Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2019-16239

Malware in sbrugna...

7.8CVSS7.5AI score0.01062EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:46 a.m.14 views

CVE-2019-6680

On BIG-IP versions 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5, while processing traffic through a standard virtual server that targets a FastL4 virtual server VIP on VIP, hardware appliances may stop responding...

7.8CVSS6.9AI score0.01062EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/22 11:5 p.m.40 views

Security Bulletin: This Power Hardware Management Console (HMC) update is being released to address Common Vulnerabilities and Exposures issue numbers CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091 (known as MDS).

Summary In response to recently reported security vulnerabilities, this Power HMC Security Bulletin is released to address Common Vulnerabilities and Exposures issue numbers CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091. Vulnerability Details CVEID: CVE-2018-12126 CVEID:...

5.6CVSS3AI score0.01553EPSS
Exploits0Affected Software1
ThreatPost
ThreatPost
added 2021/07/09 5:31 p.m.82 views

Cisco BPA, WSA Bugs Allow Remote Cyberattacks

A set of high-severity privilege-escalation vulnerabilities affecting Business Process Automation BPA application and Cisco’s Web Security Appliance WSA and could allow authenticated, remote attackers to access sensitive data or take over a targeted system. The first two bugs CVE-2021-1574 and...

9CVSS8.1AI score0.01879EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2020/11/23 8:1 a.m.128 views

Why Replace Traditional Web Application Firewall (WAF) With New Age WAF?

At present, web applications have become the top targets for attackers because of potential monetization opportunities. Security breaches on the web application can cost millions. Strikingly, DNS Domain Name System related outage and Distributed denial of service DDoS lead a negative impact on...

7.6AI score
Exploits0
NVD
NVD
added 2019/12/23 6:15 p.m.26 views

CVE-2019-6680

On BIG-IP versions 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5, while processing traffic through a standard virtual server that targets a FastL4 virtual server VIP on VIP, hardware appliances may stop responding...

7.8CVSS7.6AI score0.01062EPSS
Exploits0References1
CVE
CVE
added 2019/12/23 5:18 p.m.55 views

CVE-2019-6680

CVE-2019-6680 affects F5 BIG-IP TMM FastL4 when a standard virtual server targets a FastL4 virtual server on the same BIG-IP system. Affected versions: 15.0.0–15.0.1; 14.1.0–14.1.2; 14.0.0–14.0.1; 13.1.0–13.1.3.2; 12.1.0–12.1.5; 11.5.2–11.6.5. The issue may cause the hardware appliance to stop re...

7.8CVSS7.5AI score0.01062EPSS
Exploits0References1Affected Software11
Cvelist
Cvelist
added 2019/12/23 5:18 p.m.31 views

CVE-2019-6680

On BIG-IP versions 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5, while processing traffic through a standard virtual server that targets a FastL4 virtual server VIP on VIP, hardware appliances may stop responding...

7.5AI score0.01062EPSS
Exploits0References1
Prion
Prion
added 2018/03/08 7:29 a.m.22 views

Design/Logic Flaw

A vulnerability in the FTP server of the Cisco Web Security Appliance WSA could allow an unauthenticated, remote attacker to log in to the FTP server of the device without a valid password. The attacker does need to have a valid username. The vulnerability is due to incorrect FTP user credential...

6.8CVSS5.6AI score0.01911EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/03/08 7:0 a.m.25 views

CVE-2018-0087

A vulnerability in the FTP server of the Cisco Web Security Appliance WSA could allow an unauthenticated, remote attacker to log in to the FTP server of the device without a valid password. The attacker does need to have a valid username. The vulnerability is due to incorrect FTP user credential...

5.5AI score0.01911EPSS
Exploits0References3
Prion
Prion
added 2017/07/25 7:29 p.m.28 views

Command injection

A vulnerability in the web interface of the Cisco Web Security Appliance WSA could allow an authenticated, remote attacker to perform command injection and elevate privileges to root. The attacker must authenticate with valid administrator credentials. Affected Products: Cisco AsyncOS Software 10...

9CVSS7.2AI score0.04397EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2017/06/06 4:29 p.m.14 views

CVE-2017-5243

The default SSH configuration in Rapid7 Nexpose hardware appliances shipped before June 2017 does not specify desired algorithms for key exchange and other important functions. As a result, it falls back to allowing ALL algorithms supported by the relevant version of OpenSSH and makes the...

8.5CVSS8.4AI score0.00507EPSS
Exploits0References1
Prion
Prion
added 2017/06/06 4:29 p.m.21 views

Design/Logic Flaw

The default SSH configuration in Rapid7 Nexpose hardware appliances shipped before June 2017 does not specify desired algorithms for key exchange and other important functions. As a result, it falls back to allowing ALL algorithms supported by the relevant version of OpenSSH and makes the...

6.8CVSS8.3AI score0.00507EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2017/03/17 10:0 p.m.66 views

CVE-2017-3870

CVE-2017-3870 is a vulnerability in the URL filtering feature of Cisco AsyncOS for Cisco Web Security Appliance (WSA) that could allow an unauthenticated, remote attacker to bypass a configured URL filter. Affected: all releases prior to the first fixed release of Cisco AsyncOS for WSA, on both v...

5.8CVSS5.7AI score0.01525EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2017/03/14 10:59 p.m.19 views

Design/Logic Flaw

Sandbox detection evasion vulnerability in hardware appliances in McAfee now Intel Security Advanced Threat Defense MATD 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file false-negative via...

4.3CVSS7.1AI score0.00734EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2017/03/14 10:0 p.m.51 views

CVE-2015-8986

CVE-2015-8986 is described as a sandbox-detection evasion vulnerability in McAfee/Intel Security Advanced Threat Defense (MATD) versions up to 3.4.2.32. The issue allows malware to detect the sandbox environment and bypass malware detection, resulting in false negatives. The available sources ide...

5.5CVSS5.5AI score0.00734EPSS
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2012/02/08 12:0 a.m.39 views

Cyberoam Central Console 2.00.2 - Remote File Inclusion

Title: ====== Cyberoam Central Console v2.00.2 - File Include Vulnerability Date: ===== 2012-02-08 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=405 VL-ID: ===== 405 Introduction: ============= Cyberoam Central Console CCC appliances offer the flexibility of hardware...

7.4AI score
Exploits0
Rows per page
Query Builder