Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:47 p.m.9 views

CVE-2026-45179

Plack::Middleware::Statsd versions before 0.9.0 for Perl may leak user IP addresses. If the communication channel to the statsd daemon is not secured for example, by sending UDP packets to a host on another network, then users' IP addresses may be leaked. Since version 0.9.0, the IP address is no...

5.3CVSS5.4AI score0.00219EPSS
Exploits0References1
NVD
NVD
added 2026/05/10 9:16 p.m.17 views

CVE-2026-45180

Catalyst::Plugin::Statsd versions through 0.10.0 for Perl may leak session ids. If the communication channel to the statsd daemon is not secured for example, by sending UDP packets to a host on another network, then users' session ids may be leaked. This may allow an attacker to use session ids a...

7.5CVSS0.00244EPSS
Exploits0References4
CVE
CVE
added 2026/05/10 8:3 p.m.16 views

CVE-2026-45180

CVE-2026-45180 affects Catalyst::Plugin::Statsd for Perl up to version 0.10.0. The issue is leakage of session IDs when the communication channel to the statsd daemon is unsecured (e.g., UDP to a different network). This could allow an attacker to use leaked session IDs as authentication tokens. ...

7.5CVSS5.8AI score0.00244EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/10 8:3 p.m.35 views

CVE-2026-45180 Catalyst::Plugin::Statsd versions through 0.10.0 for Perl may leak session ids

Catalyst::Plugin::Statsd versions through 0.10.0 for Perl may leak session ids. If the communication channel to the statsd daemon is not secured for example, by sending UDP packets to a host on another network, then users' session ids may be leaked. This may allow an attacker to use session ids a...

0.00244EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/10 7:10 p.m.16 views

CVE-2026-45179 Plack::Middleware::Statsd versions before 0.9.0 for Perl may leak user IP addresses

Plack::Middleware::Statsd versions before 0.9.0 for Perl may leak user IP addresses. If the communication channel to the statsd daemon is not secured for example, by sending UDP packets to a host on another network, then users' IP addresses may be leaked. Since version 0.9.0, the IP address is no...

5.8AI score0.00219EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/10 12:0 a.m.15 views

PT-2026-39537

Name of the Vulnerable Software and Affected Versions Catalyst::Plugin::Statsd versions prior to 0.10.0 Description Catalyst::Plugin::Statsd for Perl may leak session ids. This occurs if the communication channel to the statsd daemon is not secured, such as when sending UDP packets to a host on...

7.5CVSS5.8AI score0.00244EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/01/12 10:27 p.m.6 views

CVE-2023-22597

InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-S-V2.3.0.r5542, contain vulnerability CWE-319: Cleartext Transmission of Sensitive Information. They use an unsecured channel to communicate with the cloud platform by default. An...

6.5CVSS6.9AI score0.00513EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/03 12:0 a.m.6 views

PT-2023-1275 · Inhand Networks · Inrouter302 +1

Name of the Vulnerable Software and Affected Versions: InHand Networks InRouter 302 versions prior to IR302 V3.5.56 InHand Networks InRouter 615 versions prior to InRouter6XX-S-V2.3.0.r5542 Description: The issue is related to the use of an unsecured channel for data transmission by default, whic...

6.5CVSS6.3AI score0.00513EPSS
Exploits0References5
OSV
OSV
added 2022/01/06 12:15 p.m.5 views

CVE-2021-44564

A security vulnerability originally reported in the SYNC2101 product, and applicable to specific sub-families of SYNC devices, allows an attacker to download the configuration file used in the device and apply a modified configuration file back to the device. The attack requires network access to...

8.1CVSS7.2AI score0.00916EPSS
Exploits0References2
securityvulns
securityvulns
added 2002/09/11 12:0 a.m.38 views

Secure cookie access in Knoqueror

Cookie with secure flag may be sent via unsecured channel...

2.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2001/11/12 12:0 a.m.30 views

Слабое шифрование в Datek Streamer (weak encryption)

Часть важных данных о пользователе уходит по незащищенному каналу...

0.9AI score
Exploits0References1
Rows per page
Query Builder