Lucene search
K

27 matches found

Cvelist
Cvelist
added 2023/10/11 9:4 p.m.53 views

CVE-2023-44190 Junos OS Evolved: PTX10001, PTX10004, PTX10008, PTX10016: MAC address validation bypass vulnerability

An Origin Validation vulnerability in MAC address validation of Juniper Networks Junos OS Evolved on PTX10001, PTX10004, PTX10008, and PTX10016 devices allows a network-adjacent attacker to bypass MAC address checking, allowing MAC addresses not intended to reach the adjacent LAN to be forwarded ...

6.1CVSS6.5AI score0.00167EPSS
Exploits0References1
OSV
OSV
added 2022/02/11 4:15 p.m.7 views

UBUNTU-CVE-2020-13674

The QuickEdit module does not properly validate access to routes, which could allow cross-site request forgery under some circumstances and lead to possible data integrity issues. Sites are only affected if the QuickEdit module which comes with the Standard profile is installed. Removing the...

6.5CVSS6.5AI score0.00456EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/02/18 11:40 p.m.17 views

Route Validation Bypass in call

Affected versions of call do not validate empty parameters, which may result in a bypass of route validation rules. Proof of Concept Routing Scheme: /api/param/param2/details Triggering Request Path: /api/// Recommendation Update to version 3.0.2 or later...

5.3CVSS3.3AI score0.01235EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2018/05/31 8:29 p.m.16 views

CVE-2016-10543

call is an HTTP router that is primarily used by the hapi framework. There exists a bug in call versions 2.0.1-3.0.1 that does not validate empty parameters, which could result in invalid input bypassing the route validation rules...

5.3CVSS5.6AI score
Exploits0References2
Prion
Prion
added 2018/05/31 8:29 p.m.12 views

Design/Logic Flaw

call is an HTTP router that is primarily used by the hapi framework. There exists a bug in call versions 2.0.1-3.0.1 that does not validate empty parameters, which could result in invalid input bypassing the route validation rules...

5CVSS7AI score0.01235EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2018/05/31 8:0 p.m.61 views

CVE-2016-10543

The vulnerability CVE-2016-10543 affects the call HTTP router used by the hapi framework, with versions 2.0.1–3.0.1 not validating empty parameters, permitting bypass of route validation rules. Impact is described as potential input bypass leading to validation bypass. The public advisories (GitH...

5.3CVSS5.2AI score0.01235EPSS
Exploits1References2Affected Software1
Node.js
Node.js
added 2016/07/05 3:50 p.m.38 views

Route Validation Bypass

Overview Affected versions of call do not validate empty parameters, which may result in a bypass of route validation rules. Proof of Concept Routing Scheme: /api/param/param2/details Triggering Request Path: /api/// Recommendation Update to version 3.0.2 or later. References - Issue 3228 - GitHu...

5CVSS3.3AI score0.01235EPSS
Exploits1Affected Software1
Rows per page
Query Builder