Lucene search
+L

6 matches found

github
github
added 2025/06/26 9:11 p.m.13 views

Incus Allocation of Resources Without Limits allows firewall rule bypass on managed bridge networks

Summary When using an ACL on a device connected to a bridge, Incus generates nftables rules for local services DHCP, DNS... that partially bypass security options security.macfiltering, security.ipv4filtering and security.ipv6filtering. This can lead to DHCP pool exhaustion and opens the door for...

3.4CVSS7.1AI score0.00202EPSS
Exploits0References5Affected Software1
susecve
susecve
added 2023/02/15 5:57 a.m.5 views

SUSE CVE-2010-3615

named in ISC BIND 9.7.2-P2 does not check all intended locations for allow-query ACLs, which might allow remote attackers to make successful requests for private DNS records via the standard DNS query mechanism...

5CVSS8.4AI score0.09786EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2022/03/29 12:0 a.m.3 views

PT-2022-4982 · Linux Pam +2 · Linux-Pam +2

Name of the Vulnerable Software and Affected Versions: Linux-PAM versions prior to 1.5.2-6.1 Description: The issue is related to the pam access.so module of the Linux-PAM package, which does not correctly restrict login if a user tries to connect from an IP address that is not resolvable via DNS...

10CVSS9.2AI score0.01218EPSS
Exploits0References19
ibm
ibm
added 2021/06/08 10:18 p.m.38 views

Security Bulletin: Vulnerabilities in standard C library affect IBM DataPower Gateways (CVE-2013-7423, CVE-2015-1781)

Summary IBM DataPower Gateways has addressed a vulnerability in the standard C library that it uses to access DNS. Vulnerability Details CVEID: CVE-2013-7423 DESCRIPTION: GNU glibc could allow a local attacker to obtain sensitive information, caused by the writing of DNS queries to random file...

6.8CVSS9.3AI score0.05808EPSS
Exploits2Affected Software1
packetstorm
packetstorm
added 2019/09/09 12:0 a.m.276 views

Control Web Panel 0.9.8.851 Privilege Escalation

CVE Number : CVE-2019-14721, CVE-2019-14722, CVE-2019-14723, CVE-2019-14724, CVE-2019-14725, CVE-2019-14726, CVE-2019-14727, CVE-2019-14728, CVE-2019-14729, CVE-2019-14730 Date : 24 Jul 2019 Exploit Author : Pongtorn Angsuchotmetee, Nissana Sirijirakal, Narin Boonwasanarak Vendor Homepage :...

0.8AI score0.04412EPSS
Exploits2
securityvulns
securityvulns
added 2004/10/15 12:0 a.m.31 views

3COM Wireless router (3CRADSL72) information disclosure

The router gives you a web page with user name, password, primary and secondary DNS, default gateway, etc, if you access http://routerIP/appsta.stm without athentification of any kind. Router details: Runtime Code Version 1.05 Jan 27 2004 14:58:25 Boot Code Version V1.3d Hardware Version 01A ADSL...

0.8AI score
Exploits0
Rows per page
Query Builder