Lucene search
K

38 matches found

EUVD
EUVD
added 10 hours ago4 views

EUVD-2026-41452

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WatchGuard Fireware OS SIP Proxy module allows Stored XSS. This vulnerability is an additional unmitigated attack path for CVE-2025-6947. This issue affects Fireware OS 12.0 up to and...

4.8CVSS5.7AI score0.00341EPSS
Exploits0References2
CVE
CVE
added yesterday8 views

CVE-2026-13377

WatchGuard Fireware OS SIP Proxy module is affected by a Stored XSS via improper input neutralization during web page generation. The vulnerability affects Fireware OS versions 12.0–12.12, 12.5–12.5.18, and 2025.1–2026.2. Root cause: improper sanitization in the SIP Proxy configuration web interf...

4.8CVSS5.7AI score
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-1741

Malware in sbrugna...

7.8CVSS6.3AI score0.01916EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-29269

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00341EPSS
Exploits0References2
NVD
NVD
added 2025/09/15 10:15 p.m.26 views

CVE-2025-6947

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WatchGuard Fireware OS allows Stored XSS via the SIP Proxy module. This vulnerability requires an authenticated administrator session to a locally managed Firebox. This issue affects Firebox...

4.8CVSS0.00341EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/15 9:18 p.m.3 views

CVE-2025-6947 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in SIP Proxy Configuration

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WatchGuard Fireware OS allows Stored XSS via the SIP Proxy module. This vulnerability requires an authenticated administrator session to a locally managed Firebox. This issue affects Firebox...

4.8CVSS5AI score0.00341EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.5 views

PT-2025-37770

Name of the Vulnerable Software and Affected Versions: WatchGuard Fireware OS versions 12.0 through 12.11.2 Description: A Stored Cross-site Scripting XSS issue exists within the SIP Proxy module of WatchGuard Fireware OS. Exploitation requires an authenticated administrator session to a locally...

4.8CVSS5.6AI score0.00341EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.156 views

SIP Deregister Extension

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SIP Deregister Extension', 'Description' = %q This module will attempt to deregister a SIP user from the provider. It has been tested successfull...

7.4AI score
Exploits0
Ubuntu
Ubuntu
added 2020/01/16 6:31 p.m.67 views

USN-4240-1: Kamailio vulnerability

It was discovered that Kamailio incorrectly handled a specially crafted file. An attacker could possibly use this issue to cause a denial of service or other unspecified impact...

9.8CVSS8.2AI score0.31338EPSS
Exploits0
NVD
NVD
added 2016/12/12 9:59 p.m.21 views

CVE-2016-9938

An issue was discovered in Asterisk Open Source 11.x before 11.25.1, 13.x before 13.13.1, and 14.x before 14.2.1 and Certified Asterisk 11.x before 11.6-cert16 and 13.x before 13.8-cert4. The chansip channel driver has a liberal definition for whitespace when attempting to strip the content betwe...

5.3CVSS5.3AI score0.03429EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/04/01 12:0 a.m.25 views

Debian DSA-3535-1 : kamailio - security update

Stelios Tsampas discovered a buffer overflow in the Kamailio SIP proxy which might result in the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-3535. The text...

10CVSS9AI score0.30518EPSS
Exploits4References3
Debian
Debian
added 2016/03/29 9:14 p.m.23 views

[SECURITY] [DSA 3535-1] kamailio security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3535-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 29, 2016 https://www.debian.org/security/faq -...

10CVSS9.8AI score0.30518EPSS
Exploits4
OpenVAS
OpenVAS
added 2016/03/29 12:0 a.m.27 views

Debian Security Advisory DSA 3535-1 (kamailio - security update)

Stelios Tsampas discovered a buffer overflow in the Kamailio SIP proxy which might result in the execution of arbitrary code. OpenVAS Vulnerability Test $Id: deb3535.nasl 6608 2017-07-07 12:05:05Z cfischer $ Auto-generated from advisory DSA 3535-1 using nvtgen 1.0 Script version: 1.0 Author:...

10CVSS0.7AI score0.30518EPSS
Exploits4References1
OSV
OSV
added 2016/03/29 12:0 a.m.17 views

DSA-3535-1 kamailio - security update

Bulletin has no description...

10CVSS9.5AI score0.30518EPSS
Exploits4
OpenVAS
OpenVAS
added 2016/03/28 12:0 a.m.21 views

Debian: Security Advisory (DSA-3535-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.6AI score0.30518EPSS
Exploits4References3
Prion
Prion
added 2015/10/08 8:59 p.m.22 views

Design/Logic Flaw

The REST interface in Cisco Unified Communications Manager IM and Presence Service 11.51 allows remote attackers to cause a denial of service SIP proxy service restart via a crafted HTTP request, aka Bug ID CSCuw31632...

5CVSS7AI score0.02211EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/10/08 8:0 p.m.27 views

CVE-2015-6310

The REST interface in Cisco Unified Communications Manager IM and Presence Service 11.51 allows remote attackers to cause a denial of service SIP proxy service restart via a crafted HTTP request, aka Bug ID CSCuw31632...

6.5AI score0.02211EPSS
Exploits0References2
Cisco
Cisco
added 2015/10/02 2:26 p.m.26 views

Cisco Unified Communications Manager IM and Presence Service REST API Denial of Service Vulnerability

A vulnerability in the Representational State Transfer REST interface of the Cisco Unified Communications Manager IM and Presence Service could allow an unauthenticated, remote attacker to cause a partial denial of service DoS condition because the Cisco Session Initiation Protocol SIP proxy...

5CVSS6.8AI score0.02211EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

reSIProcate 1.3.2 - Remote Denial of Service PoC

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Remote DoS in reSIProcate MU-200807-01 July 10, 2008 http://labs.mudynamics.com/advisories.html Affected Products/Versions: repro SIP proxy/registrar 1.3.2 http://www.resiprocate.org/ReSIProcate1.3.2Release Any produ...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2011/03/22 12:0 a.m.26 views

IBM WebSphere Application Server Multiple Vulnerabilities (Mar 2011)

IBM WebSphere Application Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS6.2AI score0.01187EPSS
Exploits0References4
Rows per page
Query Builder