EUVD-2025-208776

In the Linux kernel, the following vulnerability has been resolved: audit: add fchmodat2 to change attributes class fchmodat2, introduced in version 6.6 is currently not in the change attribute class of audit. Calling fchmodat2 to change a file attribute in the same fashion than chmod or fchmodat...

EUVD-2026-9454

A vulnerability in the Snort 2 and Snort 3 deep packet inspection of Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass configured Snort rules and allow traffic onto the network that should have been dropped. This vulnerability is due to a...

Cisco Secure Firewall Threat Defense 访问控制错误漏洞

Cisco Secure Firewall Threat Defense is an integrated firewall platform developed by the American company Cisco. There is a access control vulnerability in Cisco Secure Firewall Threat Defense, which stems from a logical error in the integration of Snort engine rules. This vulnerability could all...

Galette 安全漏洞

Galette is a Galette open source membership management web application for non-profit organizations. A security vulnerability exists in Galette version 0.9.6 up to and including version 1.2.0, which stems from a restriction that can be bypassed by group administrators, potentially resulting in...

Important: Red Hat Security Advisory: tomcat security update

An update for tomcat is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Linux Distros Unpatched Vulnerability : CVE-2025-31651

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. For a subset of unlikely rewrite rule configurations, it was...

Improper Neutralization Of Escape, Meta, Or Control Sequences

Apache Tomcat is vulnerable to Improper Neutralization of Escape, Meta, or Control Sequences. The vulnerability is due to certain uncommon rewrite rule configurations, specially crafted requests to bypass these rules, which allows an attacker to circumvent security constraints enforced by them...

Cloudflare Public Bug Bounty: Bypass of Cloudflare's Cache Keys and WAF via header overflow

A limitation in the HTTP request header parsing in Front Line FL processing enabled attackers to bypass defined rulesets. The maximum amount of headers being parsed by openresty was 100 HTTP headers including internal ones. This problem applied to any ruleset on HTTP headers. Attackers were able ...

Cisco Secure Email Gateway Email Filter Bypass (cisco-sa-esa-mailpol-bypass-5nVcJZMw)

According to its self-reported version, Cisco Secure Email Gateway is affected by a vulnerability. - A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to bypass the configured rules and allow emails that should have been...

Cisco Secure Email Gateway 访问控制错误漏洞

Cisco Secure Email Gateway is a secure email gateway software from the American company Cisco Cisco. An access control error vulnerability exists in Cisco Secure Email Gateway, which can be exploited by a remote attacker to submit a special email that can bypass the rules and conduct a malicious...

The vulnerability of the ModSecurity security module for protecting web applications arises from insufficient validation of input data. This allows attackers to bypass the WAF rules.

The vulnerability of the ModSecurity security module for protecting web applications exists due to insufficient validation of input data when processing URL addresses. Exploiting this vulnerability can allow a malicious actor to bypass WAF rules...

Cisco Secure Web Appliance 安全漏洞

Cisco AsyncOS is a product of Cisco, Inc.Cisco AsyncOS is an operating system for Cisco devices. An input validation error vulnerability exists in Cisco AsyncOS that stems from improper detection of malicious traffic when the traffic is encoded in a specific content format, which can be exploited...

How to Configure Bypass Rules for Veeam Backup for Microsoft 365 Internet Proxy Setting

Purpose This article describes how to configure a bypass list for the Internet Proxy configured within Veeam Backup for Microsoft 365. Solution How it Works The Internet Proxy Bypass configuration list uses regular expression regex to define which domains Veeam Backup for Microsoft 365 should...

CVE-2021-0269

The improper handling of client-side parameters in J-Web of Juniper Networks Junos OS allows an attacker to perform a number of different malicious actions against a target device when a user is authenticated to J-Web. An attacker may be able to supersede existing parameters, including hardcoded...

The vulnerability of the iptables security group driver of the Neutron SDN-platform for OpenStack, related to incorrect handling of security group configurations, allows attackers to circumvent established security policy rules.

The vulnerability of the iptables security group driver of the Neutron SDN-platform for the OpenStack platform is related to incorrect handling of security group configurations. Exploiting this vulnerability allows a malicious actor to circumvent established security policies by blocking further...

CVE-2018-0018

On SRX Series devices during compilation of IDP policies, an attacker sending specially crafted packets may be able to bypass firewall rules, leading to information disclosure which an attacker may use to gain control of the target device or other internal devices, systems or services protected b...

Amazon Linux AMI : mod24_security (ALAS-2014-334)

apache2/modsecurity.c in ModSecurity before 2.7.6 allows remote attackers to bypass rules by using chunked transfer coding with a capitalized Chunked value in the Transfer-Encoding HTTP header. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

CVE-2014-6603

The SSHParseBanner function in SSH parser app-layer-ssh.c in Suricata before 2.0.4 allows remote attackers to bypass SSH rules, cause a denial of service crash, or possibly have unspecified other impact via a crafted banner, which triggers a large memory allocation or an out-of-bounds write...

Medium: mod24_security

Issue Overview: apache2/modsecurity.c in ModSecurity before 2.7.6 allows remote attackers to bypass rules by using chunked transfer coding with a capitalized Chunked value in the Transfer-Encoding HTTP header. Affected Packages: mod24security Issue Correction: Run yum update mod24security or yum...

CVE-2013-5705

Affected software: ModSecurity (Apache module) before 2.7.6. Root cause: flawed handling of chunked Transfer-Encoding with a capitalized Chunked value in the HTTP header. Impact: remote attackers can bypass mod_security rules. Remediation: upgrade to ModSecurity 2.7.6 or newer (as cited by multip...