Improper Certificate Validation

Overview faye-websocket is a Standards-compliant WebSocket server and client. Affected versions of this package are vulnerable to Improper Certificate Validation in TLS handshakes. The Faye::WebSocket::Client class uses the EM::Connectionstarttls method in EventMachine to implement the TLS...

vertx: WebSocket HTTP upgrade implementation holds the entire http request in memory before the handshake

In version from 3.0.0 to 3.5.3 of Eclipse Vert.x, the WebSocket HTTP upgrade implementation buffers the full http request before doing the handshake, holding the entire request body in memory. There should be a reasonnable limit 8192 bytes above which the WebSocket gets an HTTP response with the...

Mattermost Server Access Control Error Vulnerability

Mattermost Server is the United States Mattermost company's set of open source messaging platform. An Access Control Error vulnerability exists in Mattermost Server versions prior to 5.18.0, which arises from a network system or product that does not properly restrict access to resources from...

ai.mrs:masons-java-sdk (>=1.0.0 <=1.2.3), app.keyconnect:keyconnect-chainbase (=1.0.0) +628 more potentially affected by CVE-2020-11050 via org.java-websocket:Java-WebSocket (>=1.3.0 <=1.4.1)

org.java-websocket:Java-WebSocket MAVEN version =1.3.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =3.1.2, =1.3-RELEASE, =1.2, =8.0.3, =8.0.3, =8.0.3, =8.0.3, =5.0.2, =1.0.3.1-JDK21, =1.0.3.2-JDK21 and more Source cves: CVE-2020-11050 Source advisory: OSV:GHSA-GW55-JM4H-X339...

CVE-2020-9345

An issue was discovered in signotec signoPAD-API/Web formerly Websocket Pad Server before 3.1.1 on Windows. It is possible to perform a Denial of Service attack because the application doesn't limit the number of opened WebSocket sockets. If a victim visits an attacker-controlled website, this...

Information Disclosure

nova is vulnerable to information disclosure. The vulnerability exists as the novncproxy tokens are logged in plaintext when it is sent through the web socket proxy...

Evoko Home Information Disclosure Vulnerability

Evoko Home is a smart home device. A security vulnerability exists in Evoko Home version 1.31. The vulnerability can be exploited by a remote attacker to obtain sensitive information via a WebSocket request...

tomcat: Host name verification missing in WebSocket client

The host name verification when using TLS with the WebSocket client was missing. It is now enabled by default. Versions Affected: Apache Tomcat 9.0.0.M1 to 9.0.9, 8.5.0 to 8.5.31, 8.0.0.RC1 to 8.0.52, and 7.0.35 to 7.0.88...

VMware Fusion Virtual Machine Side Remote Code Execution Vulnerability

VMware Fusion is a virtual machine software for the Mac operating system from VMware. A remote code execution vulnerability exists on the virtual machine side of VMware Fusion, which can be exploited by an attacker to execute arbitrary code on all virtual machines with VMware Tools installed via...

CVE-2019-5514

VMware VMware Fusion 11.x before 11.0.3 contains a security vulnerability due to certain unauthenticated APIs accessible through a web socket. An attacker may exploit this issue by tricking the host user to execute a JavaScript to perform unauthorized functions on the guest machine where VMware...

Improper access control

VMware VMware Fusion 11.x before 11.0.3 contains a security vulnerability due to certain unauthenticated APIs accessible through a web socket. An attacker may exploit this issue by tricking the host user to execute a JavaScript to perform unauthorized functions on the guest machine where VMware...

CVE-2019-5514

CVE-2019-5514 is a VMware Fusion vulnerability where unauthenticated APIs accessible through a web socket can be abused to trick the host user into running JavaScript on the guest via VMware Tools, potentially enabling commands on the guest. Affected product: VMware Fusion 11.x prior to 11.0.3. M...

CVE-2019-5514

VMware VMware Fusion 11.x before 11.0.3 contains a security vulnerability due to certain unauthenticated APIs accessible through a web socket. An attacker may exploit this issue by tricking the host user to execute a JavaScript to perform unauthorized functions on the guest machine where VMware...

VMWare Fusion APIs available without auth via web socket (CVE-2019-5514)

VMware Fusion 11.x before 11.0.3 contains a security vulnerability due to certain unauthenticated APIs accessible through a web socket. An attacker may exploit this issue by tricking the host user to execute a JavaScript to perform unauthorized functions on the guest machine where VMware Tools is...

CVE-2018-0278

A vulnerability in the management console of Cisco Firepower System Software could allow an unauthenticated, remote attacker to access sensitive data about the system. The vulnerability is due to improper cross-origin domain protections for the WebSocket protocol. An attacker could exploit this...

Legal Robot: cross site web socket hijacking

In the below web-socket request successful 101 protocol handshake is working with the origin:https://app.legalrobot.com, but if you place the malicious origin in the place of https://thisdata.com which is http://evil.com or any page containing the malware, the web socket server is still giving 10...

Legal Robot: Lengthy manual entry of 2FA secret

Hello @team, I would like to report on some issue where users are going to face while 2FA authentication.We can see that users need to enter 52 bit code manually for 2FA authentication,which is taking a lot of time and it will be difficult for the user to enter the total 52 bits in the google...

Legal Robot: Issues with Forgot password Error Handling

Hello @team, I found a similar issue to 249695.Where user when giving an error email id it is not showing any error response.This is not of high impact but this might throw the users in confusing state as there is no error message user will be waiting for the server response. Steps to reproduce:...

Mozilla: Integer overflow and memory corruption in WebSocketChannel (MFSA 2016-75, MFSA 2016-86)

Integer overflow in the WebSocketChannel class in the WebSockets subsystem in Mozilla Firefox before 48.0 and Firefox ESR 45.4 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via crafted packets that trigger incorrect buffer-resize operations durin...

[SECURITY] Fedora 23 Update: nodejs-ws-1.1.1-1.fc23

Simple to use, blazing fast and thoroughly tested web socket client, server and console for nodejs, up-to-date against RFC-6455...