4 matches found
CVE-2026-62948 OpenWrt odhcpd/LuCI: unauthenticated DHCPv6 client can inject lease-file lines via FQDN hostname → stored XSS in the LuCI admin UI
OpenWrt is a Linux operating system targeting embedded devices. Prior to 25.12.5, odhcpd writes a DHCPv6 client FQDN option 39 hostname into /tmp/odhcpd.leases through src/statefiles.c statefileswritestate6 and statefileswritestate4 without escaping, allowing newline injection of forged lease lin...
Red Hat OpenShift 代码问题漏洞
Red Hat OpenShift is a Platform as a Service PaaS cloud computing platform provided by Red Hat Inc. It supports the construction, testing, deployment, and running of applications. There is a code vulnerability in Red Hat OpenShift. This vulnerability arises from users with write permissions for...
EUVD-2005-1793
Malware in sbrugna...
Libreswan 代码问题漏洞
Libreswan is an IPsec implementation similar to Openswan, which is primarily used to ensure security, integrity issues in data transmission. A security vulnerability exists in Libreswan versions prior to 4.12 that originates when an IKEv1 Quick Mode connection using IDIPV4ADDR or IDIPV6ADDR is...