Lucene search
+L

20 matches found

euvd
euvd
added 2026/05/02 8:0 p.m.29 views

EUVD-2026-26801

A vulnerability was identified in MikroTik RouterOS 6.49.8. This vulnerability affects the function ASN1STRINGdata in the library nova/lib/www/scep.p of the component SCEP Endpoint. The manipulation of the argument transactionID/messageType leads to out-of-bounds read. The attack may be initiated...

7.5CVSS6.8AI score0.003EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-11563

Malware in sbrugna...

7.5CVSS8.3AI score0.00726EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-15133

Malicious code in bioql PyPI...

8.7CVSS6.4AI score0.00295EPSS
Exploits0References1
nvd
nvd
added 2025/09/24 6:15 p.m.7 views

CVE-2025-20293

A vulnerability in the Day One setup process of Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers for Cloud 9800-CL could allow an unauthenticated, remote attacker to access the public-key infrastructure PKI server that is running on an affected device. This vulnerability is due...

5.3CVSS0.00185EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/04/13 2:36 a.m.53 views

CVE-2025-0128

A denial-of-service DoS vulnerability in the Simple Certificate Enrollment Protocol SCEP authentication feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes t...

8.7CVSS7.1AI score0.00295EPSS
Exploits0References3
nvd
nvd
added 2025/04/11 2:15 a.m.31 views

CVE-2025-0128

A denial-of-service DoS vulnerability in the Simple Certificate Enrollment Protocol SCEP authentication feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes t...

8.7CVSS0.00295EPSS
Exploits0References1
cvelist
cvelist
added 2025/04/11 2:3 a.m.38 views

CVE-2025-0128 PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted Packet

A denial-of-service DoS vulnerability in the Simple Certificate Enrollment Protocol SCEP authentication feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes t...

8.7CVSS0.00295EPSS
Exploits0References1
paloalto
paloalto
added 2025/04/09 4:0 p.m.37 views

PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted Packet

A denial-of-service DoS vulnerability in the Simple Certificate Enrollment Protocol SCEP authentication feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes t...

5.3CVSS7AI score0.00295EPSS
Exploits0References1
nessus
nessus
added 2025/04/09 12:0 a.m.19 views

Palo Alto Networks PAN-OS 10.1.x < 10.1.14-h11 / 10.2.x < 10.2.10-h17 / 11.0.x < 11.0.6 / 11.1.x < 11.1.5 / 11.2.x < 11.2.3 Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is 10.1.x prior to 10.1.14-h11 or 10.2.x prior to 10.2.10-h17 or 11.0.x prior to 11.0.6 or 11.1.x prior to 11.1.5 or 11.2.x prior to 11.2.3. It is, therefore, affected by a vulnerability. A denial-of-service DoS vulnerability in...

8.7CVSS5.7AI score0.00295EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2024/10/16 12:0 a.m.8 views

The vulnerability of the Simple Certificate Enrollment Protocol (SCEP) implementation in Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Simple Certificate Enrollment Protocol SCEP implementation in Windows operating systems is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS5.5AI score0.02219EPSS
Exploits0References2
nvd
nvd
added 2024/10/08 6:15 p.m.16 views

CVE-2024-43541

Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability...

7.5CVSS0.02309EPSS
Exploits0References1
cvelist
cvelist
added 2024/10/08 5:35 p.m.33 views

CVE-2024-43544 Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability

...

7.5CVSS0.02219EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/10/08 5:35 p.m.19 views

CVE-2024-43541 Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability

...

7.5CVSS7.2AI score0.02309EPSS
Exploits0References1
cvelist
cvelist
added 2024/10/08 5:35 p.m.43 views

CVE-2024-43541 Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability

...

7.5CVSS0.02309EPSS
Exploits0References1
nessus
nessus
added 2021/11/18 12:0 a.m.59 views

Palo Alto Networks PAN-OS 8.1.x < 8.1.20-h1 / 9.0.x < 9.0.14-h3 / 9.1.x < 9.1.11-h2 / 10.0.x < 10.0.8 / 10.1.x < 10.1.3 Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is 8.1.x prior to 8.1.20-h1 or 9.0.x prior to 9.0.14-h3 or 9.1.x prior to 9.1.11-h2 or 10.0.x prior to 10.0.8 or 10.1.x prior to 10.1.3. It is, therefore, affected by a vulnerability. - An OS command injection vulnerability in th...

9.3CVSS8.3AI score0.33875EPSS
Exploits1References5
cnvd
cnvd
added 2021/11/13 12:0 a.m.34 views

Palo Alto Networks PAN-OS SCEP feature command injection vulnerability

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks, Inc. for its firewall appliances.A command injection vulnerability exists in Palo Alto Networks PAN-OS, which stems from an OS command injection vulnerability in the software's SCEP Simple Certificate The...

9.3CVSS2.9AI score0.33875EPSS
Exploits1References1
prion
prion
added 2021/11/10 5:15 p.m.23 views

Command injection

An OS command injection vulnerability in the Simple Certificate Enrollment Protocol SCEP feature of PAN-OS software allows an unauthenticated network-based attacker with specific knowledge of the firewall configuration to execute arbitrary code with root user privileges. The attacker must have...

9.3CVSS8.5AI score0.33875EPSS
Exploits1References3Affected Software2
cvelist
cvelist
added 2021/11/10 5:10 p.m.32 views

CVE-2021-3060 PAN-OS: OS Command Injection in Simple Certificate Enrollment Protocol (SCEP)

An OS command injection vulnerability in the Simple Certificate Enrollment Protocol SCEP feature of PAN-OS software allows an unauthenticated network-based attacker with specific knowledge of the firewall configuration to execute arbitrary code with root user privileges. The attacker must have...

8.1CVSS8.7AI score0.33875EPSS
Exploits1References3
paloalto
paloalto
added 2021/11/10 5:0 p.m.124 views

PAN-OS: OS Command Injection in Simple Certificate Enrollment Protocol (SCEP)

An OS command injection vulnerability in the Simple Certificate Enrollment Protocol SCEP feature of PAN-OS software allows an unauthenticated network-based attacker with specific knowledge of the firewall configuration to execute arbitrary code with root user privileges. The attacker must have...

8.1CVSS8.8AI score0.33875EPSS
Exploits1References3
ptsecurity
ptsecurity
added 2021/08/25 12:0 a.m.10 views

PT-2021-22796 · Primekey · Primekey Ejbca

Name of the Vulnerable Software and Affected Versions: PrimeKey EJBCA versions prior to 7.6.0 Description: An issue was discovered where the enrollment secret for SCEP, CMP, EST, and Auto-enrollment aliases is reflected on a page, accessible to administrators. Although the secret is hidden from...

3.5CVSS3.8AI score0.00542EPSS
Exploits0References3
Rows per page
Query Builder