CVE-2026-24516

DigitalOcean Droplet Agent (droplet-agent)

CVE-2026-24516

A command injection vulnerability exists in DigitalOcean Droplet Agent through 1.3.2. The troubleshooting actioner component internal/troubleshooting/actioner/actioner.go processes metadata from the metadata service endpoint and executes commands specified in the TroubleshootingAgent.Requesting...

Security Advisory 0124

Security Advisory 0124 PDF Date: October 22, 2025 Revision | Date | Changes ---|---|--- 1.0 | October 22, 2025 | Initial release The following issues were discovered in Arista DANZ Monitoring Fabric DMF. These issues affect DMF, Converged Cloud Fabric CCF, CloudVision Appliance CVA, and Multi-Clo...

Configuring the SSH Service Port Properly

A server typically has multiple NICs and IP addresses. You need to plan IP addresses to determine which ones are used for services or management. Not all IP addresses need to listen on SSH connections. You can specify only some IP addresses to perform SSH connections to reduce the attack surface...

Weak TLS Ciphers on Brocade SANnav OVA SSH port 22. (CVE-2024-4282)

Brocade SANnav OVA before SANnav 2.3.1b enables SHA1 deprecated setting for SSH for port 22. Detail The SSH protocol Secure Shell is a method for secure remote login from one computer to another. The target is using deprecated SHA1 cryptographic settings to communicate. IMPACT: vulnerable to...

PT-2024-1425 · Jenkins +1 · Jenkins Git Server Plugin +2

Name of the Vulnerable Software and Affected Versions: Jenkins Git server Plugin versions 99.va 0826a b cdfa d and earlier Description: The issue is related to the command parser feature in the Jenkins Git server Plugin that replaces an '@' character followed by a file path in an argument with th...