Lucene search
K

29 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-32236

Malicious code in bioql PyPI...

7.6CVSS7.8AI score0.04063EPSS
Exploits1References20
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-2854

Malicious code in bioql PyPI...

7.3CVSS7.5AI score0.00236EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.64 views

EUVD-2023-40615

Malicious code in bioql PyPI...

5.7CVSS5.7AI score0.00681EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-40614

Malicious code in bioql PyPI...

6.3CVSS6.5AI score0.00311EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-36673

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the...

7.3CVSS7.2AI score0.00622EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 2:31 a.m.7 views

CVE-2023-36672

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if the local network is using a non-RFC1918 IP subnet. This allows an...

5.7CVSS6.7AI score0.00681EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:28 a.m.8 views

CVE-2023-36673

An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel, even if this traffic is not generated by the VPN client, while...

7.3CVSS6.9AI score0.00622EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/03/31 12:0 a.m.30 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.10.1.5)

The version of AOS installed on the remote host is prior to 6.10.1.5. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.10.1.5 advisory. - virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic templa...

9.8CVSS7.6AI score0.62474EPSS
Exploits9References8
RedHat Linux
RedHat Linux
added 2025/01/16 2:22 p.m.6 views

DHCP: DHCP routing options can manipulate interface-based VPN traffic

DHCP can add routes to a client’s routing table via the classless static route option 121. VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify...

7.6CVSS7.3AI score0.04063EPSS
Exploits1References24
NVD
NVD
added 2024/09/17 12:15 a.m.22 views

CVE-2024-44165

A logic issue was addressed with improved checks. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, macOS Sonoma 14.7, macOS Ventura 13.7, visionOS 2. Network traffic may leak outside a VPN tunnel...

7.5CVSS0.00784EPSS
Exploits0References12
CVE
CVE
added 2024/09/16 11:23 p.m.70 views

CVE-2024-44165

CVE-2024-44165 is a logic-issue vulnerability fixed by Apple in multiple OS updates. It allows network traffic to leak outside a VPN tunnel. Affected are macOS: Ventura 13.7; Sonoma 14.7; Sequoia 15; iOS/iPadOS: 17.7, 18; and visionOS 2. Root cause described as a logic issue addressed with improv...

7.5CVSS5.8AI score0.00784EPSS
Exploits0References12Affected Software1
NVD
NVD
added 2024/05/06 7:15 p.m.12 views

CVE-2024-3661

DHCP can add routes to a client’s routing table via the classless static route option 121. VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify...

7.6CVSS7.4AI score0.04063EPSS
Exploits1References20
OSV
OSV
added 2024/03/25 10:15 a.m.2 views

UBUNTU-CVE-2021-47160

In the Linux kernel, the following vulnerability has been resolved: net: dsa: mt7530: fix VLAN traffic leaks PCRMATRIX field was set to all 1's when VLAN filtering is enabled, but was not reset when it is disabled, which may cause traffic leaks: ip link add br0 type bridge vlanfiltering 1 ip link...

7.1CVSS6.6AI score0.00233EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/03/25 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the PCRMATRIX field being set to all 1's when VLAN filtering is enabled, but not reset when disabled, which...

7.1CVSS6.6AI score0.00233EPSS
Exploits0References8
SonicWall
SonicWall
added 2023/10/31 5:44 a.m.13 views

TunnelCrack Vulnerabilities

SonicWall PSIRT is aware of a research publication that outlines a series of attacks known as 'TunnelCrack' vulnerabilities. These attacks occur when VPN client traffic leaks outside of the secure VPN tunnel, typically happening when clients connect to untrusted networks, like rogue Wi-Fi access...

7.3CVSS6.5AI score0.00812EPSS
Exploits4
OSV
OSV
added 2023/08/09 11:15 p.m.4 views

CVE-2023-36673

An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel, even if this traffic is not generated by the VPN client, while...

7.3CVSS7.2AI score0.00622EPSS
Exploits1References3
OSV
OSV
added 2023/08/09 11:15 p.m.6 views

CVE-2023-36671

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel even if this traffic is not generated by the VPN client. Thi...

6.3CVSS5.8AI score0.00311EPSS
Exploits1References3
NVD
NVD
added 2023/08/09 11:15 p.m.14 views

CVE-2023-36672

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if the local network is using a non-RFC1918 IP subnet. This allows an...

5.7CVSS5.6AI score0.00681EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2023/08/09 11:15 p.m.6 views

CVE-2023-36673

An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel, even if this traffic is not generated by the VPN client, while...

7.3CVSS7.2AI score0.00622EPSS
Exploits1References4
OSV
OSV
added 2023/08/09 11:15 p.m.6 views

UBUNTU-CVE-2023-36672

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if the local network is using a non-RFC1918 IP subnet. This allows an...

5.7CVSS6.3AI score0.00681EPSS
Exploits1References6
Rows per page
Query Builder