13 matches found
EUVD-2006-5803
Malware in sbrugna...
CVE-2023-23943
Nextcloud mail is an email app for the nextcloud home server platform. In affected versions the SMTP, IMAP and Sieve host fields allowed to scan for internal services and servers reachable from within the local network of the Nextcloud Server. It is recommended that the Nextcloud Maill app is...
Oracle Linux 7 / 8 / 9 : linux-firmware (ELSA-2024-12797)
The remote Oracle Linux 7 / 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12797 advisory. 20241003-999.35.git95bfe086.el8 - Rebase to latest upstream Orabug: 37132142 - Fix build error in ol7 due to linking in copy-firmware.sh Orabu...
Amazon Linux 2 : aws-cfn-bootstrap (ALAS-2024-2654)
The version of aws-cfn-bootstrap installed on the remote host is prior to 2.0-31. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2654 advisory. Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests Session, if the first request is made...
Partnering for Security: Qualys Solutions for Microsoft Azure Linux in AKS
As customers transition from traditional workloads to containerized environments, they face significant challenges. Containers introduce a level of complexity that traditional security measures often fail to address, primarily due to their ephemeral nature and the shared responsibility model...
Elevating Security: Qualys Unveils First Solution for Scanning AWS Bottlerocket in Amazon EKS and Amazon ECS
With this new offering, Qualys establishes itself as the first and only vendor solution with the unique ability to scan AWS Bottlerocket instances directly using the Qualys Cloud Agent and TotalCloud Agent-less Snapshot-Based Scan. This innovative capability empowers organizations to...
PYSEC-2023-269
GeoNode is an open source platform that facilitates the creation, sharing, and collaborative use of geospatial data. In versions 3.2.0 through 4.1.2, the endpoint /proxy/?url= does not properly protect against server-side request forgery. This allows an attacker to port scan internal hosts and...
U.S. Department of State: Bypassing Whitelist to perform SSRF for internal host scanning
A misconfiguration in the server-side request forgery SSRF protection of geonode.state.gov allowed for bypassing the whitelist and performing internal host scanning. The backend parsed the whitelist host as a credential host, allowing requests to be sent to hosts identified before the ""...
Qualys Cloud Platform (VM, PC) 8.21 New Features
This new release of the Qualys Cloud Platform VM, PC, version 8.21, adds new technologies and platforms, and support for scanning ESXi hosts on vCenter for vulnerabilities. Feature Highlights Qualys Vulnerability Management VM Support for Scanning ESXi Hosts on vCenter for Vulnerabilities – Qualy...
Open-Xchange: SSRF - RSS feed, blacklist bypass (301 re-direct)
FYI - Tested on local installation of App Suite 7.8.4 REV 17 Hello, There appears to be another SSRF re-direct vulnerability, similar to my earlier reports that will allow scanning of the App Suite local ports or internal hosts, regardless of blacklist protection in place. The endpoint is the...
Sonar.js - Framework for identifying and launching exploits against internal network hosts
A framework for identifying and launching exploits against internal network hosts. Works via WebRTC IP enumeration, WebSocket host scanning, and external resource fingerprinting. How does it work? Upon loading the sonar.js payload in a modern web browser the following will happen: sonar.js will u...
CVE-2006-5819
CVE-2006-5819 affects Verity Ultraseek up to version 5.7. The flaw resides in the vulnerable highlight script (/highlight/index.html), which allows an unauthenticated remote attacker to proxy web requests, enabling access to internal content, enumerate non-public hosts, and perform cross-site scr...
myServer Multiple Vulnerabilities
Binary data 2892.prm...