Lucene search
+L

13 matches found

Snyk
Snyk
added 2026/05/28 2:42 p.m.8 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in the updateAddressInfo and createAddress methods. A user with consume or send permssions can modify the routing-type of an address - e.g. from ANYCAST to MULTICAST. Remediation Upgrade...

5.4CVSS5.8AI score0.00372EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/28 2:42 p.m.7 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in the updateAddressInfo and createAddress methods. A user with consume or send permssions can modify the routing-type of an address - e.g. from ANYCAST to MULTICAST. Remediation Upgrade...

5.4CVSS5.8AI score0.00372EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/28 12:28 p.m.35 views

CVE-2026-40914 Apache Artemis Stomp Protocol, Apache ActiveMQ Artemis Stomp Protocol: Address routing-type can be updated by STOMP protocol user without the createAddress permission

A vulnerability exists in Apache Artemis whereby an application using the STOMP protocol with security credentials that grant either the consume or send permission on an address can augment the routing-type supported by that address even if said user doesn't have the createAddress permission for...

0.00372EPSS
Exploits0References1
OSV
OSV
added 2026/05/28 12:28 p.m.2 views

CVE-2026-40914 Apache Artemis Stomp Protocol, Apache ActiveMQ Artemis Stomp Protocol: Address routing-type can be updated by STOMP protocol user without the createAddress permission

A vulnerability exists in Apache Artemis whereby an application using the STOMP protocol with security credentials that grant either the consume or send permission on an address can augment the routing-type supported by that address even if said user doesn't have the createAddress permission for...

4.3CVSS6AI score0.00372EPSS
Exploits0References5
CVE
CVE
added 2026/05/28 12:28 p.m.40 views

CVE-2026-40914

CVE-2026-40914 describes a vulnerability in Apache Artemis (and Apache ActiveMQ Artemis) where a STOMP-authenticated user with either consume or send permission on an address can augment the address routing-type without having createAddress permission for that address. This allows sending or cons...

4.3CVSS5.8AI score0.00372EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2004-2655

Malware in sbrugna...

4.9CVSS6.4AI score0.00486EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-0910

Malware in sbrugna...

4.9CVSS6.1AI score0.00442EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/09/29 10:21 p.m.7 views

CVE-2025-59937 go-mail has insufficient address encoding when passing mail addresses to the SMTP client

go-mail is a comprehensive library for sending mails with Go. In versions 0.7.0 and below, due to incorrect handling of the mail.Address values when a sender- or recipient address is passed to the corresponding MAIL FROM or RCPT TO commands of the SMTP client, there is a possibility of wrong...

8.2CVSS0.00505EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/04/01 12:0 a.m.8 views

Apache ActiveMQ Artemis 安全漏洞

Apache ActiveMQ Artemis is a high-performance open source messaging agent from the Apache Foundation USA. A security vulnerability exists in Apache ActiveMQ Artemis versions 2.0.0 through 2.39.0, which stems from the ability of a user with createDurableQueue or createNonDurableQueue permissions t...

4.3CVSS4.8AI score0.0058EPSS
Exploits0References4
Kitploit
Kitploit
added 2014/03/12 8:53 p.m.14 views

[Nield v0.5.0] Network Interface Events Logging Daemon

nieldNetwork Interface Events Logging Daemon is a tool that receives notifications from the kernel through the netlink socket, and generates logs related to interfaces, neighbor cache ARP,NDP, IP address IPv4,IPv6, routing, FIB rules, traffic control.It can be configured using command-line option...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2013/03/21 5:29 p.m.19 views

South Korea Cyber Attack, Wiper malware and Chinese IP Address

Yesterday we reported about a massive Cyber attack on South Korea that was responsible for shutting down networks of South Korean banks and TV broadcasters. Police are still investigating the cyber attack but the country's Communications Commission has revealed that the hacking originated from a...

7AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2007/04/12 10:19 a.m.2 views

CVE-2007-1994

Unspecified vulnerability in the Address and Routing Parameter Area ARPA transport functionality in HP-UX B.11.00 allows local users to cause a denial of service via unknown vectors. NOTE: due to lack of vendor details, it is not clear whether this is the same as CVE-2007-0916...

4.9CVSS5.5AI score0.00442EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.16 views

Debian DSA-097-1 : exim - Uncontrolled program execution

Patrice Fournier discovered a bug in all versions of Exim older than Exim 3.34 and Exim 3.952. The Exim maintainer, Philip Hazel, writes about this issue: 'The problem exists only in the case of a run time configuration which directs or routes an address to a pipe transport without checking the...

5.5AI score
Exploits0References2
Rows per page
Query Builder