Lucene search
K

357 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-1035

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00522EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-27520

Malicious code in bioql PyPI...

9.1CVSS7AI score0.00962EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/16 12:0 a.m.5 views

PT-2025-37997

Name of the Vulnerable Software and Affected Versions: psPAS PowerShell module versions prior to 7.0.209 Description: The psPAS PowerShell module does not enforce TLS 1.2 within the Get-PASSAMLResponse function during the SAML authentication process. This allows an unauthenticated attacker in a...

3.1CVSS6.7AI score0.00221EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2018-16870

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was found that wolfssl before 3.15.7 is vulnerable to a new variant of the Bleichenbacher attack to perform downgrade attacks against TLS. This may lead to...

5.9CVSS5.8AI score0.01585EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/06/07 12:0 a.m.7 views

ARGOS: Anomaly Recognition and Guarding through O-RAN Sensing

Rogue Base Station RBS attacks, particularly those exploiting downgrade vulnerabilities, remain a persistent threat as 5G Standalone SA deployments are still limited and User Equipment UE manufacturers continue to support legacy network connectivity. This work introduces ARGOS, a comprehensive...

6.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 10:37 a.m.7 views

CVE-2024-47530

Scout is a web-based visualizer for VCF-files. Open redirect vulnerability allows performing phishing attacks on users by redirecting them to malicious page. /login API endpoint is vulnerable to open redirect attack via next parameter due to absence of sanitization logic. Additionally, due to lac...

6.1CVSS6.5AI score0.00371EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 9:54 a.m.7 views

CVE-2024-22258

Spring Authorization Server versions 1.0.0 - 1.0.5, 1.1.0 - 1.1.5, 1.2.0 - 1.2.2 and older unsupported versions are susceptible to a PKCE Downgrade Attack for Confidential Clients. Specifically, an application is vulnerable when a Confidential Client uses PKCE for the Authorization Code Grant. An...

6.1CVSS6.9AI score0.00522EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:43 a.m.11 views

CVE-2023-50714

yii2-authclient is an extension that adds OpenID, OAuth, OAuth2 and OpenId Connect consumers for the Yii framework 2.0. In yii2-authclient prior to version 2.2.15, the Oauth2 PKCE implementation is vulnerable in 2 ways. First, the authCodeVerifier should be removed after usage similar to authStat...

8.8CVSS6.8AI score0.00492EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:18 p.m.6 views

CVE-2022-20145

In startLegacyVpnPrivileged of Vpn.java, there is a possible way to retrieve VPN credentials due to a protocol downgrade attack. This could lead to remote escalation of privilege if a malicious Wi-Fi AP is used, with no additional execution privileges needed. User interaction is not needed for...

10CVSS7.4AI score0.06453EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:21 p.m.8 views

CVE-2021-25490

A keyblob downgrade attack in keymaster prior to SMR Oct-2021 Release 1 allows attacker to trigger IV reuse vulnerability with privileged process...

6CVSS6.7AI score0.00751EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:18 p.m.11 views

CVE-2021-21472

SAP Software Provisioning Manager 1.0 SAP NetWeaver Master Data Management Server 7.1 does not have an option to set password during its installation, this allows an authenticated attacker to perform various security attacks like Directory Traversal, Password Brute force Attack, SMB Relay attack,...

8.8CVSS7AI score0.01157EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:12 p.m.7 views

CVE-2021-1043

In TBD of TBD, there is a possible downgrade attack due to under utilized anti-rollback protections. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

5.5CVSS6.2AI score0.00116EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:49 a.m.9 views

CVE-2019-20575

An issue was discovered on Samsung mobile devices with P9.0 software. The WPA3 handshake feature allows a downgrade or dictionary attack. The Samsung ID is SVE-2019-14204 August 2019...

5.4CVSS7.1AI score0.00121EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/05/01 5:1 p.m.25 views

@cloudflare/workers-oauth-provider PKCE bypass via downgrade attack

Summary PKCE was implemented in the OAuth implementation in workers-oauth-provider that is part of MCP framework. However, it was found that an attacker could cause the check to be skipped. Impact PKCE is a defense-in-depth mechanism against certain kinds of attacks and was an optional extension ...

9.8CVSS6.9AI score0.00491EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/05/01 3:31 a.m.10 views

GHSA-VH4H-FVQF-Q9WV Duplicate Advisory: @cloudflare/workers-oauth-provider PKCE bypass via downgrade attack

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-qgp8-v765-qxx9. This link is maintained to preserve external references. Original Description PKCE was implemented in the OAuth implementation in workers-oauth-provider that is part of MCP framework...

5.3CVSS6.9AI score0.00491EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/05/01 3:31 a.m.15 views

Duplicate Advisory: @cloudflare/workers-oauth-provider PKCE bypass via downgrade attack

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-qgp8-v765-qxx9. This link is maintained to preserve external references. Original Description PKCE was implemented in the OAuth implementation in workers-oauth-provider that is part of MCP framework...

9.8CVSS6.9AI score0.00491EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/01 12:50 a.m.10 views

CVE-2025-4144 PKCE bypass via downgrade attack

PKCE was implemented in the OAuth implementation in workers-oauth-provider that is part of MCP framework https://github.com/cloudflare/workers-mcp . However, it was found that an attacker could cause the check to be skipped. Fixed in: https://github.com/cloudflare/workers-oauth-provider/pull/27...

5.3CVSS6.9AI score0.00491EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/01 12:50 a.m.48 views

CVE-2025-4144 PKCE bypass via downgrade attack

PKCE was implemented in the OAuth implementation in workers-oauth-provider that is part of MCP framework https://github.com/cloudflare/workers-mcp . However, it was found that an attacker could cause the check to be skipped. Fixed in: https://github.com/cloudflare/workers-oauth-provider/pull/27...

5.3CVSS0.00491EPSS
Exploits0References1
Veracode
Veracode
added 2025/04/29 6:12 a.m.25 views

TLS Downgrade Attack

github.com/refraction-networking/utls is vulnerable to TLS Downgrade Attack. The vulnerability is due to missing downgrade protection caused due to failure to implement and verify the downgrade canary in TLS 1.3 handshakes when using a custom ClientHello spec, allowing an attacker to force a...

7AI score
Exploits0
Citrix
Citrix
added 2025/04/08 12:0 a.m.8 views

SSH Prefix Truncation Vulnerability (Terrapin attack) on Citrix Applayering

SSH Prefix Truncation Vulnerability Terrapin attack on Citrix App Layering . Note: The Terrapin attack can reduce the security of SSH by using a downgrade attack via man-in-the-middle interception. The attack works by prefix truncation; the injection and deletion of messages during feature...

7.3AI score
Exploits0
Rows per page
Query Builder