43 matches found
CVE-2023-4336
CVE-2023-4336 affects Broadcom RAID Controller web interface. Root cause: insecure default HTTP configuration that fails to set the Secure attribute on cookies. Reported impact includes high confidentiality, integrity, and availability concerns (networks exploitability with no user interaction; b...
CVE-2023-4336 Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard cookies with Secure attribute
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard cookies with Secure attribute...
PT-2023-28815 · Broadcom · Broadcom Raid Controller
Name of the Vulnerable Software and Affected Versions: Broadcom RAID Controller affected versions not specified Description: The Broadcom RAID Controller web interface is vulnerable due to an insecure default HTTP configuration that does not provide X-Content-Type-Options Headers. This issue...
CVE-2022-48311
UNSUPPORTED WHEN ASSIGNED Cross Site Scripting XSS in HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR and Product Model Number A9U23B allows authenticated attacker to inject their own script into the page via HTTP configuration page. NOTE: This vulnerability only affects products tha...
Cross site scripting
UNSUPPORTED WHEN ASSIGNED Cross Site Scripting XSS in HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR and Product Model Number A9U23B allows authenticated attacker to inject their own script into the page via HTTP configuration page. NOTE: This vulnerability only affects products tha...
CVE-2023-23127
In Connectwise Control 22.8.10013.8329, the login page does not implement HSTS headers therefore not enforcing HTTPS. NOTE: the vendor's position is that, by design, this is controlled by a configuration option in which a customer can choose to use HTTP rather than HTTPS during troubleshooting...
Denial Of Service (DoS)
github.com/Dreamacro/clash is vulnerable to denial of service. The vulnerability exists because the library does not limit the http or https configuration files, allowing an attacker to crash the application by providing an embedded malicious iframe with a crafted URL...
PT-2021-7303 · Eclipse +1 · Eclipse Jetty +1
Name of the Vulnerable Software and Affected Versions: Eclipse Jetty versions 9.4.37.v20210219 through 9.4.38.v20210224 Description: The default compliance mode in Eclipse Jetty allows requests with URIs that contain %2e or %2e%2e segments to access protected resources within the WEB-INF director...
CVE-2020-14325
A vulnerability was found in Red Hat CloudForms which allows a malicious attacker to impersonate any user or create a non-existent user with any entitlement in the appliance and perform an API request. Mitigation Red Hat recommends upgrading to secured released versions, however, this flaw can be...
UBUNTU-CVE-2018-8007
Apache CouchDB administrative users can configure the database server via HTTPS. Due to insufficient validation of administrator-supplied configuration settings via the HTTP API, it is possible for a CouchDB administrator user to escalate their privileges to that of the operating system's user th...
Information disclosure
An information exposure vulnerability in default HTTP configuration file in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain sensitive system information via .htaccess file...
CVE-2017-12080
An information exposure vulnerability in default HTTP configuration file in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain sensitive system information via .htaccess file...
CVE-2017-12080
CVE-2017-12080 affects Synology Photo Station prior to 6.8.1-3458 and prior to 6.3-2970. An information-disclosure vulnerability exists in the default HTTP configuration file that can let remote attackers obtain sensitive system information via an .htaccess file. The root cause is exposure via th...
Apple Mac OS X Web Service component (HTTP header) Security Bypass Vulnerability
Apple Mac OS X is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:apple:osxserver";...
Cisco IOS 11.x/12.x HTTP Configuration Arbitrary Administrative Access Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/2936/info IOS is router firmware developed and distributed by Cisco Systems. IOS functions on numerous Cisco devices, including routers and switches. It is possible to gain full remote administrative access on devices usi...
Cisco IOS 11.x/12.x HTTP Configuration Arbitrary Administrative Access Vulnerability (4)
No description provided by source. source: http://www.securityfocus.com/bid/2936/info IOS is router firmware developed and distributed by Cisco Systems. IOS functions on numerous Cisco devices, including routers and switches. It is possible to gain full remote administrative access on devices usi...
Cisco IOS 11.x/12.x HTTP Configuration Arbitrary Administrative Access Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/2936/info IOS is router firmware developed and distributed by Cisco Systems. IOS functions on numerous Cisco devices, including routers and switches. It is possible to gain full remote administrative access on devices usi...
HyperText Transfer Protocol (HTTP) Information
This test gives some information about the remote HTTP protocol - the version used, whether HTTP Keep-Alive is enabled, etc... This test is informational only and does not denote any security problem. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid24260;...
Communigate Pro < 3.2 HTTP Configuration Port Remote Overflow
Binary data 1502.prm...
CommuniGate Pro < 3.2 HTTP Configuration Port Remote Overflow (deprecated)
Binary data 2006.prm...