34 matches found
EUVD-2023-34426
Malicious code in bioql PyPI...
EUVD-2023-34425
Malicious code in bioql PyPI...
EUVD-2023-34427
Malicious code in bioql PyPI...
EUVD-2024-46501
Malicious code in bioql PyPI...
CVE-2024-5264
Network Transfer with AES KHT in Thales Luna EFT 2.1 and above allows a user with administrative console access to access backups taken via offline analysis...
CVE-2024-5264
Network Transfer with AES KHT in Thales Luna EFT 2.1 and above allows a user with administrative console access to access backups taken via offline analysis...
CVE-2024-5264
Network Transfer with AES KHT in Thales Luna EFT 2.1 and above allows a user with administrative console access to access backups taken via offline analysis...
CVE-2024-5264 Network Key Transfer with AES KHT vulnerability in Luna EFT
Network Transfer with AES KHT in Thales Luna EFT 2.1 and above allows a user with administrative console access to access backups taken via offline analysis...
CVE-2024-5264
CVE-2024-5264 concerns Thales Luna EFT 2.1 and newer, where a user with administrative console access can access backups taken via offline analysis due to a vulnerability in the network transfer using AES Key History Transport. The available documents state the affected product and the underlying...
CVE-2024-5264 Network Key Transfer with AES KHT vulnerability in Luna EFT
Network Transfer with AES KHT in Thales Luna EFT 2.1 and above allows a user with administrative console access to access backups taken via offline analysis...
Thales Luna EFT 安全漏洞
Thales Luna EFT is a high-security hardware security module from Thales France designed specifically for financial transactions and payment processing. A security vulnerability exists in Thales Luna EFT version 2.1, which stems from a network transport using AES KHT that allows a user to access...
GlobalSCAPE EFT Recursive Deflate Stream DoS (CVE-2023-2990)
The version of GlobalSCAPE EFT installed on the remote host is 8.0.x prior to 8.0.0.38. A denial of service DoS vulnerability exists due to improper handling of a recursively compressed packet. An unauthenticated, remote attacker can exploit this issue, via specially crafted packeet, to cause the...
CVE-2023-2991
Fortra Globalscape EFT's administration server suffers from an information disclosure vulnerability where the serial number of the harddrive that Globalscape is installed on can be remotely determined via a "trial extension request" message...
CVE-2023-2991
Fortra Globalscape EFT's administration server suffers from an information disclosure vulnerability where the serial number of the harddrive that Globalscape is installed on can be remotely determined via a "trial extension request" message...
CVE-2023-2990
Fortra Globalscape EFT versions before 8.1.0.16 suffer from a denial of service vulnerability, where a compressed message that decompresses to itself can cause infinite recursion and crash the service...
CVE-2023-2989
Fortra Globalscape EFT versions before 8.1.0.16 suffer from an out of bounds memory read in their administration server, which can allow an attacker to crash the service or bypass authentication if successfully exploited...
CVE-2023-2989
Fortra Globalscape EFT versions before 8.1.0.16 suffer from an out of bounds memory read in their administration server, which can allow an attacker to crash the service or bypass authentication if successfully exploited...
CVE-2023-2990
Fortra Globalscape EFT versions before 8.1.0.16 suffer from a denial of service vulnerability, where a compressed message that decompresses to itself can cause infinite recursion and crash the service...
Denial of service
Fortra Globalscape EFT versions before 8.1.0.16 suffer from a denial of service vulnerability, where a compressed message that decompresses to itself can cause infinite recursion and crash the service...
Authentication flaw
Fortra Globalscape EFT versions before 8.1.0.16 suffer from an out of bounds memory read in their administration server, which can allow an attacker to crash the service or bypass authentication if successfully exploited...