89 matches found
EUVD-2019-7092
Malware in sbrugna...
EUVD-2017-15780
Malware in sbrugna...
EUVD-2015-4296
Malware in sbrugna...
EUVD-2015-4298
Malware in sbrugna...
EUVD-2020-24754
Malware in sbrugna...
EUVD-2023-24230
Malicious code in bioql PyPI...
The vulnerability of the sanitiseArg and sanitizeArg configuration in the network gateway for protecting web applications, ModSecurity, allows a attacker to cause a service failure.
The vulnerability of the sanitiseArg and sanitizeArg configuration functions in the network gateway for protecting web applications under ModSecurity is related to excessive resource consumption. Exploiting this vulnerability can allow an attacker to cause service interruptions...
CVE-2018-7340
Duo Network Gateway 1.2.9 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing the attack to potentially bypass authenticatio...
CVE-2022-20849 Cisco IOS XR Software Broadband Network Gateway PPPoE Denial of Service Vulnerability
A vulnerability in the Broadband Network Gateway PPP over Ethernet PPPoE feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the PPPoE process to continually crash. This vulnerability exists because the PPPoE feature does not properly handle an error...
CVE-2022-20849 Cisco IOS XR Software Broadband Network Gateway PPPoE Denial of Service Vulnerability
A vulnerability in the Broadband Network Gateway PPP over Ethernet PPPoE feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the PPPoE process to continually crash. This vulnerability exists because the PPPoE feature does not properly handle an error...
CISA Alerts Federal Agencies to Patch Actively Exploited Linux Kernel Flaw
The U.S. Cybersecurity and Infrastructure Security Agency CISA on Thursday added a security flaw impacting the Linux kernel to the Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. Tracked as CVE-2024-1086 CVSS score: 7.8, the high-severity issue relates to a...
CVE-2024-30867
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/editvirtualsiteinfo.php...
CVE-2024-20327
A vulnerability in the PPP over Ethernet PPPoE termination feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to crash the pppma process, resulting in a denial of service DoS condition. This vulnerability is du...
High-Severity Flaws Uncovered in Bosch Thermostats and Smart Nutrunners
Multiple security vulnerabilities have been disclosed in Bosch BCC100 thermostats and Rexroth NXA015S-36V-B smart nutrunners that, if successfully exploited, could allow attackers to execute arbitrary code on affected systems. Romanian cybersecurity firm Bitdefender, which discovered the flaw in...
CVE-2023-20051
A vulnerability in the Vector Packet Processor VPP of Cisco Packet Data Network Gateway PGW could allow an unauthenticated, remote attacker to stop ICMP traffic from being processed over an IPsec connection. This vulnerability is due to the VPP improperly handling a malformed packet. An attacker...
CVE-2023-20051 Cisco Packet Data Network Gateway IPsec ICMP Denial of Service Vulnerability
A vulnerability in the Vector Packet Processor VPP of Cisco Packet Data Network Gateway PGW could allow an unauthenticated, remote attacker to stop ICMP traffic from being processed over an IPsec connection. This vulnerability is due to the VPP improperly handling a malformed packet. An attacker...
CVE-2023-20051 Cisco Packet Data Network Gateway IPsec ICMP Denial of Service Vulnerability
A vulnerability in the Vector Packet Processor VPP of Cisco Packet Data Network Gateway PGW could allow an unauthenticated, remote attacker to stop ICMP traffic from being processed over an IPsec connection. This vulnerability is due to the VPP improperly handling a malformed packet. An attacker...
Red Lion DA50N has an unspecified vulnerability (CNVD-2022-65326)
Red Lion DA50N is a series of secure edge network gateways from Red Lion, U.S.A. A security vulnerability exists in the Red Lion DA50N that could be exploited by an attacker to gain access to stored credentials and thereby gain access to protected resources...
Netgear NETGEAR 命令注入漏洞
Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. A security vulnerability exists in certain NETGEAR devices that stems from the lack of effective filtering and escaping of command parameters...
Netgear RBR750和NETGEAR 命令注入漏洞
Netgear RBR750 and NETGEAR are both products of Netgear, Inc.RBR750 is a home WiFi system.NETGEAR is a router. A hardware device that connects two or more networks and acts as a gateway between them. A security vulnerability exists in some NETGEAR devices that stems from the lack of effective...