Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2024/03/05 12:0 a.m.2 views

PT-2024-18677 · Unknown · Artica Proxy

Name of the Vulnerable Software and Affected Versions: The Artica Proxy administrative web application version 4.50 Description: The Artica Proxy administrative web application deserializes arbitrary PHP objects supplied by unauthenticated users, enabling code execution as the "www-data" user. Th...

7.5CVSS7.8AI score0.44579EPSS
Exploits4References7
NVD
NVD
added 2017/12/14 9:29 p.m.24 views

CVE-2017-5264

Versions of Nexpose prior to 6.4.66 fail to adequately validate the source of HTTP requests intended for the Automated Actions administrative web application, and are susceptible to a cross-site request forgery CSRF attack...

8.8CVSS8.8AI score0.02746EPSS
Exploits4References3
Prion
Prion
added 2017/12/14 9:29 p.m.21 views

Cross site request forgery (csrf)

Versions of Nexpose prior to 6.4.66 fail to adequately validate the source of HTTP requests intended for the Automated Actions administrative web application, and are susceptible to a cross-site request forgery CSRF attack...

6.8CVSS8.8AI score0.02746EPSS
Exploits4References3Affected Software1
ICS
ICS
added 2016/06/10 6:0 a.m.42 views

Siemens SIPROTEC 4 and SIPROTEC Compact Vulnerabilities

OVERVIEW Siemens reports that they have released a firmware update for SIPROTEC 4 and SIPROTEC Compact devices to mitigate authentication bypass and resource exhaustion vulnerabilities. Kirill Nesterov and Anatoly Katushin from Kaspersky Lab reported some of these vulnerabilities directly to...

10CVSS9.4AI score0.03002EPSS
Exploits0References10
Rows per page
Query Builder