Data Interception And Manipulation

Gorush is vulnerable to Data Interception and Manipulation. The vulnerability is due to the use of a deprecated TLS version in the RunHTTPServer function within servernormal.go, which allows an attacker to intercept and manipulate data...

PT-2024-36335 · N Able · Ecosystem Agent

Name of the Vulnerable Software and Affected Versions: Ecosystem Agent versions 4.0 through 4.1.5.2597 Ecosystem Agent versions 5.0 through 5.1.4.2473 Description: The issue is related to the improper validation of SSL/TLS certificates. This could allow a malicious actor to perform a...

GHSA-P3PF-MFF8-3H47 Gorush uses deprecated TLS versions

An issue discovered in the RunHTTPServer function in Gorush v1.18.4 allows attackers to intercept and manipulate data due to use of deprecated TLS version...

Gorush uses deprecated TLS versions

An issue discovered in the RunHTTPServer function in Gorush v1.18.4 allows attackers to intercept and manipulate data due to use of deprecated TLS version...

CVE-2024-41270

An issue discovered in the RunHTTPServer function in Gorush v1.18.4 allows attackers to intercept and manipulate data due to use of deprecated TLS version...

CVE-2024-41270

An issue discovered in the RunHTTPServer function in Gorush v1.18.4 allows attackers to intercept and manipulate data due to use of deprecated TLS version...

CVE-2024-41270

An issue discovered in the RunHTTPServer function in Gorush v1.18.4 allows attackers to intercept and manipulate data due to use of deprecated TLS version...

Gorush 安全漏洞

Gorush is a push notification server written in Go by Bo-Yi Wu, an individual developer. A security vulnerability exists in Gorush v1.18.4, which stems from the use of a deprecated version of TLS in the RunHTTPServer function. An attacker can use this vulnerability to intercept and manipulate dat...

CVE-2024-41270

An issue discovered in the RunHTTPServer function in Gorush v1.18.4 allows attackers to intercept and manipulate data due to use of deprecated TLS version...

CVE-2024-41270

CVE-2024-41270 affects Gorush (RunHTTPServer) in v1.18.4. The issue arises from using a deprecated TLS version, enabling an attacker to intercept and manipulate data. The connected sources (Red Hat, OSV, GHSA, Veracode, NVD, and related catalogs) consistently describe the same root cause and impa...

Man-in-the-middle (MitM) Attack

github.com/codenotary/immudb is vulnerable to a man-in-the-middle MitM attack. The vulnerability is due to the use of the HTTP protocol in the ShowMetricsRaw and ShowMetricsAsText functions, which allows an attacker to intercept communications between the client and server...

New Android Banking Trojan BingoMod Steals Money, Wipes Devices

Cybersecurity researchers have uncovered a new Android remote access trojan RAT called BingoMod that not only performs fraudulent money transfers from the compromised devices but also wipes them in an attempt to erase traces of the malware. Italian cybersecurity firm Cleafy, which discovered the...

CVE-2024-41262

mmudb v1.9.3 was discovered to use the HTTP protocol in the ShowMetricsRaw and ShowMetricsAsText functions, possibly allowing attackers to intercept communications via a man-in-the-middle attack...

PT-2024-10385 · Firebird · Firebird

Name of the Vulnerable Software and Affected Versions: Firebird component of "Популяционный раковый регистр" and "Госпитальный раковый регистр" affected versions not specified Description: The issue is related to the use of an insecure authentication method, Legacy Auth, in the Firebird component...

The vulnerability of dependency managers for Swift and Objective-C CocoaPods, related to the provision of data elements during an erroneous session, allows a perpetrator to intercept the owner’s session and take control of another person’s CocoaPods trunk account.

The vulnerability of the dependency manager for Swift and Objective-C CocoaPods relates to the provision of data elements during an erroneous session. Exploiting this vulnerability can allow a remote attacker to intercept the user’s session and take control of their CocoaPods trunk account...

CVE-2024-41685

Summary: CVE-2024-41685 affects the SyroTech SY-GPON-1110-WDONT router. Root cause: session cookies used by the router’s web management interface lack the HTTPOnly flag, enabling potential cookie theft. Impact (as stated): an attacker with remote access could intercept HTTP session transmissions,...

CVE-2024-41684 Cookie Without Secure Flag Set Vulnerability

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to missing secure flag for the session cookies associated with the router's web management interface. An attacker with remote access could exploit this by intercepting transmission within an HTTP session on the vulnerable system...

The vulnerability in the web client of IBM Datacap Navigator software for document collection and processing allows attackers to execute cross-site scripting attacks, cache poisoning attacks, or intercept sessions. This vulnerability is related to deficiencies in HTTP request processing.

The vulnerability of the IBM Datacap Navigator web client software for document collection and processing involves shortcomings in the processing of HTTP header requests. Exploiting this vulnerability allows a malicious actor to execute cross-site scripting attacks, cache poisoning attacks, or...

Alert: HotPage Adware Disguised as Ad Blocker Installs Malicious Kernel Driver

Cybersecurity researchers have shed light on an adware module that purports to block ads and malicious websites, while stealthily offloading a kernel driver component that grants attackers the ability to run arbitrary code with elevated permissions on Windows hosts. The malware, dubbed HotPage,...

GHSA-5V69-92VW-FMJH Apache StreamPark: maven build params could trigger remote command execution

In streampark, the project module integrates Maven's compilation capabilities. The input parameter validation is not strict, allowing attackers to insert commands for remote command execution, The prerequisite for a successful attack is that the user needs to log in to the streampark system and...