Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
•added 2026/06/11 12:0 a.m.•12 views

Ubuntu 18.04 LTS / 20.04 LTS : Go Networking vulnerability (USN-8416-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8416-1 advisory. It was discovered that Go Networking incorrectly handled certain Punycode-encoded labels in the idna package. An attacker could possibly use this issu...

9.6CVSS5.7AI score0.00478EPSS
Exploits0References2
Ubuntu
Ubuntu
•added 2026/06/09 6:1 p.m.•23 views

USN-8416-1: Go Networking vulnerability

It was discovered that Go Networking incorrectly handled certain Punycode-encoded labels in the idna package. An attacker could possibly use this issue to bypass hostname-based access restrictions...

9.6CVSS5.5AI score0.00478EPSS
Exploits0
RedhatCVE
RedhatCVE
•added 2026/03/26 3:13 p.m.•4 views

CVE-2025-48840

An authentication bypass by spoofing vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.8, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow a remote unauthenticated attacker to bypass hostname restrictions via a specially crafted request...

5.3CVSS5.9AI score0.00459EPSS
Exploits0References1
EUVD
EUVD
•added 2026/03/10 6:31 p.m.•4 views

EUVD-2025-208486

An authentication bypass by spoofing vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.8, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow a remote unauthenticated attacker to bypass hostname restrictions via a specially crafted request...

5.3CVSS5.8AI score0.00459EPSS
Exploits0References2
EUVD
EUVD
•added 2026/03/10 6:31 p.m.•7 views

EUVD-2025-208485

An authentication bypass by spoofing vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.8, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow a remote unauthenticated attacker to bypass hostname restrictions via a specially crafted request...

5.3CVSS5.8AI score0.00459EPSS
Exploits0References2
NVD
NVD
•added 2026/03/10 6:17 p.m.•6 views

CVE-2025-48840

An authentication bypass by spoofing vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.8, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow a remote unauthenticated attacker to bypass hostname restrictions via a specially crafted request...

5.3CVSS0.00459EPSS
Exploits0References1
CVE
CVE
•added 2026/03/10 4:44 p.m.•17 views

CVE-2025-48840

CVE-2025-48840 affects Fortinet FortiWeb: an authentication bypass by spoofing via hostname restrictions. Vulnerable are FortiWeb versions 7.6.0–7.6.3, 7.4.0–7.4.8, and all 7.2 and all 7.0 versions. The issue allows a remote unauthenticated attacker to bypass hostname restrictions through a craft...

5.3CVSS5.8AI score0.00459EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
•added 2026/03/10 4:44 p.m.•29 views

CVE-2025-48840

An authentication bypass by spoofing vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.8, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow a remote unauthenticated attacker to bypass hostname restrictions via a specially crafted request...

5.3CVSS0.00459EPSS
Exploits0References1
Vulnrichment
Vulnrichment
•added 2026/03/10 4:44 p.m.•2 views

CVE-2025-48840

An authentication bypass by spoofing vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.8, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow a remote unauthenticated attacker to bypass hostname restrictions via a specially crafted request...

5.3CVSS5.8AI score0.00459EPSS
Exploits0References1
Positive Technologies
Positive Technologies
•added 2026/03/10 12:0 a.m.•12 views

PT-2026-24230

🚨 CVE-2025-48840 An authentication bypass by spoofing vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.8, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow a remote unauthenticated attacker to bypass hostname restrictions via a specially crafted...

5.3CVSS5.8AI score0.00459EPSS
Exploits0References6
GithubExploit
GithubExploit
•added 2025/12/25 4:42 p.m.•222 views

Exploit for Incorrect Authorization in Sudo_Project Sudo

CVE-2025-32462 – Sudo Hostname Bypass Privilege Escalation !...

8.8CVSS7.5AI score0.03239EPSS
Exploits77
Debian CVE
Debian CVE
•added 2019/11/26 4:21 p.m.•38 views

CVE-2019-18677

An issue was discovered in Squid 3.x and 4.x through 4.8 when the appenddomain setting is used because the appended characters do not properly interact with hostname length restrictions. Due to incorrect message processing, it can inappropriately redirect traffic to origins it should not be...

6.1CVSS6.5AI score0.07239EPSS
Exploits0
Debian
Debian
•added 2010/01/26 9:6 p.m.•40 views

[Backports-security-announce] Security Update for proftpd-dfsg

Francesco P. Lovergine uploaded new packages for proftpd-dfsg which fixed the following security problem: CVE-2009-3639 The modtls module in ProFTPD before 1.3.2b, and 1.3.3 before 1.3.3rc2, when the dNSNameRequired TLS option is enabled, does not properly handle a \0 character in a domain name i...

6.8CVSS2.2AI score0.05741EPSS
Exploits5
Cvelist
Cvelist
•added 2003/04/02 5:0 a.m.•18 views

CVE-2002-0511

The default configuration of Name Service Cache Daemon nscd in Caldera OpenLinux 3.1 and 3.1.1 uses cached PTR records instead of consulting the authoritative DNS server for the A record, which could make it easier for remote attackers to bypass applications that restrict access based on host nam...

6.7AI score0.01584EPSS
Exploits0References3
Rows per page
Query Builder