Lucene search
K

99 matches found

Vulnrichment
Vulnrichment
added 2023/10/10 1:12 p.m.19 views

CVE-2023-4966 Unauthenticated sensitive information disclosure

Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway VPN virtual server, ICA Proxy, CVPN, RDP Proxy or AAA virtual server...

9.4CVSS8.6AI score0.99999EPSS
Exploits15References2
NVD
NVD
added 2023/09/04 12:15 p.m.15 views

CVE-2023-4587

An IDOR vulnerability has been found in ZKTeco ZEM800 product affecting version 6.60. This vulnerability allows a local attacker to obtain registered user backup files or device configuration files over a local network or through a VPN server...

8.3CVSS8AI score0.00209EPSS
Exploits0References1
Prion
Prion
added 2023/09/04 12:15 p.m.17 views

Information disclosure

UNSUPPPORTED WHEN ASSIGNED An IDOR vulnerability has been found in ZKTeco ZEM800 product affecting version 6.60. This vulnerability allows a local attacker to obtain registered user backup files or device configuration files over a local network or through a VPN server...

1.7CVSS5.3AI score0.00209EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/04 11:23 a.m.11 views

CVE-2023-4587 Insecure direct object reference in ZKTeco ZEM800

An IDOR vulnerability has been found in ZKTeco ZEM800 product affecting version 6.60. This vulnerability allows a local attacker to obtain registered user backup files or device configuration files over a local network or through a VPN server...

8.3CVSS6.5AI score0.00209EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/09/04 11:23 a.m.38 views

CVE-2023-4587 Insecure direct object reference in ZKTeco ZEM800

An IDOR vulnerability has been found in ZKTeco ZEM800 product affecting version 6.60. This vulnerability allows a local attacker to obtain registered user backup files or device configuration files over a local network or through a VPN server...

8.3CVSS8.1AI score0.00209EPSS
Exploits0References1
NVD
NVD
added 2023/08/09 11:15 p.m.22 views

CVE-2023-36671

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel even if this traffic is not generated by the VPN client. Thi...

6.3CVSS6.3AI score0.00311EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2023/08/09 11:15 p.m.25 views

CVE-2023-36671

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel even if this traffic is not generated by the VPN client. Thi...

6.3CVSS6.6AI score0.00311EPSS
Exploits1References6
Cvelist
Cvelist
added 2023/08/09 12:0 a.m.22 views

CVE-2023-36671

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel even if this traffic is not generated by the VPN client. Thi...

6.5AI score0.00311EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/08/09 12:0 a.m.3 views

Clario VPN client security vulnerability

Clario VPN client is a VPN client for Mac from Clario. A security vulnerability exists in Clario VPN client macOS version 5.9.1.1662, which originates when the VPN client insecurely configures the operating system so that all IP traffic that gets to the VPN server's IP address is sent outside the...

6.3CVSS6.7AI score0.00311EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2023/08/09 12:0 a.m.16 views

CVE-2023-36671

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel even if this traffic is not generated by the VPN client. Thi...

6.8AI score0.00311EPSS
Exploits1References3
The Hacker News
The Hacker News
added 2023/07/21 5:26 a.m.179 views

Citrix NetScaler ADC and Gateway Devices Under Attack: CISA Urges Immediate Action

The U.S. Cybersecurity and Infrastructure Security Agency CISA issued an advisory on Thursday warning that the newly disclosed critical security flaw in Citrix NetScaler Application Delivery Controller ADC and Gateway devices is being abused to drop web shells on vulnerable systems. "In June 2023...

9.8CVSS10.2AI score0.99445EPSS
Exploits16
FreeBSD
FreeBSD
added 2023/06/30 12:0 a.m.24 views

SoftEtherVPN -- multiple vulnerabilities

Daiyuu Nobori reports: The SoftEther VPN project received a high level code review and technical assistance from Cisco Systems, Inc. of the United States from April to June 2023 to fix several vulnerabilities in the SoftEther VPN code. The risk of exploitation of any of the fixed vulnerabilities ...

9CVSS7.9AI score0.01416EPSS
Exploits6References1
NVD
NVD
added 2023/05/08 8:15 p.m.15 views

CVE-2023-28182

The issue was addressed with improved authentication. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. A user in a privileged network position may be able to spoof a VPN server that is configured with...

6.5CVSS5.1AI score0.00712EPSS
Exploits0References5
Prion
Prion
added 2023/05/08 8:15 p.m.11 views

Authentication flaw

The issue was addressed with improved authentication. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. A user in a privileged network position may be able to spoof a VPN server that is configured with...

4CVSS6AI score0.00712EPSS
Exploits0References5Affected Software3
Cvelist
Cvelist
added 2023/05/08 12:0 a.m.11 views

CVE-2023-28182

The issue was addressed with improved authentication. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. A user in a privileged network position may be able to spoof a VPN server that is configured with...

6.4AI score0.00712EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/05/08 12:0 a.m.7 views

CVE-2023-28182

The issue was addressed with improved authentication. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. A user in a privileged network position may be able to spoof a VPN server that is configured with...

5.1AI score0.00712EPSS
Exploits0References5
OSV
OSV
added 2022/11/21 3:15 p.m.3 views

CVE-2022-44167

Tenda AC15 V15.03.05.18 is avulnerable to Buffer Overflow via function formSetPPTPServer...

7.5CVSS5.8AI score0.00815EPSS
Exploits1References1
Cisco
Cisco
added 2022/10/19 4:0 p.m.45 views

Cisco Meraki MX and Z3 Teleworker Gateway VPN Denial of Service Vulnerability

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z3 Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of...

8.6CVSS8.5AI score0.00992EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/09/07 12:0 a.m.3 views

Cisco Small Business 授权问题漏洞

Cisco Small Business is a switch from Cisco USA. A security vulnerability exists in the Cisco Small Business RV110W, RV130, RV130W, and RV215W routers, which stems from a vulnerability in the authentication feature of the IPSec VPN server, which can be exploited by an attacker to bypass the...

9.8CVSS8.5AI score0.00838EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/05/24 3:15 a.m.5 views

CVE-2022-0910

A downgrade from two-factor authentication to one-factor authentication vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.32 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, and VPN series firmware...

6.5CVSS6.9AI score0.00657EPSS
Exploits0References2Affected Software4
Rows per page
Query Builder