GO-2025-4068 Slack Nebula may accept arbitrary source IP addresses in github.com/slackhq/nebula

Slack Nebula may accept arbitrary source IP addresses in github.com/slackhq/nebula...

Improper Certificate Validation

Dragonfly is vulnerable to Improper Certificate Validation. The vulnerability is due to the Manager’s Certificate gRPC service not verifying whether the requested IP addresses belong to the requesting peer, which allows an attacker to obtain valid TLS certificates for arbitrary IP addresses and...

DragonFly's manager generates mTLS certificates for arbitrary IP addresses

Impact A peer can obtain a valid TLS certificate for arbitrary IP addresses, effectively rendering the mTLS authentication useless. The issue is that the Manager’s Certificate gRPC service does not validate if the requested IP addresses “belong to” the peer requesting the certificate—that is, if...

CVE-2025-59353 Manager generates mTLS certificates for arbitrary IP addresses

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, a peer can obtain a valid TLS certificate for arbitrary IP addresses, effectively rendering the mTLS authentication useless. The issue is that the Manager’s Certificate gRPC service does not...

The vulnerability of the SSL-VPN portal for FortiOS operating systems and the proxy server used to protect against internet attacks by FortiProxy allows attackers to send packets from arbitrary IP addresses.

The vulnerability of the SSL-VPN portal for FortiOS operating systems and the FortiProxy proxy server used for protecting against internet attacks is related to insufficient verification of data authenticity. Exploiting this vulnerability allows a malicious actor to send packets from arbitrary IP...

Debian dla-3734 : openvswitch-common - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3734 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3734-1 [email protected] https://www.debian.org/lts/security/...

SUSE SLES15: libopenvswitch-2_13-0 / libovn-20_03-0 / openvswitch / etc (SUSE-SU-2023:4666-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4666-1 advisory. - CVE-2023-5366: Fixed missing masks on a final stage with ports trie bsc1216002. Tenable has extracted the preceding...

SUSE SLES15: libopenvswitch-2_13-0 / libovn-20_03-0 / openvswitch / etc (SUSE-SU-2023:4571-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4571-1 advisory. - CVE-2023-5366: Fixed missing masks on a final stage with ports trie bsc1216002. Tenable has extracted the preceding...

CVE-2023-5366

A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to...

CVE-2023-5366

A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to...

Hardcoded credentials

The HTML thumbnailer plugin in KDE Applications before 18.12.0 allows attackers to trigger outbound TCP connections to arbitrary IP addresses, leading to disclosure of the source IP address...

CVE-2018-19120

The HTML thumbnailer plugin in KDE Applications before 18.12.0 allows attackers to trigger outbound TCP connections to arbitrary IP addresses, leading to disclosure of the source IP address...

CVE-2018-19120

The HTML thumbnailer plugin in KDE Applications before 18.12.0 allows attackers to trigger outbound TCP connections to arbitrary IP addresses, leading to disclosure of the source IP address...

DEBIAN-CVE-2018-19120

The HTML thumbnailer plugin in KDE Applications before 18.12.0 allows attackers to trigger outbound TCP connections to arbitrary IP addresses, leading to disclosure of the source IP address...

Kaltura Community Edition 11.1.0-2 - Multiple Vulnerabilities

Kaltura Community Edition 11.1.0-2 - Multiple Vulnerabilities , , . '.' '. ', . , '. , .', , / / / \ \ ==/ /\ \ / / \ / \ / / | \ \ Y Y \ / /| / \ /||| / / /.-. / /:wq x.0 '=.|w|.=' =''"''=. presents.. Kaltura Community Edition Multiple Vulnerabilities Affected versions: Kaltura Community...

GLSA-201406-03 : Fail2ban: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201406-03 Fail2ban: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Fail2ban. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could send a crafted URL to a websi...

Debian Security Advisory DSA 2826-1 (denyhosts - Remote denial of ssh service)

Helmut Grohne discovered that denyhosts, a tool preventing SSH brute-force attacks, could be used to perform remote denial of service against the SSH daemon. Incorrectly specified regular expressions used to detect brute force attacks in authentication logs could be exploited by a malicious user ...

DenyHosts - regex.py Remote Denial of Service

DenyHosts - regex.py Remote Denial of Service source: https://www.securityfocus.com/bid/64478/info DenyHosts is prone to a remote denial-of-service vulnerability. Successfully exploiting this issue allows remote attackers to deny further SSH network access to arbitrary IP addresses, denying servi...

Soldat 1.4.2 - Multiple Remote Denial of Service Vulnerabilities

Soldat 1.4.2 - Multiple Remote Denial of Service Vulnerabilities source: https://www.securityfocus.com/bid/25426/info Soldat is prone to multiple remote denial-of-service vulnerabilities because of how the game software handles unexpected input. Successfully exploiting these issues allows remote...

CVE-2007-4322

BlockHosts before 2.0.4 does not properly parse 1 sshd and 2 vsftpd log files, which allows remote attackers to add arbitrary deny entries to the /etc/hosts.allow file and cause a denial of service by adding arbitrary IP addresses to a daemon log file, as demonstrated by connecting through ssh wi...