Lucene search
+L

526 matches found

Packet Storm News
Packet Storm News
added 2026/01/24 12:0 a.m.5 views

Safeguard: Security Controls at the Software Defined Network Layer

Improvements in software defined networking allow for policy to be informed and modified by data-driven applications that can adjust policy to accommodate fluctuating requirements at line speed. However, there is some concern that over-correction can occur and cause unintended consequences...

5.6AI score
Exploits0
Cvelist
Cvelist
added 2026/01/15 7:18 p.m.20 views

CVE-2026-23766

...

0.00036EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.13 views

PT-2026-3101

Name of the Vulnerable Software and Affected Versions Istio versions through 1.28.2 Description Istio versions through 1.28.2 permit the injection of iptables rules, potentially altering firewall behavior. This is achieved through the traffic.sidecar.istio.io/excludeInterfaces annotation. The...

4.1CVSS6.9AI score0.00036EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2026/01/14 7:45 a.m.282 views

Exploit for Code Injection in Vmware Spring_Framework

CVE-2022-22965-Spring4Shell-Security-Operations-Analysis A com...

9.8CVSS8.9AI score0.99677EPSS
Exploits103
RedhatCVE
RedhatCVE
added 2026/01/09 12:31 p.m.10 views

CVE-2023-4809

In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6 fragment headers would be reassembled, and then immediately processed. That is, a packet with multiple fragment extension headers would not be recognized as the correct ultimate payload. Instead a...

7.5CVSS6.9AI score0.0068EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:18 a.m.10 views

CVE-2019-18992

OpenWrt 18.06.4 allows XSS via these Name fields to the cgi-bin/luci/admin/network/firewall/rules URI: "Open ports on router" and "New forward rule" and "New Source NAT" this can occur, for example, on a TP-Link Archer C7 device...

5.4CVSS5.9AI score0.00529EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/08 3:18 a.m.8 views

CVE-2026-0669

A flaw was found in the MediaWiki CSS extension. This vulnerability, categorized as a Path Traversal, allows a remote attacker to access restricted directories. By manipulating file paths, an attacker can read arbitrary files on the server, potentially leading to the disclosure of sensitive...

7.5CVSS6.3AI score0.00379EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/17 11:10 p.m.4 views

CVE-2025-68435 Zerobyte has Authentication Bypass by Primary Weakness

Zerobyte is a backup automation tool Zerobyte versions prior to 0.18.5 and 0.19.0 contain an authentication bypass vulnerability where authentication middleware is not properly applied to API endpoints. This results in certain API endpoints being accessible without valid session credentials. This...

9.1CVSS6.7AI score0.0037EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/17 8:7 a.m.7 views

CVE-2025-37731

A flaw was found in Elasticsearch. This vulnerability allows user impersonation via specially crafted client certificates signed by a legitimate, trusted Certificate Authority CA. Mitigation To reduce the risk of exploitation, ensure that the Certificate Authority CA used for the Elasticsearch PK...

7.4CVSS6.4AI score0.00162EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2025/12/04 12:0 a.m.16 views

A Practical Honeypot-Based Threat Intelligence Framework for Cyber Defence in the Cloud

In cloud environments, conventional firewalls rely on predefined rules and manual configurations, limiting their ability to respond effectively to evolving or zero-day threats. As organizations increasingly adopt platforms such as Microsoft Azure, this static defense model exposes cloud assets to...

6.8AI score
Exploits0
CNVD
CNVD
added 2025/11/11 12:0 a.m.3 views

Advantech WebAccess/VPN AjaxFwRulesController.ajaxNetworkFwRulesAction function SQL injection vulnerability

Advantech WebAccess/VPN is a virtual private network feature integrated in Advantech WebAccess/SCADA software, designed to provide a secure and reliable network connectivity solution for industrial automation and remote monitoring systems. Advantech WebAccess/VPN suffers from a SQL injection...

6.5CVSS8.4AI score0.00284EPSS
Exploits0References1
OSV
OSV
added 2025/11/06 8:15 p.m.3 views

CVE-2025-34243

Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in AjaxFwRulesController.ajaxNetworkFwRulesAction that allows an authenticated low-privileged observer user to inject SQL via datatable search parameters, leading to disclosure of database information...

6.5CVSS5.8AI score0.00284EPSS
Exploits0References3
Snyk
Snyk
added 2025/10/09 7:42 p.m.1 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF when processing user-supplied URLs. An attacker can cause the server to send unauthorized requests to arbitrary internal or external services by submitting crafted URLs. Workaround This vulnerability can...

8.8CVSS7AI score0.00225EPSS
Exploits0References2
OSV
OSV
added 2025/10/09 6:58 p.m.6 views

CVE-2025-59146 New API has Authenticated Server-Side Request Forgery (SSRF) issue

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. An authenticated Server-Side Request Forgery SSRF vulnerability exists in versions prior to 0.9.0.5. A feature within the application allows authenticated users to submit a URL for the server to...

8.5CVSS6.7AI score0.00225EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2005-2318

Malware in sbrugna...

7.5CVSS6.1AI score0.02305EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-0450

Malware in sbrugna...

7.1CVSS6AI score0.04638EPSS
Exploits0References26
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-15706

Malware in sbrugna...

9.8CVSS9.2AI score0.02358EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-13937

Malware in sbrugna...

9.8CVSS9.4AI score0.15948EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-1999-0508

Malware in sbrugna...

7.5CVSS6.4AI score0.01518EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-0834

Malware in sbrugna...

5.9CVSS6.1AI score0.01269EPSS
Exploits0References4
Rows per page
Query Builder