Lucene search
K

182 matches found

OSV
OSV
added 2025/02/08 1:48 a.m.3 views

OESA-2025-1087 qt5-qtconnectivity security update

This package provides features as Dial-up, WLAN, USB and VPN support. Security Fixes: CVE-2025-23050...

3.1CVSS7AI score0.00172EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/12/04 12:0 a.m.7 views

Cisco Small Business SPA300 and SPA500 Series IP Phones Unauthenticated Remote Dial (CVE-2015-0670)

The default configuration of Cisco Small Business IP phones SPA 300 7.5.5 and SPA 500 7.5.5 does not properly support authentication, which allows remote attackers to read audio-stream data or originate telephone calls via a crafted XML request, aka Bug ID CSCuo52482. This plugin only works with...

6.4CVSS5.9AI score0.0175EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/11/13 3:58 p.m.6 views

freeradius: forgery attack

A vulnerability in the RADIUS Remote Authentication Dial-In User Service protocol allows attackers to forge authentication responses when the Message-Authenticator attribute is not enforced. This issue arises from a cryptographically insecure integrity check using MD5, enabling attackers to spoof...

9CVSS7.2AI score0.14859EPSS
Exploits2References10
RedHat Linux
RedHat Linux
added 2024/10/29 6:51 p.m.6 views

freeradius: forgery attack

A vulnerability in the RADIUS Remote Authentication Dial-In User Service protocol allows attackers to forge authentication responses when the Message-Authenticator attribute is not enforced. This issue arises from a cryptographically insecure integrity check using MD5, enabling attackers to spoof...

9CVSS7.2AI score0.14859EPSS
Exploits2References10
RedHat Linux
RedHat Linux
added 2024/10/24 5:57 p.m.5 views

freeradius: forgery attack

A vulnerability in the RADIUS Remote Authentication Dial-In User Service protocol allows attackers to forge authentication responses when the Message-Authenticator attribute is not enforced. This issue arises from a cryptographically insecure integrity check using MD5, enabling attackers to spoof...

9CVSS7.2AI score0.14859EPSS
Exploits2References10
Microsoft KB
Microsoft KB
added 2024/09/10 7:0 a.m.99 views

July 9, 2024—KB5040438 (OS Build 25398.1009)

July 9, 2024—KB5040438 OS Build 25398.1009 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server, version 23H2, see its update history page. Improvements This security update...

9.8CVSS9.2AI score0.84345EPSS
Exploits7
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.171 views

Viproy CUCDM IP Phone XML Services Speed Dial Attack Tool

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rexml/document' class MetasploitModule 'Viproy CUCDM IP Phone XML Services - Speed Dial Attack Tool', 'Description' = %q The BVSMWeb portal in the web framework...

7.5CVSS6.7AI score0.21879EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.216 views

Chromecast YouTube Remote Control

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Chromecast YouTube Remote Control', 'Description' = %q This module acts as a simple remote control for Chromecast YouTube. Only the deprecated DI...

7.4AI score
Exploits0
Rockylinux
Rockylinux
added 2024/08/01 1:28 a.m.27 views

freeradius:3.0 security update

An update is available for freeradius, module.freeradius. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list FreeRADIUS is a high-performance and highly configurabl...

9CVSS7.2AI score0.14859EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2024/07/24 1:19 p.m.7 views

freeradius: forgery attack

A vulnerability in the RADIUS Remote Authentication Dial-In User Service protocol allows attackers to forge authentication responses when the Message-Authenticator attribute is not enforced. This issue arises from a cryptographically insecure integrity check using MD5, enabling attackers to spoof...

9CVSS7.2AI score0.14859EPSS
Exploits2References10
CNNVD
CNNVD
added 2024/04/09 12:0 a.m.4 views

Microsoft Windows Routing and Remote Access Service 安全漏洞

Microsoft Windows Routing and Remote Access Service is a network service from Microsoft Corporation USA that is used to implement features such as network routing, virtual private networks VPNs, and dial-up connections. A security vulnerability exists in Microsoft Windows Routing and Remote Acces...

8.8CVSS8.6AI score0.01805EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/09/08 12:0 a.m.6 views

The vulnerability of the RADIUS protocol implementation (Remote Authentication in Dial-In User Service) of the Cisco Identity Services Engine (ISE) allows a perpetrator to cause service interruptions.

The vulnerability of the RADIUS protocol Remote Authentication in Dial-In User Service implementation of the Cisco Identity Services Engine ISE is related to errors in processing requests. Exploiting this vulnerability allows a malicious actor to cause service denial by sending a specially crafte...

8.6CVSS7.8AI score0.00758EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:1 a.m.2 views

SUSE CVE-2016-5202

browser/extensions/api/dial/dialregistry.cc in Google Chrome before 54.0.2840.98 on macOS, before 54.0.2840.99 on Windows, and before 54.0.2840.100 on Linux neglects to copy a device ID before an erase call, which causes the erase operation to access data that that erase operation will destroy...

9.1CVSS9.1AI score0.00791EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2022/07/13 12:0 a.m.62 views

Security update for opera (important)

openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2022:10057-1 Rating: important References: Cross-References: CVE-2022-2007 CVE-2022-2008 CVE-2022-2010 CVE-2022-2011 CVE-2022-2294 Affected Products: openSUSE Leap 15.3:NonFree openSUSE Leap 15.4:NonFree An update th...

9.3CVSS7AI score0.70461EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2022/06/23 12:0 a.m.3 views

June 23, 2022—KB5014668 (OS Build 22000.778) Preview

June 23, 2022—KB5014668 OS Build 22000.778 Preview For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 11 original release, see its update history page.Note Follow @WindowsUpdate to...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/06/10 12:0 a.m.36 views

Cisco IOS Software FXO Interface Destination Pattern Bypass (cisco-sa-fxo-pattern-bypass-jUXgygYv)

According to its self-reported version, Cisco IOS is affected by a vulnerability. A vulnerability in the Voice Telephony Service Provider VTSP service of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass configured destination patterns and dial...

5.3CVSS6AI score0.00974EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/04/07 12:0 a.m.9 views

The vulnerability of the RADIUS protocol implementation (Remote Authentication in Dial-In User Service) of the Cisco Identity Services Engine (ISE) allows a perpetrator to cause service interruptions.

The vulnerability of the RADIUS protocol implementation Remote Authentication in Dial-In User Service of the Cisco Identity Services Engine ISE is related to incorrect processing of RADIUS requests. Exploiting this vulnerability can allow a malicious actor to cause service failures...

8.6CVSS7.4AI score0.01433EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2022/03/25 12:0 a.m.4 views

F-secure F-Secure SAFE 安全漏洞

F-secure F-Secure SAFE is a suite of antivirus software from the Finnish company F-Secure F-secure. A security vulnerability exists in the F-Secure SAFE browser, which originates from a maliciously crafted website with USSD code in JavaScript or an iFrame that can trigger a dial-up application fr...

5.3CVSS5.9AI score0.00553EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2022/02/01 8:9 p.m.14 views

3.0 bug fix update

An update is available for freeradius. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list FreeRADIUS is a high-performance and highly configurable free Remote...

1.9AI score
Exploits0
OSV
OSV
added 2021/10/13 9:15 a.m.3 views

CVE-2021-20832

InBody App for iOS versions prior to 2.3.30 and InBody App for Android versions prior to 2.2.90510 contain a vulnerability which may lead to information disclosure only when it works with the body composition analyzer InBody Dial. This may allow an attacker who can connect to the InBody Dial with...

5.3CVSS5.8AI score0.00753EPSS
Exploits0References2
Rows per page
Query Builder