Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/06/29 12:0 a.m.9 views

PT-2026-53670

Name of the Vulnerable Software and Affected Versions Mythic versions prior to 3.4.0.60 Description An authorization bypass exists in four REST endpoints: 'c2profile config check webhook', 'c2profile redirect rules webhook', 'c2profile get ioc webhook', and 'c2profile sample message webhook'. The...

6.5CVSS5.9AI score0.00171EPSS
Exploits0References7
CVE
CVE
added 2026/06/01 12:0 a.m.18 views

CVE-2026-37228

FlexRIC v2.0.0 is affected by a reachable assertion in e2ap_recv_sctp_msg() (src/lib/ep/e2ap_ep.c). The code allocates a fixed 32 KB receive buffer and asserts rc = 32,768 bytes to crash the near-RT RIC, iApp, E2 Agent, or xApp process via SIGABRT. All four SCTP endpoint types (ports 36421 and 36...

7.5CVSS6.1AI score0.00642EPSS
Exploits1References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/30 8:55 p.m.15 views

Arcane Vulnerable to Unauthenticated Disclosure of Custom Compose Template Content (incl. `.env` secrets)

Summary Four GET endpoints under /api/templates in Arcane's Huma backend are registered without any Security requirement, allowing any unauthenticated network client to list and read the full Compose YAML and .env content of every custom template stored in the instance. Because Arcane's UI expose...

8.7CVSS5.5AI score0.00309EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2005/07/19 12:0 a.m.7 views

PT-2005-3247 · Calogic · Calogic

Name of the Vulnerable Software and Affected Versions: CaLogic version 1.2.2 Description: The issue allows remote attackers to execute arbitrary code. This is achieved via the CLPATH parameter to several API endpoints: "/cl minical.php", "/clmcpreload.php", "/mcconfig.php", or "/mcpi-demo.php"...

7.5CVSS7.5AI score0.02611EPSS
Exploits0References6
Rows per page
Query Builder