Lucene search
K

8 matches found

Prion
Prion
added 2021/10/12 11:15 p.m.17 views

Design/Logic Flaw

A Host Header Redirection vulnerability in SonicOS potentially allows a remote attacker to redirect firewall management users to arbitrary web domains...

5.8CVSS6.2AI score0.13041EPSS
Exploits4References2Affected Software1
Cvelist
Cvelist
added 2021/10/12 10:55 p.m.65 views

CVE-2021-20031

A Host Header Redirection vulnerability in SonicOS potentially allows a remote attacker to redirect firewall management users to arbitrary web domains...

6.4AI score0.13041EPSS
Exploits4References2
Prion
Prion
added 2019/06/04 9:29 p.m.18 views

Design/Logic Flaw

A Host Header Redirection vulnerability in Fortinet FortiOS all versions below 6.0.5 under SSL VPN web portal allows a remote attacker to potentially poison HTTP cache and subsequently redirect SSL VPN web portal users to arbitrary web domains...

5.8CVSS6.2AI score0.01358EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2019/06/04 8:38 p.m.8 views

CVE-2018-13384

A Host Header Redirection vulnerability in Fortinet FortiOS all versions below 6.0.5 under SSL VPN web portal allows a remote attacker to potentially poison HTTP cache and subsequently redirect SSL VPN web portal users to arbitrary web domains...

6.8AI score0.01358EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/06/04 8:38 p.m.29 views

CVE-2018-13384

A Host Header Redirection vulnerability in Fortinet FortiOS all versions below 6.0.5 under SSL VPN web portal allows a remote attacker to potentially poison HTTP cache and subsequently redirect SSL VPN web portal users to arbitrary web domains...

6.2AI score0.01358EPSS
Exploits0References1
Prion
Prion
added 2018/05/08 1:29 p.m.19 views

Design/Logic Flaw

RSA Authentication Manager Security Console, Operation Console and Self-Service Console, version 8.3 and earlier, is affected by a Host header injection vulnerability. This could allow a remote attacker to potentially poison HTTP cache and subsequently redirect users to arbitrary web domains...

5.8CVSS6.4AI score0.01943EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2007/08/15 7:17 p.m.27 views

CVE-2007-2929

The IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll before 1.2.8.0 and possibly acpir.dll before 1.0.0.9 Automated Solutions 1.0 before fix pack 1, exposes unsafe methods to arbitrary web domains, which allows remote attackers to download arbitrary code on...

5.8CVSS7.1AI score0.0258EPSS
Exploits1References7
CVE
CVE
added 2007/08/15 7:0 p.m.57 views

CVE-2007-2929

The CVE-2007-2929 issue affects the IBM/Lenovo Access Support acpRunner ActiveX control, distributed with AcpController.dll prior to version 1.2.8.0 (and possibly acpir.dll prior to 1.0.0.9). The ActiveX control exposes unsafe methods to arbitrary web domains, enabling remote attackers to downloa...

5.8CVSS7AI score0.0258EPSS
Exploits1References7Affected Software2
Rows per page
Query Builder