6 matches found
CVE-2025-59419 Netty netty-codec-smtp SMTP Command Injection Vulnerability Allowing Email Forgery
Netty is an asynchronous, event-driven network application framework. In versions prior to 4.1.128.Final and 4.2.7.Final, the SMTP codec in Netty contains an SMTP command injection vulnerability due to insufficient input validation for Carriage Return \r and Line Feed \n characters in user-suppli...
Golang Go SSH Library Security Bypass Vulnerability
Golang Go is a programming language optimized for programming applications on multiprocessor systems. A security bypass vulnerability exists in the Golang Go SSH Library. An attacker can exploit this vulnerability to perform a man-in-the-middle attack or emulate a trusted server...
Kaspersky Safe Browser Security Bypass Vulnerability
Kaspersky Safe Browser is a security browser product developed by Kaspersky Lab Russia. A security bypass vulnerability exists in Kaspersky Safe Browser, which can be exploited by attackers to conduct man-in-the-middle attacks or impersonate a trusted server...
Pollinate Certificate Validation Security Bypass Vulnerability
Pollen is a free web server for providing entropy in TLS-encrypted HTTPS or plaintext HTTP connections.Pollinate is a free script for retrieving entropy from one or more Pollen servers and a local pseudo-random number generator RNG. A security bypass vulnerability exists in Pollinate. As the...
Ansible Security Bypass Vulnerability
Ansible is a newly emerged operation and maintenance tool that is based on Python and combines the advantages of many old operation and maintenance tools to achieve batch operating system configuration, batch program deployment, batch running commands and other functions. A security bypass...
Ogaki Kyoritsu bank Smartphone Passbook Security Bypass Vulnerability
Ogaki Kyoritsu bank Smartphone Passbook is a suite of mobile banking passbook applications from Ogaki Kyoritsu Bank Corporation in Japan. A security bypass vulnerability exists in Ogaki Kyoritsu bank Smartphone Passbook, which can be exploited by remote attackers to conduct man-in-the-middle...