EulerOS Virtualization 2.13.1 : curl (EulerOS-SA-2026-2122)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl,changing TLS options in one thread would inadvertently change th...

CVE-2023-40519

A cross-site scripting XSS vulnerability in the bpk-common/auth/login/index.html login portal in Broadpeak Centralized Accounts Management Auth Agent 01.01.00.19219575ee9195b0, 01.01.01.30097902fd999e76, and 00.12.01.95655881254b459 allows remote attackers to inject arbitrary web script or HTML v...

PT-2023-27497 · Broadpeak · Broadpeak Centralized Accounts Management Auth Agent

Name of the Vulnerable Software and Affected Versions: Broadpeak Centralized Accounts Management Auth Agent versions 00.12.01.9565588 1254b459, 01.01.00.19219575 ee9195b0, 01.01.01.30097902 fd999e76 Description: A cross-site scripting XSS issue in the bpk-common/auth/login/index.html login portal...

Broadpeak Centralized Accounts Management Auth Agent Cross-Site Scripting Vulnerability

Broadpeak Centralized Accounts Management Auth Agent is a centralized accounts management authentication agent application from Broadpeak France. A cross-site scripting vulnerability exists in Broadpeak Centralized Accounts Management Auth Agent versions 01.01.00.19219575ee9195b0,...

Code injection

In some situations on BIG-IP APM 14.0.0-14.0.0.2, 13.0.0-13.1.0.7, 12.1.0-12.1.3.5, or 11.6.0-11.6.3.2, the CRLDP Auth access policy agent may treat revoked certificates as valid when the BIG-IP APM system fails to download a new Certificate Revocation List...