113 matches found
VMware Workspace ONE Access HTTP Detection
Binary data vmwareworkspaceoneaccesswebdetect.nbin...
Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass (cisco-sa-ftd-bypass-3eCfd24j)
According to its self-reported version, Cisco UTD SNORT IPS Engine Software is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information. TRUSTED...
lwIP TCP/IP Stack Detection (HTTP)
HTTP based detection of the lwIP TCP/IP stack. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Moderate: Red Hat Security Advisory: python-django security update
An update for python-django is now available for Red Hat OpenStack Platform 15 Stein. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
DrayTek Vigor Detection (HTTP)
HTTP based detection of DrayTek Vigor devices. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2019:3127-1 Security update for python-Django
This update for python-Django fixes the following issues: - CVE-2019-12781: Added incorrect HTTP detection with reverse-proxy connecting via HTTPS bsc1139945. - CVE-2019-3498: Fixed a content spoofing via crafted URL in the default 404 page bsc1120932...
SUSE-SU-2019:2379-1 Security update for python-Django
This update for python-Django fixes the following issues: Security issue fixed: - CVE-2019-12781: Add incorrect HTTP detection with reverse-proxy connecting via HTTPS bsc1139945...
Zyxel Access Point Detection (HTTP)
HTTP based detection of Zyxel Access Points. This VT has been deprecated and replaced by specific detection for various Zyxel devices e.g. USG, NXC, WAC, etc.. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
SUSE-SU-2019:2335-1 Security update for python-Django1
This update for python-Django1 to version 1.11.23 fixes the following issues: - CVE-2019-14232: Fixed a denial of service in 'django.utils.text.Truncator' bsc1142880. - CVE-2019-14233: Fixed a denial of service in striptags bsc1142882. - CVE-2019-14234: Fixed an SQL injection in key and index...
SUSE-SU-2019:2257-1 Security update for python-Django
This update for python-Django to version 1.11.23 fixes the following issues: - CVE-2019-14232: Fixed a denial of service in 'django.utils.text.Truncator' bsc1142880. - CVE-2019-14233: Fixed a denial of service in striptags bsc1142882. - CVE-2019-14234: Fixed an SQL injection in key and index...
Security update for python-Django (moderate)
openSUSE Security Update: Security update for python-Django Announcement ID: openSUSE-SU-2019:1872-1 Rating: moderate References: 1136468 1139945 1142880 1142882 1142883 1142885 Cross-References: CVE-2019-11358 CVE-2019-12308 CVE-2019-12781 CVE-2019-14232 CVE-2019-14233 CVE-2019-14234...
openSUSE Security Update : python-Django (openSUSE-2019-1839)
This update for python-Django fixes the following issues : Security issues fixed : - CVE-2019-11358: Fixed prototype pollution. - CVE-2019-12308: Fixed XSS in AdminURLFieldWidget bsc1136468 - CVE-2019-12781: Fixed incorrect HTTP detection with reverse-proxy connecting via HTTPS bsc1139945. -...
OPENSUSE-SU-2019:1839-1 Security update for python-Django
This update for python-Django fixes the following issues: Security issues fixed: - CVE-2019-11358: Fixed prototype pollution. - CVE-2019-12308: Fixed XSS in AdminURLFieldWidget bsc1136468 - CVE-2019-12781: Fixed incorrect HTTP detection with reverse-proxy connecting via HTTPS bsc1139945. -...
Ubuntu 16.04 LTS / 18.04 LTS : Django vulnerabilities (USN-4043-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4043-1 advisory. It was discovered that Django incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. This...
FreeBSD : Django -- Incorrect HTTP detection with reverse-proxy connecting via HTTPS (b805d7b4-9c0c-11e9-97f0-000c29e96db4)
Django security releases issued : When deployed behind a reverse-proxy connecting to Django via HTTPS, django.http.HttpRequest.scheme would incorrectly detect client requests made via HTTP as using HTTPS. This entails incorrect results for issecure, and buildabsoluteuri, and that HTTP requests...
USN-4043-1: Django vulnerabilities
It was discovered that Django incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 18.10 and Ubuntu 19.04. CVE-2019-12308 Gavin Wahl discovered that Django incorrectly handled HTTP detection when...
USN-4043-1 python-django vulnerabilities
It was discovered that Django incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 18.10 and Ubuntu 19.04. CVE-2019-12308 Gavin Wahl discovered that Django incorrectly handled HTTP detection when...
Verizon Fios Router Detection
Detection of Verizon Fios Routers. The script sends a connection request to the server and attempts to detect Verizon Fios routers. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Ubiquiti Networks UniFi Video Detection (HTTP)
Detection of UniFi Video. The script sends a connection request to the server and attempts to detect UniFi Video and to extract its version if possible. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Debian DLA-1603-1 : suricata security update
Several issues were found in suricata, an intrusion detection and prevention tool. CVE-2017-7177 Suricata has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching. CVE-2017-15377 It was possible to trigger lots of redundant checks on the...