Lucene search
K

11 matches found

Amazon
Amazon
added 2026/05/26 12:0 a.m.14 views

Medium: perl-Net-CIDR-Lite

Issue Overview: Net::CIDR::Lite versions before 0.24 for Perl does not properly validate IP address and CIDR mask inputs, which may allow IP ACL bypass. Inputs containing a trailing newline or non-ASCII digit characters pass the validators but are then re-encoded by the parser to a different...

6.5CVSS5.8AI score0.00311EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2011-1500

Malware in sbrugna...

2.6CVSS6.1AI score0.01755EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-1738

Malware in sbrugna...

4.3CVSS6.1AI score0.01282EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2025/05/14 12:40 a.m.5 views

kernel: netfilter: ipset: add missing range check in bitmap_ip_uadt

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add missing range check in bitmapipuadt When tbIPSETATTRIPTO is not present but tbIPSETATTRCIDR exists, the values of ip and ipto are slightly swapped. Therefore, the range check for ip should be done later, but...

7.8CVSS6.8AI score0.00396EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/04/25 4:28 p.m.15 views

CVE-2024-1657 Platform: insecure websocket used when interacting with eda server

A flaw was found in the ansible automation platform. An insecure WebSocket connection was being used in installation from the Ansible rulebook EDA server. An attacker that has access to any machine in the CIDR block could download all rulebook data from the WebSocket, resulting in loss of...

8.1CVSS6.9AI score0.00378EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/04/25 4:28 p.m.32 views

CVE-2024-1657 Platform: insecure websocket used when interacting with eda server

A flaw was found in the ansible automation platform. An insecure WebSocket connection was being used in installation from the Ansible rulebook EDA server. An attacker that has access to any machine in the CIDR block could download all rulebook data from the WebSocket, resulting in loss of...

8.1CVSS8.1AI score0.00378EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/02/29 5:2 p.m.47 views

CVE-2024-1657

A flaw was found in the ansible automation platform. An insecure WebSocket connection was being used in installation from the Ansible rulebook EDA server. An attacker that has access to any machine in the CIDR block could download all rulebook data from the WebSocket, resulting in loss of...

8.1CVSS7.4AI score0.00378EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/20 12:0 a.m.5 views

PT-2024-1961 · Ansible · Ansible Automation Platform

Name of the Vulnerable Software and Affected Versions: Ansible Automation Platform affected versions not specified Description: A flaw in the Ansible automation platform was found, related to an insecure WebSocket connection used during installation from the Ansible rulebook EDA server. This issu...

9.4CVSS6.8AI score0.00378EPSS
Exploits0References6
hivepro
hivepro
added 2023/03/13 11:59 a.m.15 views

New GoBruteforcer Malware Targeting Web Servers Running Popular Services

Threat Level Attack Report Follow Hive Pro for a detailed threat advisory, download the pdf file here from HiveForce Labs. Summary The GoBruteforcer malware targets web servers and uses Golang programming language. It employs CIDR block scanning to access servers through brute force and deploy an...

2.5AI score
Exploits0
Cvelist
Cvelist
added 2011/05/03 8:0 p.m.21 views

CVE-2011-1739

The makemask function in mountd.c in mountd in FreeBSD 7.4 through 8.2 does not properly handle a -network field specifying a CIDR block with a prefix length that is not an integer multiple of 8, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances v...

6.5AI score0.01282EPSS
Exploits0References6
Cvelist
Cvelist
added 2011/04/29 10:0 p.m.34 views

CVE-2011-1499

acl.c in Tinyproxy before 1.8.3, when an Allow configuration setting specifies a CIDR block, permits TCP connections from all IP addresses, which makes it easier for remote attackers to hide the origin of web traffic by leveraging the open HTTP proxy server...

6.2AI score0.01755EPSS
Exploits1References9
Rows per page
Query Builder