487 matches found
CVE-2026-44946
CVE-2026-44946 describes a SAML authentication replay vulnerability in Rancher’s Assertion Consumer Service (ACS) handler, where one-time use of SAML assertions was not enforced. The issue can enable man‑in‑the‑middle style abuse against Rancher, affecting Rancher 2.14.0 up to (but not including)...
CVE-2025-67113
OS command injection in the CWMP client /ftl/bin/cwmp of Small Cell Sercomm SCE4255W FreedomFi Englewood firmware before DG3934v3@2308041842 allows remote attackers controlling the ACS endpoint to execute arbitrary commands as root via a crafted TR-069 Download URL that is passed unescaped into t...
NewStart CGSL MAIN 6.06 (SP) : ncurses Multiple Vulnerabilities (NS-SA-2026-0020)
The remote NewStart CGSL host, running version MAIN 6.06 SP, has ncurses packages installed that are affected by multiple vulnerabilities: - In ncurses 6.0, there is a format string vulnerability in the fmtentry function. A crafted input will lead to a remote arbitrary code execution attack...
CVE-2026-1568
Rapid7 InsightVM versions before 8.34.0 contain a signature verification issue on the Assertion Consumer Service ACS cloud endpoint that could allow an attacker to gain unauthorized access to InsightVM accounts setup via "Security Console" installations, resulting in full account takeover. The...
CVE-2026-1568 Rapid7 InsightVM Signature Validation Vulnerability
Rapid7 InsightVM versions before 8.34.0 contain a signature verification issue on the Assertion Consumer Service ACS cloud endpoint that could allow an attacker to gain unauthorized access to InsightVM accounts setup via "Security Console" installations, resulting in full account takeover. The...
CVE-2026-1568 Rapid7 InsightVM Signature Validation Vulnerability
Rapid7 InsightVM versions before 8.34.0 contain a signature verification issue on the Assertion Consumer Service ACS cloud endpoint that could allow an attacker to gain unauthorized access to InsightVM accounts setup via "Security Console" installations, resulting in full account takeover. The...
EUVD-2025-199255
Malicious code in soneium-acs npm...
EUVD-2025-143197
Malicious code in btuis-suinana-acs npm...
EUVD-2002-0927
Malware in sbrugna...
EUVD-2018-3811
Malware in sbrugna...
EUVD-2005-4494
Malware in sbrugna...
EUVD-2005-0803
Malware in sbrugna...
EUVD-2000-1041
Malware in sbrugna...
EUVD-2000-1043
Malware in sbrugna...
EUVD-2021-21704
Malware in sbrugna...
EUVD-2005-1291
Malware in sbrugna...
EUVD-2018-3931
Malware in sbrugna...
EUVD-2007-1794
Malware in sbrugna...
EUVD-2000-1042
Malware in sbrugna...
EUVD-2006-3223
Malware in sbrugna...