Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 9:36 a.m.7 views

CVE-2015-1570

The Endpoint Control protocol implementation in Fortinet FortiClient 5.2.3.091 for Android and 5.2.028 for iOS does not validate certificates, which makes it easier for man-in-the-middle attackers to spoof servers via a crafted certificate...

4.3CVSS6.3AI score0.00506EPSS
Exploits1References1
BDU FSTEC
BDU FSTECadded 2024/08/07 12:0 a.m.4 views

The configuration vulnerability of Enable Client Autoupdate for the Remote Access End Point Control service of the SonicWall EPC software, which enables remote access to SonicWall SMA 100 network devices, allows a perpetrator to execute arbitrary code.

The vulnerability of the Enable Client Autoupdate configuration of the Remote Access End Point Control service provided by SonicWall NetExtender for remote access to SonicWall SMA 100 network devices is related to improper code generation. Exploiting this vulnerability could allow an attacker...

7.1CVSS8.2AI score0.01864EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologiesadded 2024/03/14 12:0 a.m.4 views

PT-2024-5391 · Sonicwall · Sonicwall Sma100 +1

Name of the Vulnerable Software and Affected Versions: SonicWall NetExtender versions 10.2.339 and earlier Description: The issue is related to incorrect code generation management in the Enable Client Autoupdate service of the Remote Access End Point Control EPC in SonicWall NetExtender. This ca...

8.8CVSS8.7AI score0.01864EPSS
Exploits1References19
Prion
Prionadded 2023/11/02 2:15 p.m.22 views

Design/Logic Flaw

Connections to external data sources, like e-mail autoconfiguration, were not terminated in case they hit a timeout, instead those connections were logged. Some connections use user-controlled endpoints, which could be malicious and attempt to keep the connection open for an extended period of...

4CVSS4.8AI score0.00478EPSS
Exploits0References2Affected Software1
ThreatPost
ThreatPostadded 2020/04/06 3:55 p.m.91 views

Government VPN Servers Targeted in Zero-Day Attack

As the Chinese government turns to virtual private networks VPNs to provide access to official resources for those working remotely amid the COVID-19 pandemic, the DarkHotel APT has seized the opportunity to target those VPNs in a zero-day attack, researchers said. According to security analysts...

0.9AI score
Exploits0References14
NVD
NVDadded 2015/02/10 8:59 p.m.16 views

CVE-2015-1570

The Endpoint Control protocol implementation in Fortinet FortiClient 5.2.3.091 for Android and 5.2.028 for iOS does not validate certificates, which makes it easier for man-in-the-middle attackers to spoof servers via a crafted certificate...

4.3CVSS6AI score0.00506EPSS
Exploits1References2
Prion
Prionadded 2015/02/10 8:59 p.m.12 views

Design/Logic Flaw

The Endpoint Control protocol implementation in Fortinet FortiClient 5.2.3.091 for Android and 5.2.028 for iOS does not validate certificates, which makes it easier for man-in-the-middle attackers to spoof servers via a crafted certificate...

4.3CVSS6.5AI score0.00506EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder