13 matches found
Antrea 安全漏洞
Antrea is an open-source Kubernetes network configuration software developed by antrea.io. Versions prior to 2.4.5 and 2.5.2 of Antrea contained security vulnerabilities. These vulnerabilities were due to the lack of encryption, which affected the IPv6 traffic between nodes in dual-stack network...
kernel: smb: client: fix OOBs when building SMB2_IOCTL request
A flaw was found in the cifs module in the Linux kernel. When building SMB2IOCTL requests using encryption, either enforced by the server or using the 'seal' mount option, an out-of-bounds write can be triggered when the user passes an input buffer greater than 328 bytes, resulting in memory...
SUSE CVE-2024-50151
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOBs when building SMB2IOCTL request When using encryption, either enforced by the server or when using 'seal' mount option, the client will squash all compound request buffers down for encryption into a single i...
CVE-2024-50151 smb: client: fix OOBs when building SMB2_IOCTL request
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOBs when building SMB2IOCTL request When using encryption, either enforced by the server or when using 'seal' mount option, the client will squash all compound request buffers down for encryption into a single i...
PT-2024-20775 · Apache · Apache-Airflow-Providers-Mongo
Name of the Vulnerable Software and Affected Versions: apache-airflow-providers-mongo versions prior to 4.0.0 Description: The issue arises when SSL is enabled for the Mongo Hook, and the default settings include allow insecure, which causes certificates not to be validated. This behavior is...
CVE-2022-30562
If the user enables the https function on the device, an attacker can modify the user’s request data packet through a man-in-the-middle attack ,Injection of a malicious URL in the Host: header of the HTTP Request results in a 302 redirect to an attacker-controlled page...
DEBIAN-CVE-2022-31085
LDAP Account Manager LAM is a webfrontend for managing entries e.g. users, groups, DHCP settings stored in an LDAP directory. In versions prior to 8.0 the session files include the LDAP user name and password in clear text if the PHP OpenSSL extension is not installed or encryption is disabled by...
ksmbd 安全漏洞
ksmbd is an open source kernel CIFS/SMB3 server created by Namjae Jeon for the Linux kernel. It is an implementation of the SMB/CIFS protocol in kernel space for sharing files and IPC services over a network. A security vulnerability exists in ksmbd server 3.4.2 and earlier versions, which result...
kernel: improper input validation in tipc_nl_retrieve_key function in net/tipc/node.c
A flaw buffer overflow in the Linux kernel TIPC protocol functionality was found in the way user uses protocol with encryption enabled. A local user could use this flaw to crash the system...
CVE-2021-29646
A flaw buffer overflow in the Linux kernel TIPC protocol functionality was found in the way user uses protocol with encryption enabled. A local user could use this flaw to crash the system...
CVE-2019-19282
A vulnerability has been identified in OpenPCS 7 V8.1 All versions, OpenPCS 7 V8.2 All versions, OpenPCS 7 V9.0 All versions V9.0 Upd3, SIMATIC BATCH V8.1 All versions, SIMATIC BATCH V8.2 All versions V8.2 Upd12, SIMATIC BATCH V9.0 All versions V9.0 SP1 Upd5, SIMATIC NET PC Software V14 All...
DEBIAN-CVE-2014-5369
Enigmail 1.7.x before 1.7.2 sends emails in plaintext when encryption is enabled and only BCC recipients are specified, which allows remote attackers to obtain sensitive information by sniffing the network...
CVE-2002-1095
Cisco VPN 3000 Concentrator before 2.5.2F, with encryption enabled, allows remote attackers to cause a denial of service reload via a Windows-based PPTP client with the "No Encryption" option set...