402 matches found
CVE-2025-40183
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forces outgoing K8s Pod traffic to pass through dedicated egress gateways which then SNAT the traffic in order to interact with stable I...
CVE-2025-52331
Cross-site scripting XSS vulnerability in the generate report functionality in Rarlab WinRAR 7.11, allows attackers to disclose user information such as the computer username, generated report directory, and IP address. The generate report command includes archived file names without validation i...
CVE-2025-27916
An issue was discovered in AnyDesk for Windows before 9.0.6 and AnyDesk for Android before 8.0.0. When the connection between two clients is established via an IP address, it is possible to manipulate the data and spoof the AnyDesk ID...
CVE-2025-27916
An issue was discovered in AnyDesk for Windows before 9.0.6 and AnyDesk for Android before 8.0.0. When the connection between two clients is established via an IP address, it is possible to manipulate the data and spoof the AnyDesk ID...
Vulnerabilities fixed in Rockwell Automation COMMS
Rockwell Automation has fixed vulnerabilities in COMMS NATR systems. The vulnerabilities include multiple broken authentication issues that pose serious risks, including denial-of-service attacks, possible takeovers of admin accounts and improper changes to NAT rules. In addition, there is a Stor...
CVE-2025-62820
Slack Nebula before 1.9.7 mishandles CIDR in some configurations and thus accepts arbitrary source IP addresses within the Nebula network...
Unspecified Vulnerability in Rockwell Automation Comms-1783-NATR
Rockwell Automation Comms-1783-NATR is an industrial Ethernet address translation device from Rockwell Automation. A security vulnerability exists in the Rockwell Automation Comms-1783-NATR that stems from a lack of authentication checks for critical functions and can be exploited by an attacker ...
F5 BIG-IP ePVA Denial of Service Vulnerability
F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, and remote access policy management. A denial-of-service vulnerability exists in the ePVA module of BIG-IP. The vulnerability arises due to undisclosed traffic tha...
CVE-2025-53856
When a virtual server, network address translation NAT object, or secure network address translation SNAT object uses the embedded Packet Velocity Acceleration ePVA feature, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. To determine which BIG-IP platforms have...
EUVD-2025-34637
When a virtual server, network address translation NAT object, or secure network address translation SNAT object uses the embedded Packet Velocity Acceleration ePVA feature, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. To determine which BIG-IP platforms have...
CVE-2025-53856
When a virtual server, network address translation NAT object, or secure network address translation SNAT object uses the embedded Packet Velocity Acceleration ePVA feature, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. To determine which BIG-IP platforms have...
CVE-2025-53856
When a virtual server, network address translation NAT object, or secure network address translation SNAT object uses the embedded Packet Velocity Acceleration ePVA feature, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. To determine which BIG-IP platforms have...
CVE-2025-53856 TMM vulnerability
When a virtual server, network address translation NAT object, or secure network address translation SNAT object uses the embedded Packet Velocity Acceleration ePVA feature, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. To determine which BIG-IP platforms have...
CVE-2025-53856 TMM vulnerability
When a virtual server, network address translation NAT object, or secure network address translation SNAT object uses the embedded Packet Velocity Acceleration ePVA feature, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. To determine which BIG-IP platforms have...
CVE-2025-53856
CVE-2025-53856 (TMM ePVA DoS) : The vulnerability affects BIG-IP when the embedded ePVA feature is used by a NAT/SNAT/virtual server and the Auto Last Hop setting is disabled, allowing undisclosed traffic to terminate the Traffic Management Microkernel (TMM) and cause DoS. A remote, unauthenticat...
CVE-2025-7328
Multiple Broken Authentication security issues exist in the affected product. The security issues are due to missing authentication checks on critical functions. These could result in potential denial-of-service, admin account takeover, or NAT rule modifications. Devices would no longer be able t...
Rockwell Automation Comms-1783-NATR 安全漏洞
Rockwell Automation Comms-1783-NATR is an industrial Ethernet address translation device from Rockwell Automation. A security vulnerability exists in the Rockwell Automation Comms-1783-NATR that stems from a lack of authentication checks for critical functions and can be exploited by an attacker ...
Tenda AC7 命令注入漏洞
Tenda AC7 is a wireless router from Tenda, a Chinese company. A command injection vulnerability exists in Tenda AC7 version 15.03.06.44, which originates from the failure to properly filter the parameter lanIp in the file /goform/AdvSetLanip to construct command special characters, commands, etc...
EUVD-2021-10116
Malware in sbrugna...
EUVD-2018-0842
Malware in sbrugna...