Lucene search
K

192 matches found

NVD
NVD
added 2024/09/25 3:15 p.m.9 views

CVE-2024-30128

HCL Nomad server on Domino is affected by an open proxy vulnerability in which an unauthenticated attacker can mask their original source IP address. This may enable an attacker to trick the user into exposing sensitive information...

8.6CVSS0.00375EPSS
Exploits0References1
CVE
CVE
added 2024/09/25 2:42 p.m.43 views

CVE-2024-30128

The vulnerability affects the HCL Nomad server on Domino . It is an open proxy flaw that allows an unauthenticated attacker to mask their original source IP address, potentially deceiving users into exposing sensitive information. Product/vendor/version details in the connected PT-2024-23201 entr...

8.6CVSS8.6AI score0.00375EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/12/11 12:30 a.m.26 views

GHSA-RXG9-HGQ7-8PWX Header spoofing in caddy-geo-ip

The caddy-geo-ip aka GeoIP middleware through 0.6.0 for Caddy 2, when trustheader X-Forwarded-For is used, allows attackers to spoof their source IP address via an X-Forwarded-For header, which may bypass a protection mechanism trustedproxy directive in reverseproxy or IP address range restrictio...

6.5CVSS6.3AI score0.00655EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/12/11 12:0 a.m.21 views

Cisco Firepower Threat Defense Software VPN Packet Validation (cisco-sa-asa-ssl-vpn-Y88QOm77)

According to its self-reported version, Cisco FTD Software is affected by a VPN packet validation vulnerability that could allow an authenticated, remote attacker to send packets with another VPN user's source IP address. This vulnerability is due to improper validation of the packet's inner sour...

4.3CVSS5.4AI score0.00412EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/12/11 12:0 a.m.28 views

Cisco Adaptive Security Appliance Software VPN Packet Validation (cisco-sa-asa-ssl-vpn-Y88QOm77)

According to its self-reported version, Cisco ASA Software is affected by a VPN packet validation vulnerability that could allow an authenticated, remote attacker to send packets with another VPN user's source IP address. This vulnerability is due to improper validation of the packet's inner sour...

4.3CVSS5.4AI score0.00412EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/12/10 11:15 p.m.2 views

CVE-2023-50463

The caddy-geo-ip aka GeoIP middleware through 0.6.0 for Caddy 2, when trustheader X-Forwarded-For is used, allows attackers to spoof their source IP address via an X-Forwarded-For header, which may bypass a protection mechanism trustedproxy directive in reverseproxy or IP address range restrictio...

6.5CVSS6.6AI score0.00655EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.30 views

Rocky Linux 8 : container-tools:rhel8 (RLSA-2021:1796)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:1796 advisory. - A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause ...

7.5CVSS7.4AI score0.03228EPSS
Exploits1References37
Tenable Nessus
Tenable Nessus
added 2023/11/02 12:0 a.m.27 views

F5 Networks BIG-IP : NTP vulnerability (K44305703)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3 / 17.5.1.3. It is, therefore, affected by a vulnerability as referenced in the K44305703 advisory. The ntpd daemon in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated...

7.5CVSS6.6AI score0.02081EPSS
Exploits0References2
OSV
OSV
added 2023/07/17 2:36 p.m.14 views

GHSA-VJH7-5R6X-XH6G CasaOS Gateway vulnerable to incorrect identification of source IP addresses

Impact Unauthenticated attackers can execute arbitrary commands as root on CasaOS instances. Patches The problem was addressed by improving the detection of client IP addresses in 391dd7f. This patch is part of CasaOS 0.4.4. Workarounds Users should upgrade to CasaOS 0.4.4. If they can't, they...

9.8CVSS9.6AI score0.06363EPSS
Exploits1References6
Citrix
Citrix
added 2023/04/19 12:0 a.m.5 views

How to control IP address returned in a DNS query based on source IP address (local DNS IP address)

This article contains information about how to control IP address returned in a DNS query based on source IP address local DNS IP address The IP addresses DNS returned must work inactive/standby mode. Also, you can use DNS policy expressions to monitor load balancing service statusassociate to th...

6.7AI score
Exploits0
NVD
NVD
added 2023/03/17 8:15 p.m.16 views

CVE-2023-27594

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

7.3CVSS5.2AI score0.00552EPSS
Exploits0References4
Prion
Prion
added 2023/03/17 8:15 p.m.14 views

Design/Logic Flaw

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

7.5CVSS7.1AI score0.00552EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/03/17 7:56 p.m.20 views

CVE-2023-27594 Cilium vulnerable to potential network policy bypass when routing IPv6 traffic

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

4.2CVSS7.2AI score0.00552EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:50 a.m.4 views

SUSE CVE-2011-4138

The verifyexists functionality in the URLField implementation in Django before 1.2.7 and 1.3.x before 1.3.1 originally tests a URL's validity through a HEAD request, but then uses a GET request for the new target URL in the case of a redirect, which might allow remote attackers to trigger arbitra...

5CVSS7AI score0.02341EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:39 a.m.3 views

SUSE CVE-2013-1841

Net-Server, when the reverse-lookups option is enabled, does not check if the hostname resolves to the source IP address, which might allow remote attackers to bypass ACL restrictions via the hostname parameter...

4.3CVSS7.1AI score0.01944EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/01/06 12:0 a.m.34 views

JVN#55675303: Digital Arts m-FILTER vulnerable to improper authentication

m-FILTER provided by Digital Arts Inc. is an emaill security product. m-FILTER contains an improper authentication vulnerability CWE-287 when emails are being sent under certain conditions, and unintended emails may be sent by a remote attacker. Digital Arts Inc. states that attacks exploiting th...

5.3CVSS5.5AI score0.00706EPSS
Exploits0
NVD
NVD
added 2022/12/22 8:15 p.m.20 views

CVE-2020-15679

An OAuth session fixation vulnerability existed in the VPN login flow, where an attacker could craft a custom login URL, convince a VPN user to login via that URL, and obtain authenticated access as that user. This issue is limited to cases where attacker and victim are sharing the same source IP...

7.6CVSS0.00469EPSS
Exploits0References4
Prion
Prion
added 2022/12/22 8:15 p.m.21 views

Session fixation

An OAuth session fixation vulnerability existed in the VPN login flow, where an attacker could craft a custom login URL, convince a VPN user to login via that URL, and obtain authenticated access as that user. This issue is limited to cases where attacker and victim are sharing the same source IP...

6.8CVSS6.6AI score0.00469EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/11/22 12:0 a.m.61 views

Oracle Linux 9 : podman (ELSA-2022-7954)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-7954 advisory. 2:4.2.0-3.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.2.0-3 - fix dependency in test subpackage - Related:...

7.5CVSS7.3AI score0.07032EPSS
Exploits7References9
Tenable Nessus
Tenable Nessus
added 2022/11/19 12:0 a.m.41 views

AlmaLinux 9 : podman (ALSA-2022:7954)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:7954 advisory. - In x/text in Go 1.15.4, an index out of range panic occurs in language.ParseAcceptLanguage while parsing the -u- extension. x/text/language is supposed ...

7.5CVSS7.5AI score0.07032EPSS
Exploits7References9
Rows per page
Query Builder