35 matches found
CVE-2025-62000
BullWall Ransomware Containment has an incomplete file-inspection mechanism that relies on header-byte evaluation. An authenticated attacker could encrypt a file while leaving the first four bytes unchanged, bypassing this specific detection method. The issue is limited: BullWall also employs add...
CVE-2025-62000 BullWall Ransomware Containment incomplete file inspection
BullWall Ransomware Containment may not always detect an encrypted file. This issue affects a specific file inspection method that evaluates file content based on header bytes. An authenticated attacker could encrypt files, preserving the first four bytes and preventing this particular method fro...
CVE-2025-62000 BullWall Ransomware Containment incomplete file inspection
BullWall Ransomware Containment may not always detect an encrypted file. This issue affects a specific file inspection method that evaluates file content based on header bytes. An authenticated attacker could encrypt files, preserving the first four bytes and preventing this particular method fro...
PT-2025-52338
Name of the Vulnerable Software and Affected Versions BullWall Ransomware Containment versions 4.6.0.0 through 4.6.1.4 Description BullWall Ransomware Containment does not fully inspect files to identify ransomware. An attacker with valid credentials can bypass detection by encrypting a file whil...
EUVD-2019-4292
Malware in sbrugna...
EUVD-2025-6194
Malicious code in bioql PyPI...
EUVD-2022-25988
Malicious code in bioql PyPI...
CVE-2025-47778
Sulu is an open-source PHP content management system based on the Symfony framework. Starting in versions 2.5.21, 2.6.5, and 3.0.0-alpha1, an admin user can upload SVG which may load external data via XML DOM library. This can be used for insecure XML External Entity References. The problem has...
Design/Logic Flaw
The Image Optimizer by 10web WordPress plugin before 1.0.27 does not sanitize the dir parameter when handling the getsubdirs ajax action, allowing a high privileged users such as admins to inspect names of files and directories outside of the sites root...
Path traversal
Git, a revision control system, is vulnerable to path traversal prior to versions 2.39.2, 2.38.4, 2.37.6, 2.36.5, 2.35.7, 2.34.7, 2.33.7, 2.32.6, 2.31.7, and 2.30.8. By feeding a crafted input to git apply, a path outside the working tree can be overwritten as the user who is running git apply. A...
Cisco Umbrella Information Disclosure Vulnerability
Cisco Umbrella is a cloud security platform from Cisco. Cisco Umbrella Secure Web Gateway has a security vulnerability caused by an insufficient restriction in the file inspection feature, which can be exploited by attackers to bypass the file inspection feature...
CVE-2022-20738
A vulnerability in the Cisco Umbrella Secure Web Gateway service could allow an unauthenticated, remote attacker to bypass the file inspection feature. This vulnerability is due to insufficient restrictions in the file inspection feature. An attacker could exploit this vulnerability by downloadin...
Design/Logic Flaw
A vulnerability in the Cisco Umbrella Secure Web Gateway service could allow an unauthenticated, remote attacker to bypass the file inspection feature. This vulnerability is due to insufficient restrictions in the file inspection feature. An attacker could exploit this vulnerability by downloadin...
CVE-2022-20738 Cisco Umbrella Secure Web Gateway File Inspection Bypass Vulnerability
A vulnerability in the Cisco Umbrella Secure Web Gateway service could allow an unauthenticated, remote attacker to bypass the file inspection feature. This vulnerability is due to insufficient restrictions in the file inspection feature. An attacker could exploit this vulnerability by downloadin...
CVE-2022-20738 Cisco Umbrella Secure Web Gateway File Inspection Bypass Vulnerability
A vulnerability in the Cisco Umbrella Secure Web Gateway service could allow an unauthenticated, remote attacker to bypass the file inspection feature. This vulnerability is due to insufficient restrictions in the file inspection feature. An attacker could exploit this vulnerability by downloadin...
CVE-2022-20738
CVE-2022-20738 affects Cisco Umbrella Secure Web Gateway; vulnerability in the file inspection feature due to insufficient restrictions allows an unauthenticated attacker to bypass file inspection and download a malicious payload. Documented impact ranges from partial to high confidentiality/inte...
Cisco Umbrella 安全漏洞
Cisco Umbrella is a cloud security platform from Cisco. Cisco Umbrella Secure Web Gateway has a security vulnerability caused by an insufficient restriction in the file inspection feature, which can be exploited by attackers to bypass the file inspection feature...
CVE-2022-20738
A vulnerability in the Cisco Umbrella Secure Web Gateway service could allow an unauthenticated, remote attacker to bypass the file inspection feature. This vulnerability is due to insufficient restrictions in the file inspection feature. An attacker could exploit this vulnerability by downloadin...
Cisco Umbrella Secure Web Gateway File Inspection Bypass Vulnerability
A vulnerability in the Cisco Umbrella Secure Web Gateway service could allow an unauthenticated, remote attacker to bypass the file inspection feature. This vulnerability is due to insufficient restrictions in the file inspection feature. An attacker could exploit this vulnerability by downloadin...
Github developer-be 代码问题漏洞
Edgegallery developer-be is a developer platform that provides development tools/testing environment/online deployment for App developers, divided into two parts: developer-be is the backend part, providing interface calls, and developer-fe is the frontend part, providing interface display...