149 matches found
The VDI screen does not display properly when used with Third-party remote connection application
Connecting to the client via a Third-party remote connection application, Then connecting through ICA, the VDI screen is not displayed correctly...
Devolutions Remote Desktop Manager 授权问题漏洞
Devolutions Remote Desktop Manager is an application from Devolutions Canada. It provides remote desktop management functionality. A security vulnerability exists in Devolutions Remote Desktop Manager version 2023.2.19 and prior versions that stems from insufficient privilege validation. An...
FreeBSD-SA-23:08.ssh
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-23:08.ssh Security Advisory The FreeBSD Project Topic: Potential remote code execution via ssh-agent forwarding Category: contrib Module: OpenSSH Announced:...
CVE-2023-30367
The CVE-2023-30367 entry concerns mRemoteNG prior to fixed versions (<= v1.76.20 and
CVE-2023-34761
An unauthenticated attacker within BLE proximity can remotely connect to a 7-Eleven LED Message Cup, Hello Cup 1.3.1 for Android, and bypass the application's client-side chat censor filter...
CVE-2023-34761
An unauthenticated attacker within BLE proximity can remotely connect to a 7-Eleven LED Message Cup, Hello Cup 1.3.1 for Android, and bypass the application's client-side chat censor filter...
Authentication flaw
An unauthenticated attacker within BLE proximity can remotely connect to a 7-Eleven LED Message Cup, Hello Cup 1.3.1 for Android, and bypass the application's client-side chat censor filter...
CVE-2023-0922
The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection...
CVE-2023-0922
The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection...
K71960814: OpenSSH vulnerability CVE-2016-1908
Security Advisory Description The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by...
mRemoteNG 安全漏洞
mRemoteNG is mRemoteNG open source an open source, tabbed, multi-protocol remote connection manager for Windows. A security vulnerability exists in mRemoteNG version 1.76.20 that stems from improper privilege management. An attacker can exploit the vulnerability to elevate privileges...
CVE-2022-41579
There is an insufficient authentication vulnerability in some Huawei band products. Successful exploit could allow the attacker to spoof then connect to the band...
Design/Logic Flaw
An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.5. An upload of an arbitrary file to a victim's local /Downloads/ directory is possible if the victim is using the AnyDesk Windows client to connect to a remote machine, if an attacker is also connected remotely with AnyDesk to...
CVE-2021-44426
The CVE-2021-44426 issue affects AnyDesk for Windows prior to version 6.2.6 and 6.3.x prior to 6.3.5. The vulnerability enables an attacker who is remotely connected to the same remote machine as the victim (without victim interaction) to upload an arbitrary file to the victim’s local ~/Downloads...
Security Bulletin: Operations Dashboard is vulnerable to remote connection exploit by Go CVE-2022-30629
Summary Operations Dashboard is vulnerable to remote connection exploit by Go CVE-2022-30629 with details below Vulnerability Details CVEID:CVE-2022-30629 DESCRIPTION: Golang Go could allow a remote attacker to obtain sensitive information, caused by an issue with session tickets generated by...
Splunk Enterprise and Universal Forwarder < 9.0 Improper Certificate Validation
In Splunk Enterprise and Universal Forwarder versions before 9.0, the Splunk command-line interface CLI did not validate TLS certificates while connecting to a remote Splunk platform instance by default. Splunk peer communications configured properly with valid certificates were not vulnerable...
Jenkins Plugin Beaker 跨站请求伪造漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building, deploying, and automating any project. An attacker could use this vulnerability to connect to a specified URL by...
CVE-2022-0947 Arctic Wireless Gateway Firewall vulnerability
A vulnerability in ABB ARG600 Wireless Gateway series that could allow an attacker to exploit the vulnerability by remotely connecting to the serial port gateway, and/or protocol converter, depending on the configuration...
CVE-2022-0947
CVE-2022-0947 affects the ABB ARG600 Wireless Gateway series. The vulnerability allows an attacker to remotely connect to the serial port gateway and/or protocol converter, depending on configuration, enabling high-severity impact. Public metrics show a CVSS v3.1 base score of 9.8 (CRITICAL) with...
CVE-2022-23242
TeamViewer Linux versions before 15.28 do not properly execute a deletion command for the connection password in case of a process crash. Knowledge of the crash event and the TeamViewer ID as well as either possession of the pre-crash connection password or local authenticated access to the machi...