3 matches found
CVE-2026-58211 NATS Server: `no_auth_user` pre-CONNECT fast path bypasses user connection restrictions
NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Prior to 2.14.3 and 2.12.12, a client could be registered as the configured noauthuser through a parser path used when the first client operation was not CONNECT, bypassing user-level connection...
CVE-2015-5352
The x11openhelper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time...
Check Point FireWall-1 Identification
The remote host has the three TCP ports 256, 257, and 258 open. It's very likely that this host is a Check Point FireWall/1. A remote attacker could use this information to mount further attacks. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid10044; scriptversion...