Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/06/22 12:0 a.m.22 views

PT-2026-51381

Name of the Vulnerable Software and Affected Versions phpseclib versions 0.1.1 through 1.0.29 phpseclib versions 2.0.0 through 2.0.54 phpseclib versions 3.0.0 through 3.0.53 Description An insecure default in the library allows an unauthenticated attacker to perform Server-Side Request Forgery...

5.8CVSS5.8AI score0.00133EPSS
Exploits1References3
OSV
OSV
added 2026/06/05 3:48 p.m.9 views

OESA-2026-2575 samba security update

Samba is a suite of programs for Linux and Unix to interoperate with Windows. Security Fixes: A flaw was found in Samba's certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and...

9.8CVSS6.5AI score0.12797EPSS
Exploits9References5
Samba
Samba
added 2026/05/26 12:0 a.m.18 views

auto-enrolment GPO installing CA certificate over http

Description If the certificate auto-enrollment GPO is enabled on domain members both in Samba's smb.conf and using Windows GPME tool, a CA certificate may be fetched using a plain HTTP connection and installed in the member computer's trust store. This may give an attacker a chance to intercept t...

8CVSS5.9AI score0.00261EPSS
Exploits0
OSV
OSV
added 2023/06/13 8:33 p.m.13 views

USN-6161-1 dotnet6, dotnet7 vulnerabilities

It was discovered that .NET did not properly enforce certain restrictions when deserializing a DataSet or DataTable from XML. An attacker could possibly use this issue to elevate their privileges. CVE-2023-24936 Kevin Jones discovered that .NET did not properly handle the AIA fetching process for...

7.5CVSS7.4AI score0.02627EPSS
Exploits0References6
Rows per page
Query Builder