Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.10 views

PT-2026-39254

Name of the Vulnerable Software and Affected Versions free5GC versions prior to 4.2.2 Description The UDR nudr-dr handler in free5GC contains an issue where a single authenticated request can cause a panic. This occurs when a request is made to the endpoint "DELETE...

6.5CVSS5.8AI score0.0042EPSS
Exploits1References8
CNNVD
CNNVD
added 2026/04/16 12:0 a.m.12 views

free5GC 安全漏洞

free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC prior to 4.2.1 contained security vulnerabilities. These vulnerabilities stemmed from the PUT request handler in the UDR service, which failed to properly return values after request parsing or...

6.9CVSS5.9AI score0.00321EPSS
Exploits1References2
NVD
NVD
added 2021/12/07 2:15 p.m.14 views

CVE-2021-42127

A deserialization of untrusted data vulnerability exists in Ivanti Avalanche before 6.3.3 using Inforail Service allows arbitrary code execution via Data Repository Service...

9.8CVSS0.65833EPSS
Exploits0References1
OSV
OSV
added 2021/12/07 2:15 p.m.4 views

CVE-2021-42127

A deserialization of untrusted data vulnerability exists in Ivanti Avalanche before 6.3.3 using Inforail Service allows arbitrary code execution via Data Repository Service...

9.8CVSS7.8AI score0.65833EPSS
Exploits0References1
Prion
Prion
added 2021/12/07 2:15 p.m.17 views

Deserialization of untrusted data

A deserialization of untrusted data vulnerability exists in Ivanti Avalanche before 6.3.3 using Inforail Service allows arbitrary code execution via Data Repository Service...

7.5CVSS9.7AI score0.65833EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/12/07 1:13 p.m.17 views

CVE-2021-42127

A deserialization of untrusted data vulnerability exists in Ivanti Avalanche before 6.3.3 using Inforail Service allows arbitrary code execution via Data Repository Service...

9.9AI score0.65833EPSS
Exploits0References1
CVE
CVE
added 2021/12/07 1:13 p.m.54 views

CVE-2021-42127

CVE-2021-42127 affects Ivanti Avalanche before 6.3.3, where deserialization of untrusted data via the Inforail Service (Data Repository Service) allows arbitrary code execution. The Red Hat/NVD/CVE pages corroborate the vulnerability description across multiple feeds. The issue manifests in the I...

9.8CVSS9.7AI score0.65833EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder