Lucene search
K

402 matches found

Cisco
Cisco
added 2026/02/04 4:0 p.m.12 views

Cisco Secure Web Appliance Real-Time Scanning Archive File Bypass Vulnerability

A vulnerability in the Dynamic Vectoring and Streaming DVS Engine implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to bypass the anti-malware scanner, allowing malicious archive files to be downloaded. This vulnerability is du...

4CVSS5.6AI score0.0014EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.7 views

Cisco Secure Web Appliance 安全漏洞

Cisco Secure Web Appliance is an application developed by the American company Cisco. It is used to protect websites. There is a security vulnerability in Cisco Secure Web Appliance, which stems from the dynamic vector and stream engine’s improper handling of certain archive files. This...

4CVSS5.8AI score0.0014EPSS
Exploits0References2
Metasploit
Metasploit
added 2026/01/05 6:59 p.m.266 views

HTTPS Fetch, Linux Reboot

Fetch and execute an RISC-V 64-bit payload from an HTTPS server. A very small shellcode for rebooting the system using the reboot syscall. This payload is sometimes helpful for testing purposes. Requires CAPSYSBOOT privileges. Module Options msf use payload/cmd/linux/https/riscv64le/reboot msf...

5.8AI score
Exploits0
Metasploit
Metasploit
added 2026/01/05 6:59 p.m.265 views

HTTPS Fetch, Linux Command Shell, Bind TCP Inline

Fetch and execute an RISC-V 32-bit payload from an HTTPS server. Listen for a connection and spawn a command shell Module Options msf use payload/cmd/linux/https/riscv32le/shellbindtcp msf payloadshellbindtcp show actions ...actions... msf payloadshellbindtcp set ACTION msf payloadshellbindtcp sh...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/12/20 3:31 a.m.11 views

EUVD-2025-204620

The HTTPS server on Tapo C200 V3 does not properly validate the Content-Length header, which can lead to an integer overflow. An unauthenticated attacker on the same local network segment can send crafted HTTPS requests to trigger excessive memory allocation, causing the device to crash and...

7.1CVSS6.3AI score0.00224EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2025/12/14 10:26 p.m.138 views

CA2-Secure_Web_App

No d...

7AI score
Exploits0
Snyk
Snyk
added 2025/12/09 5:17 p.m.1 views

Protection Mechanism Failure

Overview mad-proxy is a Lightweight HTTP/HTTPS interception proxy with real-time traffic firewall and domain block. Affected versions of this package are vulnerable to Protection Mechanism Failure via the HTTP/HTTPS Traffic. An attacker can access sensitive traffic by bypassing established...

6.9CVSS6.7AI score0.00208EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/03 10:2 p.m.9 views

CVE-2025-13762

Improper Input Validation vulnerability in CyberArk CyberArk Secure Web Sessions Extension on Chrome, Edge allows Denial of Service when trying to starting new SWS sessions.This issue affects CyberArk Secure Web Sessions Extension: before 2.2.30305...

4.8CVSS6.8AI score0.00124EPSS
Exploits0References1
NVD
NVD
added 2025/11/27 3:15 a.m.17 views

CVE-2025-13762

Improper Input Validation vulnerability in CyberArk CyberArk Secure Web Sessions Extension on Chrome, Edge allows Denial of Service when trying to starting new SWS sessions.This issue affects CyberArk Secure Web Sessions Extension: before 2.2.30305...

4.8CVSS0.00124EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/27 2:50 a.m.14 views

CVE-2025-13762 Client-Side Denial of Service Condition in SWS Extension prior to version 2.2.30305

Improper Input Validation vulnerability in CyberArk CyberArk Secure Web Sessions Extension on Chrome, Edge allows Denial of Service when trying to starting new SWS sessions.This issue affects CyberArk Secure Web Sessions Extension: before 2.2.30305...

4.8CVSS0.00124EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/27 2:50 a.m.4 views

CVE-2025-13762 Client-Side Denial of Service Condition in SWS Extension prior to version 2.2.30305

Improper Input Validation vulnerability in CyberArk CyberArk Secure Web Sessions Extension on Chrome, Edge allows Denial of Service when trying to starting new SWS sessions.This issue affects CyberArk Secure Web Sessions Extension: before 2.2.30305...

4.8CVSS6.4AI score0.00124EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/27 12:0 a.m.9 views

PT-2025-48223

Improper Input Validation vulnerability in CyberArk CyberArk Secure Web Sessions Extension on Chrome, Edge allows Denial of Service when trying to starting new SWS sessions.This issue affects CyberArk Secure Web Sessions Extension: before 2.2.30305...

4.8CVSS6.8AI score0.00124EPSS
Exploits0References3
Hacker One
Hacker One
added 2025/11/10 6:4 p.m.19 views

curl: Silent TLS Trust Model Hijacking via `CURL_CA_BUNDLE` Environment Variable Leads to MITM

Summary: curl is vulnerable to silent Man-in-the-Middle MITM attacks due to its design, which implicitly trusts the CA certificate path specified in the CURLCABUNDLE environment variable. This mechanism allows the entire TLS trust model chain of trust of curl to be hijacked without any warning or...

6.8AI score
Exploits0
Cvelist
Cvelist
added 2025/10/16 7:0 p.m.6 views

CVE-2025-11493 Self-Update Verification Mechanism Process in ConnectWise Automate

The ConnectWise Automate Agent does not fully verify the authenticity of files downloaded from the server, such as updates, dependencies, and integrations. This creates a risk where an on-path attacker could perform a man-in-the-middle attack and substitute malicious files for legitimate ones by...

8.8CVSS0.00212EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-30184

Malware in sbrugna...

7.8CVSS7.6AI score0.00948EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-1999-0810

Malware in sbrugna...

5CVSS6.4AI score0.01522EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-24638

Malware in sbrugna...

7.8CVSS5.7AI score0.00788EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-31967

Malicious code in bioql PyPI...

6.1CVSS4.8AI score0.22002EPSS
Exploits4References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-34505

Malicious code in bioql PyPI...

8.1CVSS7.6AI score0.00187EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-24586

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00234EPSS
Exploits0References1
Rows per page
Query Builder