24 matches found
EUVD-2017-15106
Malware in sbrugna...
EUVD-2017-15108
Malware in sbrugna...
EUVD-2017-14272
Malware in sbrugna...
EUVD-2017-15104
Malware in sbrugna...
CVE-2017-6038
A Cross-Site Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web application does not sufficiently verify that requests were provided by the user who submitted the request...
CVE-2017-6036
A Server-Side Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web server receives a request, but does not sufficiently verify that the request is being sent to the expected destination...
CVE-2017-6040
An Information Exposure issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. Non-sensitive information can be obtained anonymously...
Information disclosure
An Information Exposure issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. Non-sensitive information can be obtained anonymously...
Cross site request forgery (csrf)
A Cross-Site Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web application does not sufficiently verify that requests were provided by the user who submitted the request...
CVE-2017-6036
A Server-Side Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web server receives a request, but does not sufficiently verify that the request is being sent to the expected destination...
CVE-2017-6038
A Cross-Site Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web application does not sufficiently verify that requests were provided by the user who submitted the request...
CVE-2017-6040
An Information Exposure issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. Non-sensitive information can be obtained anonymously...
Server side request forgery (ssrf)
A Server-Side Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web server receives a request, but does not sufficiently verify that the request is being sent to the expected destination...
CVE-2017-6036
CVE-2017-6036 describes a Server-Side Request Forgery (SSRF) in Belden Hirschmann GECKO Lite Managed switch (Web server) affecting v2.0.00 and earlier. The issue arises because the web server does not adequately validate requests to the intended destination, enabling an attacker to obtain sensiti...
CVE-2017-6040
CVE-2017-6040 concerns an Information Exposure in Belden Hirschmann GECKO Lite Managed switch (Version 2.0.00 and earlier). The vulnerability arises from saving a copy of the downloaded configuration file (which includes password hashes) in a location accessible without authentication, enabling a...
CVE-2017-6038
The CVE-2017-6038 CSRF vulnerability affects Belden Hirschmann GECKO Lite Managed switch (version 2.0.00 and prior). The web interface fails to sufficiently verify that requests originate from the submitting user, enabling cross-site request forgery. ICS-CERT/Security advisories note that success...
CVE-2017-6038
A Cross-Site Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web application does not sufficiently verify that requests were provided by the user who submitted the request...
CVE-2017-6040
An Information Exposure issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. Non-sensitive information can be obtained anonymously...
Belden Hirschmann GECKO Lite Managed Switch Information Disclosure Vulnerability
Belden Hirschmann GECKO Lite Managed Switch is a switch product from Belden USA. An information disclosure vulnerability exists in Belden Hirschmann GECKO Lite Managed Switch version 2.0.00 and earlier. An attacker can exploit this vulnerability to obtain sensitive information...
CVE-2017-5163
An issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. After an administrator downloads a configuration file, a copy of the configuration file, which includes hashes of user passwords, is saved to a location that is accessible without...