CVE-2025-35021 Abilis CPX Fallback Shell Connection Relay

By failing to authenticate three times to an unconfigured Abilis CPX device via SSH, an attacker can login to a restricted shell on the fourth attempt, and from there, relay connections...

CVE-2025-35021 Abilis CPX Fallback Shell Connection Relay

By failing to authenticate three times to an unconfigured Abilis CPX device via SSH, an attacker can login to a restricted shell on the fourth attempt, and from there, relay connections...

CVE-2025-35021

Technical details for CVE-2025-35021 are not publicly provided in the supplied documents. No affected products, versions, impact, or remediation are specified here; monitor for official advisories for concrete information.

Intercepting proxy servers may incorrectly rely on HTTP headers to make connections

Overview Proxy servers running in interception mode "transparent" proxies that make connection decisions based on HTTP header values may be used by an attacker to relay connections. Description HTTP Host Headers are defined in RFC 2616 and are often used to by web servers to allow multiple websit...