE
added 2022/08/17 8:15 p.m.69 views

CVE-2022-2338

Softing Secure Integration Server V1.22 is affected by an authentication bypass vulnerability caused by cleartext transmission over HTTP that enables a machine-in-the-middle attack to capture a session cookie and authenticate to the server. Affected components include Secure Integration Server an...

5.7CVSS5.8AI score0.00187EPSS
Exploits0References2Affected Software6
Citrix
Citrix
added 2022/08/16 12:0 a.m.18 views

How to capture a full memory dump from a PVS target running on Azure

This article will cover the steps necessary to prepare an Azure VM running PVS to be able to capture a full memory dump...

7AI score
Exploits0
Huntr
Huntr
added 2022/08/08 10:45 p.m.9 views

Modify other people's articles by modifying the data package

Description The program does not check whether the originator of the request has this permission. I can modify the content of other people's articles and even modify the content by capturing data packets, even if I am not the owner of the article, even if I do not have permission in this respect...

0.3AI score
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2022/08/07 12:0 a.m.2 views

BitTorrent Protocol

BitTorrent is a communication protocol for peer-to-peer file sharing P2P, which enables users to distribute data and electronic files over the Internet in a decentralized manner. This protection can be used to detect the BitTorrent Protocol handshake, and with the packet capture, allows to extrac...

4AI score
Exploits0
Kitploit
Kitploit
added 2022/08/06 12:30 p.m.27 views

Pict - Post-Infection Collection Toolkit

This set of scripts is designed to collect a variety of data from an endpoint thought to be infected, to facilitate the incident response process. This data should not be considered to be a full forensic data collection, but does capture a lot of useful forensic information. If you want true...

6.9AI score
Exploits0References3
0day.today
0day.today
added 2022/07/31 12:0 a.m.279 views

Dingtian-DT-R002 3.1.276A - Authentication Bypass Exploit

Exploit Title: Dingtian-DT-R002 3.1.276A - Authentication Bypass Exploit Author: Victor Hanna Trustwave SpiderLabs Author Github Page: https://9lyph.github.io/CVE-2022-29593/ Vendor Homepage: https://www.dingtian-tech.com/enus/relay4.html Software Link:...

5.9CVSS0.4AI score0.10436EPSS
Exploits5
ATTACKERKB
ATTACKERKB
added 2022/07/29 9:15 p.m.2 views

CVE-2022-2324

Improperly Implemented Security Check vulnerability in the SonicWall Hosted Email Security leads to bypass of Capture ATP security service in the appliance. This vulnerability impacts 10.0.17.7319 and earlier versions...

7.5CVSS7AI score0.00533EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder