CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

188 matches found

Akamai Blog•added 2019/03/04 11:0 a.m.•53 views

Enhancing API Gateway With Request Throttling to Manage Overconsumption

API traffic is exploding online and across the Akamai Intelligent Edge Platform. APIs are the connective tissue among organizations driving innovative and integrated digital experiences. As these experiences are mission critical for organizations to monetize partnerships, create connections for...

0.3AI score

Exploits0

Wallarm Lab•added 2018/11/29 4:6 a.m.•61 views

Happy graduation, Envoy!

Envoy, the new darling of the DevOps community, performs the role of a service and edge proxy. With advanced features such as timeouts, rate limiting, circuit breaking, load balancing, retries, stats, logging, and distributed tracing are required to handle network failures in a fault tolerant and...

7AI score

Exploits0

Akamai Blog•added 2018/10/10 10:0 a.m.•38 views

API Gateway -- Secure API Traffic with OAuth 2.0 and Cache GraphQL Responses

APIs are the connective tissue between software and modern digital experiences, and they must be exposed to consumers in a way that prevents misuse. This means your APIs must have appropriate governance authorization, authentication, quota management policies to prevent consumers from abusing API...

Exploits0

Kitploit•added 2018/09/20 12:37 p.m.•21 views

hideNsneak - A CLI For Ephemeral Penetration Testing

This application assists in managing attack infrastructure for penetration testers by providing an interface to rapidly deploy, manage, and take down various cloud services. These include VMs, domain fronting, Cobalt Strike servers, API gateways, and firewalls. Black Hat Arsenal Video Demo Video ...

7.2AI score

Exploits0References1

Wallarm Lab•added 2018/09/20 3:41 a.m.•67 views

Wallarm NG-WAF is Now a Part of Kong Hub to Provide Better Protection for Microservices, APIs and…

Wallarm NG-WAF is Now a Part of Kong Hub to Provide Better Protection for Microservices, APIs and Serverless Thousands of companies from startups to Fortune 500 enterprises use Kong as their API gateway. With a blazingly fast performance, it comes with a perfect feature set for everyone who manag...

7.6AI score

Exploits0

n0where•added 2018/09/05 4:19 p.m.•19 views

CLI for Ephemeral Penetration Testing: hideNsneak

1.2AI score

Exploits0References1

Symantec•added 2018/06/12 12:0 a.m.•54 views

OpenSSL CVE-2018-0732 Denial of Service Vulnerability

Description OpenSSL is prone to denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected OpenSSL Project OpenSSL 1.0.2 OpenSSL Project OpenSSL 1.0.2a OpenSSL Project OpenSSL 1.0.2b OpenSSL Project OpenSSL 1.0.2c OpenSSL...

5CVSS0.9AI score0.49268EPSS

Exploits0References2Affected Software28

Akamai Blog•added 2018/05/30 4:0 a.m.•11 views

Demystifying API Rate Limiting

APIs are the “digital glue” that integrates and connects infrastructure, services, devices, and users. With the proliferation of APIs in almost every organization, it‘s essential to have a mechanism in place to manage and govern them. That’s why we introduced Akamai API Gateway, which makes it...

6.8AI score

Exploits0

Prion•added 2018/05/17 3:29 a.m.•15 views

Authentication flaw

A vulnerability in the API gateway of the Cisco Digital Network Architecture DNA Center could allow an unauthenticated, remote attacker to bypass authentication and access critical services. The vulnerability is due to a failure to normalize URLs prior to servicing requests. An attacker could...

7.5CVSS9.6AI score0.02747EPSS

Exploits0References2Affected Software1

NVD•added 2018/05/17 3:29 a.m.•21 views

CVE-2018-0271

9.8CVSS9.8AI score0.02747EPSS

Exploits0References2

OSV•added 2018/05/17 3:29 a.m.•2 views

CVE-2018-0271

9.8CVSS5.8AI score0.02747EPSS

Exploits0References2

Vulnrichment•added 2018/05/17 3:0 a.m.•10 views

CVE-2018-0271

7.6AI score0.02747EPSS

Exploits0References2

Cisco•added 2018/05/16 4:0 p.m.•43 views

Cisco Digital Network Architecture Center Authentication Bypass Vulnerability

10CVSS1.5AI score0.02747EPSS

Exploits0References1

Imperva Blog•added 2017/08/15 3:30 p.m.•151 views

How to Protect AWS API Gateway with SecureSphere WAF

Serverless architectures are becoming more and more popular, and Amazon’s API Gateway service is a key factor in many serverless deployments on AWS. Currently API Gateway only supports a public CloudFront endpoint, and securing the API Gateway with high-end WAF protection may seem like a difficul...

6.9AI score

Exploits0

OSV•added 2017/04/24 7:59 p.m.•1 views

CVE-2017-3601

Vulnerability in the Oracle API Gateway component of Oracle Fusion Middleware subcomponent: Oracle API Gateway. The supported version that is affected is 11.1.2.4.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle API Gateway...

8.1CVSS5.8AI score0.02333EPSS

Exploits0References3

NVD•added 2017/04/24 7:59 p.m.•15 views

CVE-2017-3601

8.8CVSS7.3AI score0.02333EPSS

Exploits0References3

Prion•added 2017/04/24 7:59 p.m.•16 views

Design/Logic Flaw

8.8CVSS7.2AI score0.02333EPSS

Exploits0References3Affected Software1

CVE•added 2017/04/24 7:0 p.m.•51 views

CVE-2017-3601

CVE-2017-3601 affects Oracle Fusion Middleware's Oracle API Gateway (subcomponent Oracle API Gateway), specifically version 11.1.2.4.0. The vulnerability is exploitable over a network via HTTP and can be triggered by an unauthenticated attacker, with user interaction required for exploitation. Su...

8.8CVSS7.8AI score0.02333EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2017/04/24 7:0 p.m.•9 views

CVE-2017-3601

6.8AI score0.02333EPSS

Exploits0References3