2 matches found
CVE-2026-27589
Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, the local caddy admin API default listen 127.0.0.1:2019 exposes a state-changing POST /load endpoint that replaces the entire running configuration. When origin enforcement is not enabled enforceorigin not...
Siemens多款产品 竞争条件问题漏洞
Siemens RUGGEDCOM RST2428P and others are a server communication device from Siemens Canada. A competitive condition issue vulnerability exists in various Siemens products that stems from a competitive condition that could lead to the loading of an attacker-controlled configuration. The following...