EulerOS Virtualization 2.13.1 : curl (EulerOS-SA-2026-2122)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl,changing TLS options in one thread would inadvertently change th...

CVE-2023-40519

A cross-site scripting XSS vulnerability in the bpk-common/auth/login/index.html login portal in Broadpeak Centralized Accounts Management Auth Agent 01.01.00.19219575ee9195b0, 01.01.01.30097902fd999e76, and 00.12.01.95655881254b459 allows remote attackers to inject arbitrary web script or HTML v...

Broadpeak Centralized Accounts Management Auth Agent Cross-Site Scripting Vulnerability

Broadpeak Centralized Accounts Management Auth Agent is a centralized accounts management authentication agent application from Broadpeak France. A cross-site scripting vulnerability exists in Broadpeak Centralized Accounts Management Auth Agent versions 01.01.00.19219575ee9195b0,...

PT-2023-27497 · Broadpeak · Broadpeak Centralized Accounts Management Auth Agent

Name of the Vulnerable Software and Affected Versions: Broadpeak Centralized Accounts Management Auth Agent versions 00.12.01.9565588 1254b459, 01.01.00.19219575 ee9195b0, 01.01.01.30097902 fd999e76 Description: A cross-site scripting XSS issue in the bpk-common/auth/login/index.html login portal...

Code injection

In some situations on BIG-IP APM 14.0.0-14.0.0.2, 13.0.0-13.1.0.7, 12.1.0-12.1.3.5, or 11.6.0-11.6.3.2, the CRLDP Auth access policy agent may treat revoked certificates as valid when the BIG-IP APM system fails to download a new Certificate Revocation List...