EUVD-2024-0842

Malicious code in bioql PyPI...

PT-2025-33336 · Cisco · Cisco Secure Firewall Threat Defense (Ftd)

Name of the Vulnerable Software and Affected Versions: Cisco Secure Firewall Threat Defense FTD Software affected versions not specified Description: A flaw exists in the Geolocation-Based Remote Access RA VPN feature that may allow a remote, unauthenticated attacker to circumvent configured HTTP...

BIT-HUBBLE-UI-BACKEND-2024-28248

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.13.9 and prior to versions 1.13.13, 1.14.8, and 1.15.2, Cilium's HTTP policies are not consistently applied to all traffic in the scope of the policies, leading to HTTP traffic being...

BIT-HUBBLE-RELAY-2023-30851 Potential HTTP policy bypass when using header rules in Cilium

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. This issue only impacts users who have a HTTP policy that applies to multiple toEndpoints AND have an allow-all rule in place that affects only one of those endpoints. In such cases, a wildcard rule will be...

CVE-2024-28248

CVE-2024-28248 affects Cilium before patches: HTTP policies in versions prior to 1.13.13, 1.14.8, and 1.15.2 were not consistently applied, causing HTTP traffic to be incorrectly forwarded instead of being dropped. The issue is mitigated by upgrading to 1.13.13, 1.14.8, or 1.15.2. No exploitation...

CVE-2024-28248 Cilium intermittent HTTP policy bypass

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.13.9 and prior to versions 1.13.13, 1.14.8, and 1.15.2, Cilium's HTTP policies are not consistently applied to all traffic in the scope of the policies, leading to HTTP traffic being...

CVE-2024-28248 Cilium intermittent HTTP policy bypass

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.13.9 and prior to versions 1.13.13, 1.14.8, and 1.15.2, Cilium's HTTP policies are not consistently applied to all traffic in the scope of the policies, leading to HTTP traffic being...

PT-2024-22363 · Cilium · Cilium

Name of the Vulnerable Software and Affected Versions: Cilium versions 1.13.9 through 1.13.12 Cilium versions 1.14.0 through 1.14.7 Cilium versions 1.15.0 through 1.15.1 Description: Cilium's HTTP policies are not consistently applied to all traffic in the scope of the policies, leading to HTTP...

CVE-2023-30851 Potential HTTP policy bypass when using header rules in Cilium

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. This issue only impacts users who have a HTTP policy that applies to multiple toEndpoints AND have an allow-all rule in place that affects only one of those endpoints. In such cases, a wildcard rule will be...

[SECURITY] Fedora 36 Update: varnish-modules-0.19.0-5.fc36

This is a collection of modules "vmods" extending Varnish VCL used for describing HTTP request/response policies with additional capabilities. This collection contains the following vmods: bodyaccess, header, saintmode, tcp, var, vsthrottle, xkey...

[SECURITY] Fedora 35 Update: varnish-modules-0.18.0-5.fc35

This is a collection of modules "vmods" extending Varnish VCL used for describing HTTP request/response policies with additional capabilities. This collection contains the following vmods: bodyaccess, header, saintmode, tcp, var, vsthrottle, xkey...

[SECURITY] Fedora 34 Update: varnish-modules-0.17.1-1.fc34

This is a collection of modules "vmods" extending Varnish VCL used for describing HTTP request/response policies with additional capabilities. This collection contains the following vmods: bodyaccess, header, saintmode, tcp, var, vsthrottle, xkey...

Security Vulnerabilities in Multiple Cisco Products

Cisco Firepower Threat Defense FTD and Cisco 3000 Series Industrial Security Appliances are both products of Cisco Corporation.Cisco Firepower Threat Defense is a suite of unified software that provides next-generation firewall services. Cisco Firepower Threat Defense is a suite of unified softwa...